Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
File: TKha1Dt7R-dSh4MHGEeU1woCdmw.mft (raw, json)
Hash identifier: TmYvUBrN2gUV9CE3T4p0xsYyUmHdO5SUKJ9IDn/1cZA=
Subject key identifier: 0E:24:97:FF:76:DF:95:BC:C2:37:82:5B:E1:0C:67:BF:D3:E3:36:77
Authority key identifier: 4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
Certificate issuer: /CN=4ca85ad43b7b47e752878307184794d70a02766c
Certificate serial: 0199FD34895D5159B6E04020F82D3A920C86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
Manifest number: 0268
Signing time: Sun 19 Oct 2025 16:01:42 +0000
Manifest this update: Sun 19 Oct 2025 16:01:42 +0000
Manifest next update: Mon 20 Oct 2025 16:01:42 +0000
Files and hashes: 1: TKha1Dt7R-dSh4MHGEeU1woCdmw.crl (hash: 8GDnQnwIa3os2lSjFYrmAPXHBhcIEGqizDJFegbnASM=)
2: cpRFayTuWEzodEO-QznXVMR-alE.roa (hash: wcJbOFjwwy8ZnD5yiXe5CzeprbHM7YA3HHhv8zEs++s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:89:5d:51:59:b6:e0:40:20:f8:2d:3a:92:0c:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca85ad43b7b47e752878307184794d70a02766c
Validity
Not Before: Oct 19 16:01:42 2025 GMT
Not After : Oct 20 16:01:42 2025 GMT
Subject: CN=0e2497ff76df95bcc237825be10c67bfd3e33677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:60:02:a6:9b:a4:76:7c:c0:a2:96:46:f7:b0:
1a:f0:51:b3:da:5e:16:49:59:9c:12:97:89:a3:9f:
e3:a4:ea:2d:d7:ef:84:d7:71:3e:32:b5:61:5a:6e:
c1:c9:bd:ea:ac:37:09:77:78:8e:0c:28:32:81:a1:
99:b6:46:63:50:4b:98:a0:b4:66:80:f0:d8:ab:a1:
6b:71:d2:d6:d7:5e:a5:38:77:b1:48:6c:77:2c:ad:
86:64:e3:c8:ad:61:e2:a2:23:fa:bf:75:d1:ac:c6:
07:fc:ae:8f:95:e8:e6:dd:83:1d:b4:46:b7:8c:15:
ee:bd:3b:3f:85:ab:93:96:48:c2:1c:0a:83:92:15:
81:f9:93:ef:b2:3e:8b:9d:f7:eb:c7:ef:9f:5c:84:
a1:9a:41:6c:b2:b5:73:d4:62:23:da:b0:da:90:34:
84:41:b7:3a:cb:75:c0:60:d9:bb:d6:8f:fc:ff:33:
aa:c3:c0:61:77:59:d5:8b:ac:15:0b:13:bf:2b:6d:
b2:6b:12:2b:d1:74:1c:68:cb:e1:d7:00:5b:5f:bf:
6f:ef:87:c3:a9:2c:03:af:cf:12:ec:e7:a1:15:1b:
b1:d2:c9:9b:fa:2f:f6:6d:65:39:60:35:8a:93:d7:
ae:b7:97:53:73:30:a7:a3:d2:c0:14:e0:16:af:d4:
88:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:24:97:FF:76:DF:95:BC:C2:37:82:5B:E1:0C:67:BF:D3:E3:36:77
X509v3 Authority Key Identifier:
keyid:4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:62:2f:f5:f5:dc:da:32:dd:29:52:7b:c7:5d:7e:df:ac:f7:
4d:ee:b3:23:57:8b:45:d7:8c:ce:5a:4d:61:91:ce:e6:81:3b:
60:71:54:41:b4:ff:97:57:5b:51:f7:0b:a6:5f:e4:be:d4:95:
57:67:13:d6:81:d7:7a:9c:1e:16:43:57:c7:b8:58:d1:af:ba:
42:33:10:48:db:0c:f7:73:7a:3a:2e:7b:38:e8:6d:09:88:69:
7f:2e:e5:f9:05:18:5c:e2:9d:5c:68:dd:3b:3c:4f:48:2a:19:
bd:67:2e:bf:40:21:d7:b9:db:a1:30:02:45:5b:e7:80:a4:b4:
3e:4d:76:c1:38:86:42:a9:6d:9f:98:79:c3:b5:47:cd:eb:16:
96:3d:22:22:0f:ef:24:37:3d:68:bb:f7:e3:e8:cb:0e:36:d8:
e1:ed:a1:51:8f:5e:1a:7a:c7:84:73:de:4e:89:92:b9:ed:50:
ab:ab:de:d9:be:78:1a:d4:ed:10:57:18:4e:67:68:04:90:ac:
85:00:67:2a:6a:80:0b:12:df:40:3f:7e:1f:5b:5a:3f:6d:b1:
53:35:79:4b:a1:ea:5f:61:c8:9c:16:db:3c:50:0c:f4:05:08:
c5:5f:a5:2e:c4:6d:04:bf:65:a6:c1:a2:c9:ad:a2:77:5e:e0:
85:99:6c:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:38 2025 by rpki-client