
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/6f40dd-4c07-405b-a042-f9250dd79fe9/1/TNcQtlNz4NkQ2nBjb8FDwGul3aw.mft
File: TNcQtlNz4NkQ2nBjb8FDwGul3aw.mft (raw, json)
Hash identifier: 4p/2fyEqJjDqwfhYd6BjrpgQog8CJx8luW/bGF37sVo=
Subject key identifier: 43:FE:83:19:1E:FD:A2:C8:8D:90:82:6A:57:AA:FB:03:DE:C1:F6:4B
Authority key identifier: 4C:D7:10:B6:53:73:E0:D9:10:DA:70:63:6F:C1:43:C0:6B:A5:DD:AC
Certificate issuer: /CN=4cd710b65373e0d910da70636fc143c06ba5ddac
Certificate serial: 019A02229A306617744E26A9A6639E72B73B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNcQtlNz4NkQ2nBjb8FDwGul3aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/6f40dd-4c07-405b-a042-f9250dd79fe9/1/TNcQtlNz4NkQ2nBjb8FDwGul3aw.mft
Manifest number: 163B
Signing time: Mon 20 Oct 2025 15:00:13 +0000
Manifest this update: Mon 20 Oct 2025 15:00:13 +0000
Manifest next update: Tue 21 Oct 2025 15:00:13 +0000
Files and hashes: 1: TNcQtlNz4NkQ2nBjb8FDwGul3aw.crl (hash: KIXzVqGjVOxnRHdRRFwsazpCcRn4Pb6GRUQ/7GKa510=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/6f40dd-4c07-405b-a042-f9250dd79fe9/1/TNcQtlNz4NkQ2nBjb8FDwGul3aw.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/6f40dd-4c07-405b-a042-f9250dd79fe9/1/TNcQtlNz4NkQ2nBjb8FDwGul3aw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TNcQtlNz4NkQ2nBjb8FDwGul3aw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:22:9a:30:66:17:74:4e:26:a9:a6:63:9e:72:b7:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cd710b65373e0d910da70636fc143c06ba5ddac
Validity
Not Before: Oct 20 15:00:13 2025 GMT
Not After : Oct 21 15:00:13 2025 GMT
Subject: CN=43fe83191efda2c88d90826a57aafb03dec1f64b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:36:42:d3:09:d2:f4:99:a5:bd:f9:92:d9:bc:
c9:f0:c5:2f:26:9d:8f:b7:d2:f3:c8:07:7c:46:ed:
af:2c:58:5f:96:0b:f6:9b:25:b7:f0:f5:68:94:39:
85:52:52:ea:3f:4e:8d:eb:ec:e4:1b:53:a9:67:a3:
77:b2:7a:07:84:20:54:fa:49:7d:5f:67:87:7a:31:
b6:16:03:a4:c4:5e:bc:99:d8:cd:3f:61:14:5e:bb:
52:78:37:5e:91:ea:3d:7a:8b:81:59:4d:9a:29:aa:
86:2e:65:82:c4:27:61:0a:5f:68:c9:26:4b:6d:e0:
7f:47:16:e1:72:f5:53:7c:7a:d0:9c:f6:09:30:68:
dc:67:b2:e6:7e:4e:2c:dd:ce:b1:2b:17:b0:1a:cc:
88:46:df:18:fa:f2:4e:52:91:a7:42:cb:5a:f8:6f:
76:4f:87:f7:54:11:f1:39:54:81:e6:5f:e8:ab:b4:
ee:77:3e:4b:1b:c6:b4:61:ae:f6:cc:fa:4d:ce:48:
25:23:ab:90:8c:42:c2:78:85:97:88:0c:69:64:9e:
76:4e:96:ca:87:a6:d2:67:19:c5:f4:02:1e:df:81:
db:97:96:e8:65:ae:98:59:c4:c1:28:7f:4e:8f:6e:
b0:c5:69:1e:70:25:2b:7c:9c:00:88:71:a6:2b:1f:
d4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:FE:83:19:1E:FD:A2:C8:8D:90:82:6A:57:AA:FB:03:DE:C1:F6:4B
X509v3 Authority Key Identifier:
keyid:4C:D7:10:B6:53:73:E0:D9:10:DA:70:63:6F:C1:43:C0:6B:A5:DD:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNcQtlNz4NkQ2nBjb8FDwGul3aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6f40dd-4c07-405b-a042-f9250dd79fe9/1/TNcQtlNz4NkQ2nBjb8FDwGul3aw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6f40dd-4c07-405b-a042-f9250dd79fe9/1/TNcQtlNz4NkQ2nBjb8FDwGul3aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:f2:7c:15:04:81:57:14:47:a7:f3:90:2d:5b:78:94:57:ff:
c3:b0:eb:d7:ab:29:d7:b8:13:04:17:a7:12:6e:55:cc:2a:b3:
d4:3f:75:d1:67:25:e7:6e:ab:bc:f2:3e:1e:6a:86:40:8e:ac:
e0:fa:28:0e:20:07:e3:7e:e4:89:5f:44:8f:6e:01:6f:62:f4:
19:81:1c:e7:2f:5a:92:46:2e:a4:8f:53:de:15:24:16:d2:b5:
08:e6:97:42:d0:7a:b8:27:a2:85:94:d8:32:c3:4f:6e:24:c0:
55:cc:75:9a:cc:1c:88:db:d6:14:f4:f4:4b:05:1a:5b:39:00:
87:68:c4:1f:14:61:5c:b9:b8:e0:76:4c:08:05:23:67:37:50:
42:82:78:92:ea:25:2f:30:37:43:ee:54:f0:02:64:e9:9f:1b:
48:e0:a2:1f:dc:0c:2e:1f:fe:65:9a:51:fc:a5:28:a5:d2:63:
07:97:90:a5:9b:5e:c5:83:aa:ba:6d:68:08:9d:37:72:80:8b:
5b:fa:8b:9b:1e:fd:14:1a:88:25:5f:d8:ea:4e:c7:56:9a:9f:
35:7e:06:63:a5:bc:c6:ec:99:9f:c7:81:1c:36:cb:0a:22:49:
7a:d5:13:7c:90:70:39:db:ae:8a:92:1b:06:27:d8:29:e5:ef:
6d:cc:e0:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:42:59 2025 by rpki-client