Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: 6bDEbZ/BilpBPW4JG+cy9ydri77nVA5gswqDsytx7r0=
Subject key identifier: B0:68:81:BA:C8:98:09:22:DC:7B:4E:A3:6A:5D:95:37:19:3F:CF:E8
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 0198D5158D3D6036C52C5C72A2EE59F6A7A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 04:00:16 +0000
Manifest this update: Sat 23 Aug 2025 04:00:16 +0000
Manifest next update: Sun 24 Aug 2025 04:00:16 +0000
Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: 0cL55J3+p/0PeEWF0afwd1uVdN3qY7Mp4NYwThKx9fk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:8d:3d:60:36:c5:2c:5c:72:a2:ee:59:f6:a7:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Aug 23 04:00:16 2025 GMT
Not After : Aug 24 04:00:16 2025 GMT
Subject: CN=b06881bac8980922dc7b4ea36a5d9537193fcfe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cd:89:ba:14:6e:84:3d:f2:17:93:f4:bf:fa:
58:f5:e3:23:54:37:22:3c:47:a0:c9:d5:85:e1:57:
6b:66:73:ba:52:f6:01:48:0d:41:fd:82:84:37:00:
cb:01:76:d9:80:6a:c3:f8:a5:e3:c3:84:a6:e8:da:
fa:6a:78:3b:12:42:9c:1d:d8:7e:17:46:8b:05:03:
0a:89:69:63:a2:5d:aa:47:f6:99:c3:bf:fc:b3:5b:
26:d4:cd:0a:4f:f5:41:47:87:16:29:c4:4a:8a:63:
69:82:12:2a:5f:f1:97:13:27:b0:99:75:b8:dd:a1:
02:7c:1f:5c:91:93:2e:ae:0e:8f:67:e2:44:27:4e:
32:2a:50:c5:62:82:1c:64:4a:8c:5b:85:36:bf:9a:
b7:ad:e8:94:91:4a:8a:3d:9f:e0:8d:50:06:17:0c:
01:4d:56:c1:2d:5d:85:7a:d7:b8:d0:5a:42:57:d9:
dd:0d:62:27:5a:02:29:23:8f:39:26:a9:82:17:3c:
cb:a7:cd:96:c0:c5:8c:5a:44:ef:81:13:4b:87:bd:
cd:3f:fa:09:e4:35:37:ee:2a:be:77:ae:08:e7:84:
f5:02:30:44:40:5b:33:31:78:64:df:17:9b:4b:a9:
a1:1a:1d:19:43:3a:30:9f:b7:0c:c1:83:1a:10:9c:
77:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:68:81:BA:C8:98:09:22:DC:7B:4E:A3:6A:5D:95:37:19:3F:CF:E8
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:7e:f4:99:f6:d0:ac:95:1c:94:b5:03:02:18:b5:2a:6d:19:
96:7a:1b:8c:0c:b2:0d:b2:68:de:54:53:d2:44:35:5b:9f:5f:
21:64:fe:77:98:7a:e9:32:6b:1c:d1:20:c4:05:d8:ff:2b:66:
89:b5:9a:fa:5b:82:4b:3c:e6:56:99:81:b4:6c:f7:df:83:18:
c8:e4:ac:1f:b0:aa:2a:b1:09:78:e4:c9:94:ed:d1:08:46:44:
9e:8d:19:9e:54:11:6b:ba:37:b8:c0:a2:13:2a:ce:04:37:f4:
f3:6f:80:df:78:72:12:03:20:b2:8f:df:49:f4:4c:56:b8:1e:
2a:eb:41:89:c9:93:38:07:65:4e:f8:99:cc:36:30:66:3a:45:
4c:ea:bb:40:49:47:07:dd:e7:64:c6:98:6e:dd:0d:2b:1b:35:
8b:12:6f:06:86:bb:b0:c5:fe:74:31:97:2b:54:2a:c4:77:81:
3d:29:51:dc:b4:7e:28:59:d2:91:2d:4c:d5:a7:9c:3c:e1:71:
6f:ff:f6:3e:18:4d:0e:a2:4f:7f:84:00:dc:11:1e:e2:96:9a:
51:3b:d9:96:0a:df:6c:9f:57:6d:00:60:f0:1f:3c:80:53:97:
dc:53:57:3e:f7:f7:51:fb:42:ea:4b:41:ed:bc:70:ea:0a:b0:
7e:e0:29:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:34:55 2025 by rpki-client