Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
File: _TSxP72Tgd-Exofwa80HTkp1WAM.mft (raw, json)
Hash identifier: Tj8Ie94lW9f+gbhnB+1qcnmjdFH1Lf1PGSHOgZ+M5X4=
Subject key identifier: 49:CA:48:CE:A2:1F:D2:4C:49:6D:28:6E:29:E6:7B:AE:55:97:53:9F
Authority key identifier: FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03
Certificate issuer: /CN=fd34b13fbd9381df84c687f06bcd074e4a755803
Certificate serial: 0198D51599FFDA7A1F332C4F6E349B77E179
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 04:00:19 +0000
Manifest this update: Sat 23 Aug 2025 04:00:19 +0000
Manifest next update: Sun 24 Aug 2025 04:00:19 +0000
Files and hashes: 1: _TSxP72Tgd-Exofwa80HTkp1WAM.crl (hash: dOVEJnpen5IFrYOyW5pHBhgvi0EpzECH49AJGKTFJfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:99:ff:da:7a:1f:33:2c:4f:6e:34:9b:77:e1:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd34b13fbd9381df84c687f06bcd074e4a755803
Validity
Not Before: Aug 23 04:00:19 2025 GMT
Not After : Aug 24 04:00:19 2025 GMT
Subject: CN=49ca48cea21fd24c496d286e29e67bae5597539f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:46:dc:69:16:bf:09:00:a2:d2:79:7d:47:64:
e8:e2:0e:20:27:01:36:29:07:3a:7d:89:71:f2:74:
04:08:65:97:2a:aa:5c:1f:83:61:e3:56:c2:67:4c:
1b:c9:75:cf:bd:bf:a2:4e:3b:28:0d:89:37:a1:c1:
13:59:14:7c:e9:fb:81:8a:c5:38:0d:c3:8c:94:01:
a9:41:0d:40:3b:23:9b:b6:65:39:09:c8:f7:58:c0:
0d:3e:18:5d:f4:70:e6:e0:bf:d1:77:52:94:a8:b9:
c6:ad:92:31:f7:64:3b:4e:bf:52:12:7b:01:0f:10:
cd:ce:3a:cb:dc:32:4d:45:4a:5b:ba:8e:cd:f3:78:
47:02:7c:11:36:0f:15:31:e9:89:c6:9e:0f:25:1d:
61:2b:b2:27:92:d2:36:42:f4:99:ef:25:04:be:83:
eb:2b:01:04:0c:29:b7:6b:cf:e5:85:4a:59:8f:2e:
b8:13:3b:5d:ef:d7:0b:d6:72:b7:8e:e1:08:9a:bc:
0e:af:6f:2a:63:df:48:1a:f7:da:40:1f:87:6f:03:
b0:ac:ed:ce:36:74:2f:6e:60:31:4a:90:73:aa:f7:
2c:b7:1b:ed:ad:00:09:8e:db:2b:35:6c:16:34:1e:
cc:65:af:43:e5:2a:9b:b2:39:f1:89:ff:33:51:cc:
84:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:CA:48:CE:A2:1F:D2:4C:49:6D:28:6E:29:E6:7B:AE:55:97:53:9F
X509v3 Authority Key Identifier:
keyid:FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:3a:cc:c8:3e:be:34:d4:cd:ea:d4:1b:37:aa:e0:fc:67:7f:
c8:05:89:80:65:73:64:0f:86:c7:57:5b:55:fd:f2:67:13:1e:
40:d5:5a:4e:a8:f4:77:30:28:97:a7:c7:1f:ff:97:72:a6:8a:
23:9e:54:7e:b0:6c:76:f4:98:28:60:41:be:f7:93:fa:fb:e8:
7e:95:9b:d1:86:e3:25:cf:c1:31:c2:70:aa:3c:37:d3:58:c6:
c5:c5:04:e7:58:40:7c:b6:f4:e5:17:21:4d:bc:ca:29:40:4f:
d2:7a:3b:22:3a:35:d5:ab:9e:40:26:72:04:7b:95:0b:65:ad:
06:fa:ba:d9:6d:11:02:12:09:26:3a:27:27:4b:41:3e:ed:16:
c3:f2:a4:15:52:25:8e:44:2d:da:7c:33:4e:0c:7d:73:ca:ad:
17:43:59:3d:7d:9f:17:0a:45:35:b3:80:ee:0f:2b:63:c9:f1:
f2:e1:59:00:09:17:03:33:36:25:0a:5b:20:c8:7b:67:b9:3d:
43:0d:3e:6b:f7:53:c2:bb:a9:2a:fe:11:a2:24:dd:f0:6a:91:
57:da:b9:35:7d:98:34:5b:7a:db:8d:1a:64:2b:e9:79:90:70:
d4:0c:37:62:b1:ca:ae:b0:83:fc:6f:2d:48:ed:3f:4c:fe:d8:
31:0a:3f:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFZn/2nofMyxPbjSbd+F5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkMzRiMTNmYmQ5MzgxZGY4NGM2ODdmMDZiY2QwNzRlNGE3
NTU4MDMwHhcNMjUwODIzMDQwMDE5WhcNMjUwODI0MDQwMDE5WjAzMTEwLwYDVQQD
Eyg0OWNhNDhjZWEyMWZkMjRjNDk2ZDI4NmUyOWU2N2JhZTU1OTc1MzlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4UbcaRa/CQCi0nl9R2To4g4gJwE2
KQc6fYlx8nQECGWXKqpcH4Nh41bCZ0wbyXXPvb+iTjsoDYk3ocETWRR86fuBisU4
DcOMlAGpQQ1AOyObtmU5Ccj3WMANPhhd9HDm4L/Rd1KUqLnGrZIx92Q7Tr9SEnsB
DxDNzjrL3DJNRUpbuo7N83hHAnwRNg8VMemJxp4PJR1hK7InktI2QvSZ7yUEvoPr
KwEEDCm3a8/lhUpZjy64Eztd79cL1nK3juEImrwOr28qY99IGvfaQB+HbwOwrO3O
NnQvbmAxSpBzqvcstxvtrQAJjtsrNWwWNB7MZa9D5Sqbsjnxif8zUcyEvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEnKSM6iH9JMSW0obinme65Vl1OfMB8GA1UdIwQY
MBaAFP00sT+9k4HfhMaH8GvNB05KdVgDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1RTeFA3MlRnZC1FeG9md2E4MEhUa3AxV0FNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8wMTk2ZjEtNDMzOS00YmRjLTgwMzQt
MmViMmYyZWQzMDI5LzEvX1RTeFA3MlRnZC1FeG9md2E4MEhUa3AxV0FNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8wMTk2ZjEtNDMzOS00YmRjLTgwMzQtMmViMmYyZWQzMDI5
LzEvX1RTeFA3MlRnZC1FeG9md2E4MEhUa3AxV0FNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlTrMyD6+
NNTN6tQbN6rg/Gd/yAWJgGVzZA+Gx1dbVf3yZxMeQNVaTqj0dzAol6fHH/+XcqaK
I55UfrBsdvSYKGBBvveT+vvofpWb0YbjJc/BMcJwqjw301jGxcUE51hAfLb05Rch
TbzKKUBP0no7Ijo11aueQCZyBHuVC2WtBvq62W0RAhIJJjonJ0tBPu0Ww/KkFVIl
jkQt2nwzTgx9c8qtF0NZPX2fFwpFNbOA7g8rY8nx8uFZAAkXAzM2JQpbIMh7Z7k9
Qw0+a/dTwrupKv4RoiTd8GqRV9q5NX2YNFt6240aZCvpeZBw1Aw3YrHKrrCD/G8t
SO0/TP7YMQo/7Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:02:47 2025 by rpki-client