Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
File: tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft (raw, json)
Hash identifier: cnzeJohiMAVTdUAl/ZRiW/D10c9ZZ+8xT1MYhM2zqmY=
Subject key identifier: F0:09:D5:DD:42:A7:7E:07:E3:77:8D:E5:18:A5:E3:B9:BC:C7:6D:8E
Authority key identifier: B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
Certificate issuer: /CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Certificate serial: 019A240A1286B3B2D896F58A866A221586FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
Manifest number: 16FB
Signing time: Mon 27 Oct 2025 05:00:31 +0000
Manifest this update: Mon 27 Oct 2025 05:00:31 +0000
Manifest next update: Tue 28 Oct 2025 05:00:31 +0000
Files and hashes: 1: AwMEJfGD-_TNRZ72c5x-9dIRsd4.roa (hash: 6UVDM1JqxHmjbnJ4pDDIOsD2r8EQyy1bF6KNp9ocKGg=)
2: VJtvXDXYtAcS9C4LIbmlaqXh4Co.roa (hash: THcKGdc9aA5a+OjJYNnV65xxowh1d3kb8KQrHqiCPq4=)
3: fUXrv6-AqG-Sdl9xICl4cQAU7yA.roa (hash: jv2v4x0octz1D9witRg3iiWbwIrgi4wxjje3xLewI+U=)
4: tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl (hash: QKkl/8xA00ozkxSO3AKti458YppyP6yZ/NwpGvMFZpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 05:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:0a:12:86:b3:b2:d8:96:f5:8a:86:6a:22:15:86:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Validity
Not Before: Oct 27 05:00:31 2025 GMT
Not After : Oct 28 05:00:31 2025 GMT
Subject: CN=f009d5dd42a77e07e3778de518a5e3b9bcc76d8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:43:10:a6:72:cc:a4:98:6a:4d:64:5b:3f:cb:
b9:ca:26:77:e3:27:a7:57:79:02:8a:6d:e6:b2:ad:
34:f6:c5:1d:66:2d:1c:37:df:55:c3:a6:d0:4e:0b:
14:c0:22:c2:5b:26:0a:b2:22:a2:10:6c:bf:42:f7:
3a:57:a9:6c:80:e0:67:7f:8e:e6:8e:91:4a:b8:e6:
11:0f:1f:b0:b7:35:52:bc:40:f6:4b:f4:96:04:4e:
70:f5:53:01:2e:41:94:c2:60:f8:ab:de:47:0b:b3:
a4:e4:bb:01:8a:d3:e9:ec:8f:0d:59:ea:72:28:35:
80:88:74:6c:db:31:12:30:4d:7b:6a:c3:b1:42:67:
66:e4:40:d3:92:4c:23:da:4a:40:8b:2e:a3:7f:cb:
fe:f6:fd:bc:de:19:1a:9b:f3:35:b9:05:c0:65:fa:
d0:59:96:d7:a0:06:b3:ea:3f:91:59:74:aa:32:42:
3b:14:75:f4:e0:52:81:9f:78:7a:d1:20:74:ad:19:
0b:46:12:a4:cc:3b:cc:66:cf:2d:e6:9b:31:24:07:
bc:52:3c:c5:0b:1b:e5:bc:e1:d9:7b:da:25:c1:f7:
6c:b3:79:a0:5a:40:19:df:37:6f:23:4a:d9:c6:48:
65:eb:28:1a:05:30:fe:a6:8a:d4:e5:59:61:3a:c6:
11:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:09:D5:DD:42:A7:7E:07:E3:77:8D:E5:18:A5:E3:B9:BC:C7:6D:8E
X509v3 Authority Key Identifier:
keyid:B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:45:e6:ff:c2:8e:a7:c6:b3:4c:26:e0:95:77:d6:25:69:6b:
ee:81:71:26:2b:a3:56:ca:ad:13:d6:4f:88:c5:2d:39:94:90:
45:06:d1:e4:17:75:2d:7d:39:e0:91:d6:42:d2:56:10:cf:0f:
64:56:69:03:1d:10:19:dc:96:de:1a:6c:ee:5b:bf:f9:d5:12:
a0:94:10:7c:dd:c3:1d:96:9c:7a:90:02:0b:71:50:4c:be:a0:
91:9c:6e:e3:40:ca:4d:3b:e5:fa:f2:52:3a:b3:53:c3:d7:c0:
5b:37:19:fc:96:62:fd:f3:a1:b0:9d:00:67:09:19:09:52:b2:
b1:6f:79:4a:ef:40:17:1f:0b:8c:29:99:22:a4:fc:4a:fc:1f:
0d:01:d1:85:14:03:d0:fb:39:8f:ba:8a:df:cc:6d:44:6f:86:
d0:b3:aa:74:7e:10:1d:8f:fe:48:3d:39:59:03:77:2d:c9:28:
fe:e8:e2:5f:18:68:4a:08:47:6b:66:75:06:65:04:55:5b:25:
ef:37:06:71:60:7a:14:5d:da:72:bf:6f:41:c1:70:5b:72:a3:
b6:79:4a:8c:bb:63:06:ad:d9:f3:cb:96:86:30:e2:bc:74:af:
d4:98:cd:9a:9d:7e:6b:75:d4:48:af:b5:c5:b6:f5:a4:dd:41:
b5:3a:5e:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:05:21 2025 by rpki-client