Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
File: _TSxP72Tgd-Exofwa80HTkp1WAM.mft (raw, json)
Hash identifier: +osufVSJNAJRbhG9VhDb2DkozHDjIVW7v3f1W1ox5V8=
Subject key identifier: 95:C9:CF:DA:A2:83:65:33:8F:51:7E:D8:41:49:D2:FE:7A:27:87:02
Authority key identifier: FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03
Certificate issuer: /CN=fd34b13fbd9381df84c687f06bcd074e4a755803
Certificate serial: 0199FBEAF1D9AA23E1ED7B40C746F0D606CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 10:01:42 +0000
Manifest this update: Sun 19 Oct 2025 10:01:42 +0000
Manifest next update: Mon 20 Oct 2025 10:01:42 +0000
Files and hashes: 1: 0BpZrCwCrh0nhCnBWsTx8npHw5Y.roa (hash: dghoAHC17Ez/jlFwmLW4wwi4h/yLfo/iz9cDa/mgf8U=)
2: _TSxP72Tgd-Exofwa80HTkp1WAM.crl (hash: ArtIZ0091Ua2zXd83rFRE6phD+gT6IZ38c4Se1rV5fM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:f1:d9:aa:23:e1:ed:7b:40:c7:46:f0:d6:06:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd34b13fbd9381df84c687f06bcd074e4a755803
Validity
Not Before: Oct 19 10:01:42 2025 GMT
Not After : Oct 20 10:01:42 2025 GMT
Subject: CN=95c9cfdaa28365338f517ed84149d2fe7a278702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:45:c4:77:dc:ce:1d:7f:2d:43:03:08:52:e7:
b0:d6:99:3c:e1:1b:78:56:8e:6a:b4:9b:b6:aa:34:
31:22:b1:d6:36:6f:6c:3e:7c:86:3d:57:bc:2d:ab:
cd:1f:8a:d8:08:5e:bc:5b:86:64:12:e0:75:b0:2c:
ed:2f:58:3c:f4:b1:2b:24:61:5a:92:39:da:fe:96:
97:b2:74:b7:58:94:3e:d5:91:99:a8:3d:64:c0:e7:
f3:cd:db:b3:77:af:ba:ab:17:41:d6:93:43:36:c7:
5b:f5:89:c1:f5:7f:84:d3:e0:3c:2f:c9:d8:b1:86:
11:2a:cb:1b:a6:2c:4e:00:7f:a3:2e:9e:80:b0:ff:
c4:68:37:3f:ff:5a:fc:c6:72:d4:4d:21:d7:f2:74:
c2:5a:47:2c:1a:24:bd:25:37:9f:55:7d:2c:58:50:
e9:35:1f:ce:a3:b9:8c:b9:99:ba:11:19:53:a7:1d:
bb:47:82:7d:4c:a6:14:da:65:47:21:b3:2d:7d:d4:
3d:51:74:85:1f:9e:be:c9:61:ae:2d:06:69:5a:6c:
f8:78:3a:3e:46:90:d3:6f:1c:26:7d:93:4f:b8:4b:
4b:fc:5d:8f:0f:a1:6d:52:22:d1:d1:c3:6a:00:50:
b1:1d:2a:c6:21:8c:33:b4:ff:06:08:7e:0b:fe:2f:
5d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:C9:CF:DA:A2:83:65:33:8F:51:7E:D8:41:49:D2:FE:7A:27:87:02
X509v3 Authority Key Identifier:
keyid:FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:0b:27:0c:2b:85:ff:57:b4:2c:04:51:dd:da:26:c6:a3:46:
d5:18:b4:41:2d:e6:b6:3d:5e:33:c9:8c:d1:a0:84:fb:6f:b0:
c9:f4:52:c7:69:c5:7d:d8:4b:32:88:0b:b2:8d:e0:2a:08:76:
66:f3:92:ec:7e:39:e3:63:98:69:d0:86:a6:ff:ee:2b:c5:29:
c2:06:0d:cd:4e:d0:fb:b6:3a:92:3b:ad:0a:ab:e1:c5:aa:98:
05:0d:b9:d5:a6:54:1a:d4:0e:81:cc:4a:6c:df:fa:62:d2:84:
a6:30:d0:3d:c0:a3:70:3c:be:03:bb:ff:c0:39:53:ab:12:59:
5c:21:0e:53:c3:f6:d6:0b:3d:1a:c1:e6:16:14:d6:2b:36:81:
a6:d0:9d:29:92:01:7c:0c:0c:c4:04:e3:ba:71:39:31:84:c6:
8d:96:c6:2e:8d:4a:2b:29:a9:aa:cd:c2:f6:00:6f:de:17:27:
ae:17:a7:a9:4e:a2:c9:1e:42:e3:0c:16:03:71:a5:10:7a:2a:
96:3d:e3:85:e7:dc:7d:f2:03:84:80:ea:34:6e:da:54:61:fc:
3f:13:49:e9:9e:9e:49:df:c1:25:30:38:9e:36:3c:3a:64:e0:
cc:ca:74:30:53:5c:34:51:d4:53:17:4f:81:87:c5:3f:30:34:
e2:84:ef:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:54:58 2025 by rpki-client