Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
File: 1TVDIcElQ2AUXq8l9pk4uN80ezE.mft (raw, json)
Hash identifier: nLJMlLtVjXcvIXP25l5MPnRl0uenqeClXUxfpWcBLHk=
Subject key identifier: D4:45:0A:9B:53:0A:F8:F2:BB:D0:AE:86:67:71:BD:25:E7:1D:BB:71
Authority key identifier: D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
Certificate issuer: /CN=d5354321c1254360145eaf25f69938b8df347b31
Certificate serial: 019A2CD6700435D554944642B08F5A18CE40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
Manifest number: 0BFB
Signing time: Tue 28 Oct 2025 22:00:42 +0000
Manifest this update: Tue 28 Oct 2025 22:00:42 +0000
Manifest next update: Wed 29 Oct 2025 22:00:42 +0000
Files and hashes: 1: 1TVDIcElQ2AUXq8l9pk4uN80ezE.crl (hash: ZopyPpdUH+Scn/FoazxBGbtTb/K2dYHGuZftjQc2fCQ=)
2: YLggX1zVSuzWscKfrJDHnrsh8ls.roa (hash: 7Jlfup6Pw3zmGnZu3LgfRRcWJ28VWesMcyWjGhyh+m8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 22:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2c:d6:70:04:35:d5:54:94:46:42:b0:8f:5a:18:ce:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5354321c1254360145eaf25f69938b8df347b31
Validity
Not Before: Oct 28 22:00:42 2025 GMT
Not After : Oct 29 22:00:42 2025 GMT
Subject: CN=d4450a9b530af8f2bbd0ae866771bd25e71dbb71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:48:32:4a:f0:c4:d6:c1:51:37:77:b6:e9:51:
1f:33:f4:63:95:45:18:4c:a1:59:b2:17:89:08:af:
ba:40:c1:8b:c9:8e:46:81:af:ad:bf:37:7d:47:4d:
04:30:6c:71:da:21:a6:87:4b:3b:74:71:94:e8:68:
c0:ed:c6:a1:3a:37:d6:a5:85:20:eb:c8:6c:23:e3:
55:78:61:84:1d:e1:1e:3f:2e:5b:4b:a7:9d:1d:8d:
f6:23:b5:46:e6:b2:c7:0d:3d:18:af:90:ee:4c:d1:
c8:a1:87:bb:2c:ce:e0:7d:68:95:81:1e:5e:8f:1c:
95:c2:f5:3a:6f:24:55:6a:0c:11:73:c6:18:6a:18:
95:c2:be:c2:15:6f:28:1c:0b:0e:18:70:15:f1:a3:
f7:70:72:af:25:27:7f:1c:4e:f6:cb:96:d4:d1:df:
0e:f4:7b:71:9d:48:e6:67:04:42:97:ae:d4:a7:80:
c8:74:de:a6:57:07:fa:16:44:c1:c6:7f:dc:48:13:
38:53:49:3f:64:66:4b:74:f5:58:0c:d1:1c:55:50:
3c:65:0a:d1:0f:5a:1f:b3:a5:cf:c4:45:c4:0e:ce:
b5:e6:e3:7b:da:e5:77:7d:cf:57:b8:fc:3a:41:52:
18:7f:0f:2e:4a:d0:91:70:6e:20:b5:d9:5e:43:61:
64:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:45:0A:9B:53:0A:F8:F2:BB:D0:AE:86:67:71:BD:25:E7:1D:BB:71
X509v3 Authority Key Identifier:
keyid:D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:82:4b:3f:ee:1f:96:d2:1a:bf:bf:72:f8:34:6c:82:58:28:
b5:6f:87:21:3a:a7:32:35:0b:d5:9d:ab:bb:e2:fd:f3:03:9a:
db:aa:1a:a7:25:1d:e6:90:81:e5:70:c9:9f:1e:a6:98:b2:f9:
27:7a:d1:18:a0:d3:af:39:17:ee:b6:54:7f:9f:7a:a2:97:34:
95:37:5f:39:27:c3:a6:9e:d1:b4:d8:8a:a4:9d:7f:cd:b0:7e:
db:2a:13:08:f3:91:be:d0:bc:16:77:ec:a8:44:9d:0c:1c:dd:
4d:d7:df:d3:48:d5:d4:aa:e9:be:8e:cc:bb:3f:ad:a4:0d:fc:
a3:0d:e0:9d:00:2f:6c:3e:8e:0f:a9:86:85:dd:a3:c2:22:9f:
eb:95:cc:b8:d3:47:60:b6:db:e0:85:d9:66:dc:c4:f0:f2:6b:
7b:45:67:4b:1c:0e:5b:7a:ca:ac:72:88:b4:e7:56:99:b9:65:
b1:b7:ac:09:a4:77:f7:e5:54:3e:8b:c2:5c:23:ab:a3:cb:ff:
56:20:45:fc:75:86:23:82:02:84:61:b9:c0:d5:41:2a:0d:3b:
9b:e4:5c:d1:f7:de:fa:83:9d:b7:f2:ac:48:e6:3e:e5:20:65:
54:9b:0f:38:07:bb:8d:28:cd:25:4c:e9:f1:b6:8b:1e:99:48:
1d:4c:23:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 05:47:04 2025 by rpki-client