Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
File: TKha1Dt7R-dSh4MHGEeU1woCdmw.mft (raw, json)
Hash identifier: Q8mRJCApUmDWh2GNa7BXSuWq2zsQvkXieA0AkYrpb50=
Subject key identifier: D8:CE:37:24:63:61:7A:E9:14:3D:8C:51:E3:3A:6F:D8:3D:C2:A9:F4
Authority key identifier: 4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
Certificate issuer: /CN=4ca85ad43b7b47e752878307184794d70a02766c
Certificate serial: 0198D5F19CBC56A1113F52CCD97CB736F655
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
Manifest number: 01CF
Signing time: Sat 23 Aug 2025 08:00:37 +0000
Manifest this update: Sat 23 Aug 2025 08:00:37 +0000
Manifest next update: Sun 24 Aug 2025 08:00:37 +0000
Files and hashes: 1: TKha1Dt7R-dSh4MHGEeU1woCdmw.crl (hash: biT2/15JE1fZpwT1nY1jcLBYqCm8Rae3VqAq6s29M2k=)
2: cpRFayTuWEzodEO-QznXVMR-alE.roa (hash: wcJbOFjwwy8ZnD5yiXe5CzeprbHM7YA3HHhv8zEs++s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:9c:bc:56:a1:11:3f:52:cc:d9:7c:b7:36:f6:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca85ad43b7b47e752878307184794d70a02766c
Validity
Not Before: Aug 23 08:00:37 2025 GMT
Not After : Aug 24 08:00:37 2025 GMT
Subject: CN=d8ce372463617ae9143d8c51e33a6fd83dc2a9f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2f:49:20:54:b7:48:a7:e3:a4:1d:bd:49:04:
23:d7:d2:47:a0:e2:07:82:c0:0b:c0:de:a5:e4:d7:
88:cc:e6:45:04:ac:9a:58:97:6f:e3:80:9a:aa:34:
3a:08:7f:78:7f:d3:33:2b:44:e1:d7:ba:4b:4a:ed:
4d:29:83:5a:ef:8e:b3:12:78:99:00:9d:65:8d:e0:
fa:47:5e:0d:49:61:ab:a5:49:dc:76:e4:d4:ca:2c:
fc:df:89:9f:da:50:53:6e:55:f7:51:64:33:43:52:
d5:86:3d:56:c3:0e:cb:fd:84:25:17:fe:53:76:f0:
62:33:ca:a8:63:76:00:b5:05:1c:17:df:9e:11:62:
c2:dd:13:e6:ce:ab:0a:49:15:7a:41:b3:4d:d2:53:
1f:bf:25:f1:18:91:af:71:d1:69:9c:80:9c:fd:a8:
fe:04:f1:2b:ad:0b:13:36:7a:bf:82:07:6b:67:ba:
6d:ba:40:05:15:41:a4:b3:4b:dc:ed:67:fc:72:eb:
88:68:2f:02:f8:40:41:61:16:c2:b0:b5:46:88:65:
7d:76:04:00:92:19:09:34:dd:3a:85:9a:88:90:2e:
69:25:63:d9:f1:50:f8:4c:de:9e:f1:ab:8a:4e:82:
9c:7e:54:43:4f:0e:2a:03:75:24:0e:00:91:6e:d7:
86:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:CE:37:24:63:61:7A:E9:14:3D:8C:51:E3:3A:6F:D8:3D:C2:A9:F4
X509v3 Authority Key Identifier:
keyid:4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:1c:ca:66:81:9e:56:eb:d7:86:58:d9:3f:13:e2:7d:a0:cb:
78:60:06:2e:59:79:54:38:a2:6d:78:95:e8:21:46:31:6f:b0:
85:8b:75:23:b5:b4:a8:39:96:50:f9:7d:53:a4:32:2e:17:35:
fd:30:db:78:f8:8c:50:37:7c:29:6e:f7:60:87:25:b5:ae:00:
30:44:af:93:a0:2f:ae:cc:8b:f5:93:79:5b:27:d2:44:2d:a1:
17:33:d8:f7:48:26:01:85:da:66:3e:40:b9:be:92:40:bc:ae:
00:d2:e2:4c:13:36:3b:ae:b5:1a:28:89:d4:fe:8b:e1:5f:a6:
15:9e:01:39:19:4e:7d:54:be:85:59:0e:3a:c7:b8:94:d8:68:
71:83:72:86:74:49:65:c1:9c:4a:01:56:eb:5a:28:d8:75:5c:
d7:e5:a4:54:a4:db:ca:53:17:c8:4f:42:b4:df:16:46:d2:7e:
32:57:0e:a4:e1:a6:30:5b:f6:df:e9:ec:f9:82:6e:7c:af:aa:
51:be:93:87:f3:84:ad:61:9f:a1:ad:17:c9:df:ca:2a:72:06:
dc:65:56:01:48:2b:03:77:21:5e:57:c3:e9:59:8c:42:da:f9:
47:06:b9:64:23:03:cd:66:25:96:bd:94:cf:80:e9:39:83:c3:
95:0d:3c:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjV8Zy8VqERP1LM2Xy3NvZVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYTg1YWQ0M2I3YjQ3ZTc1Mjg3ODMwNzE4NDc5NGQ3MGEw
Mjc2NmMwHhcNMjUwODIzMDgwMDM3WhcNMjUwODI0MDgwMDM3WjAzMTEwLwYDVQQD
EyhkOGNlMzcyNDYzNjE3YWU5MTQzZDhjNTFlMzNhNmZkODNkYzJhOWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3C9JIFS3SKfjpB29SQQj19JHoOIH
gsALwN6l5NeIzOZFBKyaWJdv44CaqjQ6CH94f9MzK0Th17pLSu1NKYNa746zEniZ
AJ1ljeD6R14NSWGrpUncduTUyiz834mf2lBTblX3UWQzQ1LVhj1Www7L/YQlF/5T
dvBiM8qoY3YAtQUcF9+eEWLC3RPmzqsKSRV6QbNN0lMfvyXxGJGvcdFpnICc/aj+
BPErrQsTNnq/ggdrZ7ptukAFFUGks0vc7Wf8cuuIaC8C+EBBYRbCsLVGiGV9dgQA
khkJNN06hZqIkC5pJWPZ8VD4TN6e8auKToKcflRDTw4qA3UkDgCRbteGGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNjONyRjYXrpFD2MUeM6b9g9wqn0MB8GA1UdIwQY
MBaAFEyoWtQ7e0fnUoeDBxhHlNcKAnZsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yYmVhOGYtOWZiYy00NzY1LTkzYmMt
MjIyMjUyOTI5ODczLzEvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC8yYmVhOGYtOWZiYy00NzY1LTkzYmMtMjIyMjUyOTI5ODcz
LzEvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXhzKZoGe
VuvXhljZPxPifaDLeGAGLll5VDiibXiV6CFGMW+whYt1I7W0qDmWUPl9U6QyLhc1
/TDbePiMUDd8KW73YIclta4AMESvk6AvrsyL9ZN5WyfSRC2hFzPY90gmAYXaZj5A
ub6SQLyuANLiTBM2O661GiiJ1P6L4V+mFZ4BORlOfVS+hVkOOse4lNhocYNyhnRJ
ZcGcSgFW61oo2HVc1+WkVKTbylMXyE9CtN8WRtJ+MlcOpOGmMFv23+ns+YJufK+q
Ub6Th/OErWGfoa0Xyd/KKnIG3GVWAUgrA3chXlfD6VmMQtr5Rwa5ZCMDzWYllr2U
z4DpOYPDlQ08eQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:41:34 2025 by rpki-client