Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft
File: TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft (raw, json)
Hash identifier: zPtA6LBPPeWiraLmiPdFrT2rNqulaGYUqR/tSZVD8bM=
Subject key identifier: 63:F8:FC:D0:D4:90:B2:B8:93:95:98:23:51:37:9C:CC:17:07:EE:D1
Authority key identifier: 4C:D7:1F:5A:00:50:F8:AE:64:44:C6:38:76:9B:A3:75:FD:DB:CE:19
Certificate issuer: /CN=4cd71f5a0050f8ae6444c638769ba375fddbce19
Certificate serial: 0198D5BBB3D1ADD46D4CF1ACEBD095955094
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNcfWgBQ-K5kRMY4dpujdf3bzhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft
Manifest number: 1335
Signing time: Sat 23 Aug 2025 07:01:44 +0000
Manifest this update: Sat 23 Aug 2025 07:01:44 +0000
Manifest next update: Sun 24 Aug 2025 07:01:44 +0000
Files and hashes: 1: R8OfYueHd1P1AWWtdGiixwllIMs.roa (hash: ZKzgreBUlCJXbuPQDDLtfbqfZaf5YaZJohzFfYmemPA=)
2: TNcfWgBQ-K5kRMY4dpujdf3bzhk.crl (hash: zwHPxFZvE+WXIEC/YPCVH1vy4GpeA5oD+8E0JZI3iqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TNcfWgBQ-K5kRMY4dpujdf3bzhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:b3:d1:ad:d4:6d:4c:f1:ac:eb:d0:95:95:50:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cd71f5a0050f8ae6444c638769ba375fddbce19
Validity
Not Before: Aug 23 07:01:44 2025 GMT
Not After : Aug 24 07:01:44 2025 GMT
Subject: CN=63f8fcd0d490b2b89395982351379ccc1707eed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d1:9b:7a:ca:1e:1d:e8:ea:58:df:d0:c2:44:
2f:52:77:36:fd:8f:06:99:60:02:0f:b9:76:b6:30:
c6:f2:fd:bf:93:f9:53:0e:ac:ab:28:f9:fc:16:dd:
e0:a0:dd:6e:6b:17:13:43:6e:ad:db:f6:73:ab:c4:
5b:05:47:ad:f0:52:17:42:38:22:9b:21:8c:f7:9c:
2a:e0:5e:61:97:3a:84:13:36:c3:14:8c:03:bb:ac:
e1:94:32:72:30:27:54:b4:db:88:95:38:32:8d:e1:
66:a2:63:e0:2a:8a:fe:2a:47:64:d5:10:72:0d:66:
3e:da:f9:ce:31:75:36:6c:ae:57:4e:e9:a1:bc:e0:
f1:d5:19:d6:ae:6d:1e:05:6a:d1:53:3e:a5:9b:75:
fd:40:cb:1f:f5:ab:40:f1:75:a5:0a:ad:86:95:a7:
03:22:ba:1f:2a:30:db:61:cc:12:f9:bf:e1:1f:fa:
53:90:01:20:44:0b:f8:d8:ff:ad:3e:3f:fa:72:07:
fe:f5:dc:29:b7:60:19:3e:f7:9f:81:19:fe:2f:3e:
fa:95:c3:ae:7c:59:b5:b1:34:ed:8d:af:1a:3a:c4:
b8:f5:fc:51:80:36:84:5e:e2:5e:93:c3:33:6e:af:
bd:55:15:56:6e:76:bf:6d:99:eb:60:7d:c1:fe:c4:
61:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F8:FC:D0:D4:90:B2:B8:93:95:98:23:51:37:9C:CC:17:07:EE:D1
X509v3 Authority Key Identifier:
keyid:4C:D7:1F:5A:00:50:F8:AE:64:44:C6:38:76:9B:A3:75:FD:DB:CE:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNcfWgBQ-K5kRMY4dpujdf3bzhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:b2:f2:af:1f:38:d7:ab:83:3c:75:9d:fa:8f:46:2f:4d:28:
86:75:80:c1:11:7e:2a:67:2f:dd:b0:78:e8:bc:da:0b:ca:5e:
df:62:b4:e0:f7:cf:0c:11:79:7a:61:6b:82:fd:e5:1f:25:73:
18:8d:75:97:45:f2:d7:73:3f:fc:cb:c1:5f:a4:7b:04:cc:9c:
83:a9:e4:1c:06:d9:bd:d4:32:b8:0e:32:6a:b0:11:69:7f:1f:
64:2e:8e:f0:d1:61:fd:72:99:67:59:2a:ef:a5:11:c5:bf:4c:
1a:16:91:aa:ff:b8:84:d2:91:d7:e4:3a:b1:a9:fd:34:fe:10:
8f:af:26:9f:0d:60:1a:ce:aa:57:22:8c:e6:23:52:67:10:e7:
19:68:b3:c5:bc:74:8d:57:1e:81:59:57:57:5d:90:13:dd:d4:
a3:fb:07:c9:87:93:f4:67:ab:e2:01:7c:69:8e:1b:9d:f1:a3:
af:dc:ba:27:bb:5f:ed:01:e6:d9:d0:e1:e1:13:87:60:a5:09:
9c:9b:6f:27:4a:b3:ef:0d:6e:2f:0c:74:9c:26:17:14:b7:c7:
06:5d:ff:70:7c:bc:05:49:e9:79:a0:ea:04:8c:8a:81:dd:da:
df:cb:d6:dd:1a:8d:f2:46:64:61:5f:85:04:04:fd:b0:3d:6c:
b4:d1:a8:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:02 2025 by rpki-client