Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
File: TQiJTKQFMefSApQJEojnetEsKXk.mft (raw, json)
Hash identifier: maz1Fx7acDYjjl0d9keuPgy/sl2YZNR2sHrz49q+MjQ=
Subject key identifier: 3A:D6:94:38:5E:C0:86:88:14:6F:86:F9:4C:33:39:A3:5F:F7:11:8E
Authority key identifier: 4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
Certificate issuer: /CN=4d08894ca40531e7d20294091288e77ad12c2979
Certificate serial: 0198D4E0812594435165D1281AA4102BE63D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
Manifest number: 0710
Signing time: Sat 23 Aug 2025 03:02:19 +0000
Manifest this update: Sat 23 Aug 2025 03:02:19 +0000
Manifest next update: Sun 24 Aug 2025 03:02:19 +0000
Files and hashes: 1: 9vSYuCdAG_e0E6RGGzb6agTE0BM.roa (hash: QacZLKOpB/Eo9Q8tjYWI0KN++SKGpTz/tW+UR9tDqD0=)
2: TQiJTKQFMefSApQJEojnetEsKXk.crl (hash: TIsN9sJuoh+KcDDTLXip1WIc+ftT3v2aBGW2tgPgYSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:81:25:94:43:51:65:d1:28:1a:a4:10:2b:e6:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d08894ca40531e7d20294091288e77ad12c2979
Validity
Not Before: Aug 23 03:02:19 2025 GMT
Not After : Aug 24 03:02:19 2025 GMT
Subject: CN=3ad694385ec08688146f86f94c3339a35ff7118e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cd:fe:ee:cb:4b:c7:e9:0c:7d:59:fc:e6:6d:
95:cb:60:46:1d:dd:55:68:8d:7e:16:5e:98:1a:3a:
50:32:37:2b:ea:e7:02:b8:0f:65:56:4c:82:be:d0:
cd:97:74:48:30:b7:47:60:9b:6b:6b:c3:74:7f:6a:
e9:7d:0e:29:a6:5e:80:d6:da:9c:11:6d:93:c8:d3:
c4:04:d9:75:ab:e9:25:99:c3:4f:ee:96:6d:d1:cd:
35:83:98:11:df:19:50:b1:60:46:b5:dc:6d:e7:91:
66:3e:1f:a9:35:36:16:61:49:85:60:fd:9e:d1:4b:
37:28:d4:c4:2d:17:87:1d:5c:b3:0f:8f:07:cd:e6:
b0:5e:67:80:77:a1:ee:3b:6c:48:9f:bb:60:e0:e2:
71:eb:25:f5:65:27:5a:d3:6b:0a:44:9a:b3:20:63:
7d:c1:37:20:01:df:a1:75:61:f3:ba:e6:3b:0d:5a:
16:c8:8f:5b:5c:c4:ed:5e:b9:20:ab:02:c6:5c:dc:
eb:5d:3b:ba:73:e7:db:1f:ce:12:ea:89:e4:ca:5a:
f0:94:04:61:f2:fe:e0:82:3d:6b:71:52:3e:95:22:
55:cc:68:51:c5:a3:4a:14:42:65:89:09:4e:5e:b2:
66:65:a2:49:d5:c7:e7:8f:90:8e:d7:7d:67:24:ca:
66:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:D6:94:38:5E:C0:86:88:14:6F:86:F9:4C:33:39:A3:5F:F7:11:8E
X509v3 Authority Key Identifier:
keyid:4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:d6:4f:af:f0:0a:ed:26:c5:07:fe:11:fd:66:f6:76:0b:82:
8f:be:5b:52:53:84:cd:d0:d0:a1:4d:8e:ed:82:e5:fc:40:f5:
14:73:22:7d:59:0a:e8:7e:2d:d3:68:3b:a3:2e:5f:34:9f:dd:
f8:f7:6f:ee:ce:0a:9c:5d:ab:28:12:29:8d:ed:f7:41:39:be:
9b:34:ff:1c:bb:b1:76:24:69:e2:40:ed:cb:b0:df:70:1e:f8:
ff:c4:43:cb:fb:ec:be:dd:6d:dd:73:c1:f2:78:ff:67:4e:ee:
34:5c:1d:a8:a4:da:ed:a6:b2:46:9d:28:f1:bc:6a:f3:61:34:
f3:f1:62:31:93:d7:02:28:f5:22:d8:f9:1b:37:9a:3c:60:be:
12:0c:11:de:ae:ac:84:74:df:71:da:44:5e:d1:79:48:c2:a6:
0a:43:b8:15:51:a2:fc:8d:c0:66:30:e0:c0:c5:2e:3c:0c:aa:
55:1f:ed:1b:62:96:10:dd:60:3d:0c:ee:11:86:31:f1:44:6a:
1c:70:3a:8a:3d:d0:d6:3b:0c:fb:29:cd:b3:e0:77:6c:57:11:
69:37:ef:4a:8b:16:ae:88:5a:ba:ae:06:a7:14:52:e6:36:29:
6f:bd:05:e2:55:8a:63:0e:ba:b7:d4:52:d3:5c:f0:75:7a:71:
f4:24:2f:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:04:19 2025 by rpki-client