Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft
File: TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft (raw, json)
Hash identifier: /kAFfv9GSF1zzJ/ABFTY5LM4WQ2Rj0LJ5iOXYuAsNjQ=
Subject key identifier: 39:72:F0:66:7F:FC:81:EC:E7:D8:4F:35:6E:82:2B:71:48:6A:7F:FD
Authority key identifier: 4C:4B:E4:33:94:A7:C2:BF:1E:8F:DF:BB:1D:50:6F:A3:7A:C7:32:31
Certificate issuer: /CN=4c4be43394a7c2bf1e8fdfbb1d506fa37ac73231
Certificate serial: 0198D515C91AA2AD2E46C27DE41198EDA65E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TEvkM5Snwr8ej9-7HVBvo3rHMjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 04:00:31 +0000
Manifest this update: Sat 23 Aug 2025 04:00:31 +0000
Manifest next update: Sun 24 Aug 2025 04:00:31 +0000
Files and hashes: 1: 9dHpkAlOL0XgkLxchS4Qy2sMNCs.roa (hash: g9vMbBt1/drUDiVGZvjhkatTyph0Mun8c4A/qeNjgzE=)
2: TEvkM5Snwr8ej9-7HVBvo3rHMjE.crl (hash: io9cCOWdSyAk26b+vNuN0Wo44MHDDr1pn8VWO2kY4fs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TEvkM5Snwr8ej9-7HVBvo3rHMjE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:c9:1a:a2:ad:2e:46:c2:7d:e4:11:98:ed:a6:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c4be43394a7c2bf1e8fdfbb1d506fa37ac73231
Validity
Not Before: Aug 23 04:00:31 2025 GMT
Not After : Aug 24 04:00:31 2025 GMT
Subject: CN=3972f0667ffc81ece7d84f356e822b71486a7ffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:41:01:07:3f:db:88:00:9d:cc:1a:93:ef:0f:
1b:8d:8c:c1:e7:35:80:0f:14:15:4f:77:b3:d7:dd:
6a:9e:50:e6:c8:29:09:d7:be:da:3c:34:9b:0d:c3:
3f:47:97:4f:d1:94:c9:c4:6e:66:81:fb:c9:e7:ee:
c3:82:a4:38:44:27:5a:88:f9:10:b8:a4:9d:b4:be:
1b:c9:0f:77:f2:f4:5f:f4:cb:4b:7e:ae:0e:22:74:
90:8c:37:ca:90:41:bb:0f:9e:6d:ae:b0:81:63:e8:
cc:ee:03:39:b7:d0:f7:48:3c:60:4c:a7:aa:d3:8e:
9d:9b:b5:6d:80:67:df:5d:c6:75:b6:21:62:57:05:
53:78:d6:8d:78:b9:fc:b2:52:58:dc:3f:49:21:ca:
5b:8d:ac:44:ae:93:c5:c7:4f:3a:95:4e:1c:92:6f:
7b:1f:32:c4:d7:c6:ec:16:99:13:ce:86:01:ec:46:
85:e3:10:69:7e:11:18:3c:11:cf:39:6a:a8:2f:38:
2b:75:c5:29:90:9f:40:5e:cb:fb:13:bf:1f:47:e3:
99:6e:a7:d1:be:de:a9:13:da:ca:27:1f:0c:0f:c1:
56:35:04:28:e1:ee:d8:05:f4:17:2a:7d:b1:21:14:
87:2d:a2:ae:c9:7b:7e:32:e0:8f:9e:84:c7:4c:2a:
56:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:72:F0:66:7F:FC:81:EC:E7:D8:4F:35:6E:82:2B:71:48:6A:7F:FD
X509v3 Authority Key Identifier:
keyid:4C:4B:E4:33:94:A7:C2:BF:1E:8F:DF:BB:1D:50:6F:A3:7A:C7:32:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TEvkM5Snwr8ej9-7HVBvo3rHMjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:56:a1:3c:77:95:5d:c5:b2:3c:62:bc:9c:32:ca:9f:8f:94:
a3:28:b0:64:69:03:bf:fd:dc:e8:38:ea:c1:86:44:bb:77:45:
e1:27:c2:c5:d3:fd:02:40:28:4c:66:00:3d:2d:c0:63:ad:fd:
c4:4a:c8:47:97:92:ac:99:34:6a:b1:d1:46:d3:30:02:8f:29:
b9:52:69:79:5e:01:aa:8b:26:39:3d:5f:85:a3:0a:d3:c1:e6:
e5:4d:72:9e:38:c8:1c:07:bd:88:c4:ad:32:52:22:91:49:16:
ed:8e:06:dc:2d:77:8b:b5:ad:bf:60:a2:ad:3b:07:ed:97:bb:
4f:62:c6:76:19:ee:03:0d:92:22:21:8a:4b:ea:5c:f6:22:ab:
a5:11:21:1a:38:d3:c1:01:e0:05:29:e2:7f:2c:d9:f1:9b:d8:
55:26:c4:6e:a7:67:51:1d:ff:4a:91:1c:e3:67:9c:22:a0:d1:
e9:04:26:9f:33:36:0d:81:1c:42:d7:39:03:a1:f0:25:84:25:
d5:5e:a4:84:ba:d8:c7:ad:38:41:e1:05:10:6b:66:c8:59:f0:
52:3a:28:e2:7f:60:06:47:57:6e:a3:79:4b:05:86:e7:65:94:
03:ce:45:96:a3:5f:29:06:f4:1d:f0:95:71:ba:8c:fa:fc:5a:
5a:a0:a6:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:21:25 2025 by rpki-client