Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft
File: toqZTkLmDaT0pUdbFfXidRbHzxQ.mft (raw, json)
Hash identifier: os/0c050gx6xVWe/8fSOnVFZX6UJLw20i4KYpAA48iw=
Subject key identifier: 38:61:8E:92:25:08:20:1E:1B:3D:D5:A6:C8:53:19:69:13:35:04:91
Authority key identifier: B6:8A:99:4E:42:E6:0D:A4:F4:A5:47:5B:15:F5:E2:75:16:C7:CF:14
Certificate issuer: /CN=b68a994e42e60da4f4a5475b15f5e27516c7cf14
Certificate serial: 0199FCFD4F1C8683CFDB74D439312937EF20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 15:01:23 +0000
Manifest this update: Sun 19 Oct 2025 15:01:23 +0000
Manifest next update: Mon 20 Oct 2025 15:01:23 +0000
Files and hashes: 1: qKf3kSwed1sQ8jIUt0CVeHwDYyo.roa (hash: JvCwYzHwZc3gc1jfWnqqm/e28zS68AlD89E8H1B2hTo=)
2: toqZTkLmDaT0pUdbFfXidRbHzxQ.crl (hash: 1TbQE8sB/o+XxMQf5zs5ZUPVoHnOogvFp4z8VT0s+RM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:4f:1c:86:83:cf:db:74:d4:39:31:29:37:ef:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b68a994e42e60da4f4a5475b15f5e27516c7cf14
Validity
Not Before: Oct 19 15:01:23 2025 GMT
Not After : Oct 20 15:01:23 2025 GMT
Subject: CN=38618e922508201e1b3dd5a6c853196913350491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1f:ce:80:88:60:f5:51:8f:43:10:54:cc:d1:
5e:a4:f3:22:44:5c:d1:92:c9:7c:b2:1d:c5:db:8f:
8e:d7:ed:bb:58:2c:05:d5:02:8d:e8:51:15:0c:84:
71:18:63:0f:28:6b:b3:26:64:ea:5f:a3:d7:56:2f:
51:75:b9:e6:7b:b0:b1:3f:4c:5e:79:35:f3:9a:ac:
af:15:ec:44:94:c8:7b:50:1d:54:8c:01:7b:ef:03:
80:d0:df:fc:18:83:ae:fe:a4:59:7b:40:8c:77:d1:
7e:5d:5e:ed:c0:06:f4:68:bf:f6:80:87:f2:4e:85:
16:e7:7a:32:9d:20:fb:f1:42:be:d7:6d:0c:4b:a9:
d1:40:63:6c:3d:bb:68:31:77:dd:bf:4a:9b:d6:ad:
05:a3:e9:60:bd:04:03:09:79:ec:95:8d:85:29:0a:
f2:19:4f:59:90:37:5a:24:85:08:84:bf:cf:96:1b:
3c:66:20:8a:30:70:15:9a:1f:ac:d8:ae:6c:22:6a:
f2:cf:ce:03:b5:cd:3c:59:4b:3c:21:60:73:60:da:
f0:de:81:71:36:df:db:41:f8:e8:67:97:1d:61:ad:
0d:19:45:d0:3d:d6:cf:b2:e8:ef:f0:57:15:94:27:
16:32:06:55:06:34:67:f7:5e:75:9e:6c:0c:a2:7b:
68:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:61:8E:92:25:08:20:1E:1B:3D:D5:A6:C8:53:19:69:13:35:04:91
X509v3 Authority Key Identifier:
keyid:B6:8A:99:4E:42:E6:0D:A4:F4:A5:47:5B:15:F5:E2:75:16:C7:CF:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:ac:6c:b4:4a:97:70:5b:7a:0c:f9:7b:b6:4b:08:3d:85:f2:
6c:63:b6:fc:ff:e6:b1:87:97:45:0e:28:cb:d0:e7:7b:88:65:
5f:d1:63:56:eb:9b:34:88:d1:f3:e5:19:4b:ab:18:29:ff:09:
a3:32:f2:6e:79:e2:88:0b:d6:09:2a:c5:02:d1:63:00:c9:98:
a0:ba:1c:28:4e:b1:5c:d9:0b:80:c1:7f:37:74:fd:e8:77:02:
01:25:e8:e1:fe:a5:8c:96:90:da:b6:f6:e0:ab:84:69:17:d2:
dd:27:d8:17:5e:7b:1b:be:82:a4:a4:17:3c:ae:61:e5:6e:81:
55:14:8f:02:bc:90:8a:31:8d:21:ae:29:66:b2:75:c0:04:bb:
50:a4:5a:9b:8c:c9:ab:4f:15:61:50:f3:a6:40:76:10:dc:81:
a0:93:ea:93:d0:a7:5a:ec:9d:03:18:a6:80:a8:cd:2e:1d:6c:
2a:ac:48:a9:6b:6c:b5:2d:a9:c8:22:d0:18:37:cd:09:7a:b5:
12:1e:a5:a0:65:26:c0:1c:a6:75:7b:14:20:12:89:f4:80:78:
9b:5d:8a:70:41:26:b7:d4:8f:65:26:94:3a:b0:25:e7:aa:cc:
b8:48:ef:c3:af:4c:a9:b0:6c:ce:08:36:55:e3:51:29:61:9c:
41:f7:0e:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:17:30 2025 by rpki-client