Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
File: TjQBh8D85f_wN87ZplCCQ-QE2nE.mft (raw, json)
Hash identifier: 4INV1VD5MEL2owYraTfWoDjArD/9cVRxvqXuZc12xdE=
Subject key identifier: F1:10:15:8A:AF:74:F8:3F:5C:08:B3:02:B6:CB:A2:40:D2:88:47:D8
Authority key identifier: 4E:34:01:87:C0:FC:E5:FF:F0:37:CE:D9:A6:50:82:43:E4:04:DA:71
Certificate issuer: /CN=4e340187c0fce5fff037ced9a6508243e404da71
Certificate serial: 0198D6CD35C9C08F3C6DE7E7B0B328A6DC33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TjQBh8D85f_wN87ZplCCQ-QE2nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
Manifest number: 0976
Signing time: Sat 23 Aug 2025 12:00:29 +0000
Manifest this update: Sat 23 Aug 2025 12:00:29 +0000
Manifest next update: Sun 24 Aug 2025 12:00:29 +0000
Files and hashes: 1: CpuMVh4uJ1tcoj_OkQygaUN_hh8.roa (hash: yhnMpFW3oI3a8/KGPX3tjlLUQZvGsHrg1LJyUrjeFm8=)
2: TjQBh8D85f_wN87ZplCCQ-QE2nE.crl (hash: 60yawr/LfDkMPLMKuQ+gVGKYllSUsEjtEDjEPqxZ8+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TjQBh8D85f_wN87ZplCCQ-QE2nE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:35:c9:c0:8f:3c:6d:e7:e7:b0:b3:28:a6:dc:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e340187c0fce5fff037ced9a6508243e404da71
Validity
Not Before: Aug 23 12:00:29 2025 GMT
Not After : Aug 24 12:00:29 2025 GMT
Subject: CN=f110158aaf74f83f5c08b302b6cba240d28847d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d2:f9:bf:a6:84:18:55:c2:8f:d9:5c:27:8e:
3f:78:3a:f3:71:ea:94:25:ac:ca:16:7d:b1:b5:73:
ce:7e:17:79:19:5a:5f:3e:cf:73:ed:5f:25:79:4b:
1c:b3:0d:0d:e1:33:c8:02:4e:b5:dc:59:8f:8e:31:
6d:c6:53:37:cd:19:a4:39:71:96:21:1b:cc:63:5e:
90:a5:b1:af:96:83:b8:32:a1:19:a0:cd:72:03:23:
e6:80:28:cb:46:9f:1c:c9:4b:09:53:94:92:ae:e4:
82:7f:2b:02:13:e4:b9:c8:45:a9:66:24:3d:2d:e2:
0c:d2:95:f4:14:b5:bf:7c:b1:59:69:85:b6:a8:dc:
48:23:1b:30:83:99:b5:53:33:f0:48:d1:51:27:d3:
a7:d5:7f:46:da:b9:85:32:50:73:3f:3c:5b:ad:72:
eb:15:fe:75:cc:d3:ae:67:04:2d:3b:e5:59:33:19:
99:93:e0:b1:a6:05:54:04:e3:35:a5:26:60:9e:a6:
03:92:33:fc:c1:2c:ef:29:49:d8:33:69:e2:31:7f:
4f:ce:a6:25:0e:2b:71:28:d4:01:2b:44:b0:f7:aa:
55:af:5b:37:1f:a7:47:c0:4a:f3:a3:2c:56:16:9c:
44:12:ad:c0:b3:b3:96:59:e8:0a:43:a1:64:83:12:
09:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:10:15:8A:AF:74:F8:3F:5C:08:B3:02:B6:CB:A2:40:D2:88:47:D8
X509v3 Authority Key Identifier:
keyid:4E:34:01:87:C0:FC:E5:FF:F0:37:CE:D9:A6:50:82:43:E4:04:DA:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TjQBh8D85f_wN87ZplCCQ-QE2nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:2c:4e:5d:df:4f:d2:1d:2f:0b:00:ba:34:ec:78:b7:8f:d8:
66:b9:e3:c1:ef:b0:6f:a1:46:f8:71:f8:d4:a3:b0:bb:a4:fc:
fa:c8:1d:41:3c:7d:08:13:b4:68:96:b1:9f:b4:88:e5:35:9e:
b0:72:88:fd:17:f9:fc:80:4c:5f:c2:8e:37:c0:90:34:d8:77:
b4:39:a3:c3:ea:6b:2c:b4:9f:19:61:4e:9c:e2:d2:64:1d:d4:
1b:01:e4:31:1e:3a:74:63:1c:af:f7:d9:e4:78:c3:84:5a:3d:
f2:be:09:e4:40:11:70:1b:11:d7:ef:3f:9c:2a:5a:89:15:d5:
f7:9f:40:f7:4b:55:4e:51:db:a4:e6:b6:30:ad:77:94:5a:80:
6b:fb:33:cd:bf:95:a6:c5:f6:bd:ff:3e:3c:b2:bc:da:8c:3b:
1c:e8:8d:92:fd:e1:40:7e:52:20:d0:08:dd:26:3d:13:72:04:
9c:4d:94:b9:31:4d:91:ce:b6:36:a3:92:7e:f3:74:46:c4:5e:
81:0b:1c:a9:4c:02:e1:60:a0:4b:ce:b8:73:09:19:78:66:2a:
84:c5:3d:8c:ba:8c:48:53:53:19:2f:39:43:c6:b6:f3:8f:d3:
2e:f5:37:28:f1:be:d3:d6:58:a0:a3:86:60:cd:58:0c:d4:61:
d7:09:82:f2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzTXJwI88befnsLMoptwzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlMzQwMTg3YzBmY2U1ZmZmMDM3Y2VkOWE2NTA4MjQzZTQw
NGRhNzEwHhcNMjUwODIzMTIwMDI5WhcNMjUwODI0MTIwMDI5WjAzMTEwLwYDVQQD
EyhmMTEwMTU4YWFmNzRmODNmNWMwOGIzMDJiNmNiYTI0MGQyODg0N2Q4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNL5v6aEGFXCj9lcJ44/eDrzceqU
JazKFn2xtXPOfhd5GVpfPs9z7V8leUscsw0N4TPIAk613FmPjjFtxlM3zRmkOXGW
IRvMY16QpbGvloO4MqEZoM1yAyPmgCjLRp8cyUsJU5SSruSCfysCE+S5yEWpZiQ9
LeIM0pX0FLW/fLFZaYW2qNxIIxswg5m1UzPwSNFRJ9On1X9G2rmFMlBzPzxbrXLr
Ff51zNOuZwQtO+VZMxmZk+CxpgVUBOM1pSZgnqYDkjP8wSzvKUnYM2niMX9PzqYl
DitxKNQBK0Sw96pVr1s3H6dHwErzoyxWFpxEEq3As7OWWegKQ6FkgxIJ6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPEQFYqvdPg/XAizArbLokDSiEfYMB8GA1UdIwQY
MBaAFE40AYfA/OX/8DfO2aZQgkPkBNpxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGpRQmg4RDg1Zl93Tjg3WnBsQ0NRLVFFMm5FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC85NjFmNjQtODM3Yy00ODExLWFhNDIt
NThmMjE1YmNhNTNhLzEvVGpRQmg4RDg1Zl93Tjg3WnBsQ0NRLVFFMm5FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC85NjFmNjQtODM3Yy00ODExLWFhNDItNThmMjE1YmNhNTNh
LzEvVGpRQmg4RDg1Zl93Tjg3WnBsQ0NRLVFFMm5FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuixOXd9P
0h0vCwC6NOx4t4/YZrnjwe+wb6FG+HH41KOwu6T8+sgdQTx9CBO0aJaxn7SI5TWe
sHKI/Rf5/IBMX8KON8CQNNh3tDmjw+prLLSfGWFOnOLSZB3UGwHkMR46dGMcr/fZ
5HjDhFo98r4J5EARcBsR1+8/nCpaiRXV959A90tVTlHbpOa2MK13lFqAa/szzb+V
psX2vf8+PLK82ow7HOiNkv3hQH5SINAI3SY9E3IEnE2UuTFNkc62NqOSfvN0RsRe
gQscqUwC4WCgS864cwkZeGYqhMU9jLqMSFNTGS85Q8a284/TLvU3KPG+09ZYoKOG
YM1YDNRh1wmC8g==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:52:40 2025 by rpki-client