Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: I9I2k04X7yhiedZWBi9HmlaGF7NTUg3fYaI/8gCk080=
Subject key identifier: 71:70:30:2B:B9:61:5D:9E:ED:34:A8:B3:95:57:87:CB:2A:1D:BA:1F
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 0199FC8F9F0A30AD8BEA2E928B8E34D20723
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 13:01:34 +0000
Manifest this update: Sun 19 Oct 2025 13:01:34 +0000
Manifest next update: Mon 20 Oct 2025 13:01:34 +0000
Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: ++1gqya5ERkgbAEYKUaD1prKbqV1QUh5Yj0kvS/5Dl4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:9f:0a:30:ad:8b:ea:2e:92:8b:8e:34:d2:07:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Oct 19 13:01:34 2025 GMT
Not After : Oct 20 13:01:34 2025 GMT
Subject: CN=7170302bb9615d9eed34a8b3955787cb2a1dba1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:45:fe:da:1f:9b:5b:f2:7e:0f:ef:00:be:c0:
fa:4b:0f:9a:58:82:83:53:6c:89:f0:e2:e5:b8:a5:
74:e9:ff:bb:bb:6e:96:cb:0c:47:d9:e4:b9:bc:bc:
c7:b1:02:05:05:50:38:0f:ee:a9:24:c2:0c:b4:fc:
9d:fc:f6:5e:92:32:3b:7f:67:ad:e6:7e:ff:ec:0f:
42:e8:e3:54:38:62:38:af:20:48:89:54:99:88:58:
95:af:7b:a3:03:a0:39:3b:62:07:4e:21:2f:84:e1:
c1:54:60:01:e5:1d:17:ed:5a:ec:c4:e4:9a:a4:cb:
30:06:f8:d5:d2:9f:9a:eb:5b:74:4d:71:6f:93:7c:
e4:c7:54:79:fc:32:02:fd:27:3d:c4:10:32:b4:3f:
9d:1b:cb:9f:6c:8d:78:ca:4d:85:9b:25:35:2b:11:
b9:4d:d9:1e:1d:13:08:f4:44:99:7c:17:02:01:2f:
38:61:fc:48:65:7a:eb:29:11:e4:cd:dd:95:a2:ff:
c4:3e:c6:9d:fa:03:6e:bd:0b:5e:91:2b:b5:04:f5:
2b:4c:53:6d:3b:47:61:5c:87:8a:98:43:1d:75:1d:
ce:eb:d5:ca:1f:00:73:da:7e:bd:6b:30:67:7b:0c:
28:82:05:66:d6:f3:06:e0:4a:b8:86:00:a5:4b:34:
8f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:70:30:2B:B9:61:5D:9E:ED:34:A8:B3:95:57:87:CB:2A:1D:BA:1F
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:2b:fd:d4:c0:ec:66:f8:ea:f1:9c:22:9f:f8:89:0f:6e:71:
2b:68:33:fa:2e:95:51:24:58:b6:55:5b:a5:7e:3d:41:b3:18:
08:49:36:86:88:44:90:0a:6a:21:59:eb:2d:10:46:57:f8:10:
9c:e9:10:f1:63:08:c4:e4:f1:fb:01:66:48:5a:b2:20:b6:5f:
30:ba:e1:af:da:3f:b4:16:da:ed:10:79:b4:9f:43:23:c7:22:
73:b3:fa:c3:be:58:eb:2a:87:29:6a:c0:fc:fc:83:6f:88:c9:
09:0e:fc:e2:dd:1c:5a:36:99:56:5f:8e:29:f1:e4:46:4c:6d:
4b:09:5b:31:e5:73:7f:bf:1d:63:50:81:a2:4c:75:28:29:46:
36:20:f2:50:22:33:47:e5:70:c2:bd:a9:47:34:9f:52:26:0b:
c9:29:bb:71:79:20:ef:0d:5d:c4:f0:99:c9:22:b1:6a:0c:c3:
72:4e:df:7e:04:73:2d:91:b5:2c:37:a0:bd:41:87:25:87:96:
5b:74:a4:d6:64:4d:ad:f5:4b:f6:5c:6e:7f:6c:31:0d:bd:a6:
d9:24:d9:ef:c5:b8:1b:0b:ae:be:ca:d6:f4:c1:0b:a3:53:c6:
f8:44:e5:77:71:7e:96:2e:2d:4f:14:e9:67:0e:26:e8:d0:55:
5c:61:c2:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:31:28 2025 by rpki-client