Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/1d0c39-2555-468f-be66-ff9bab90af18/1/tmxJhc1gZDIg4GSi4RTXj1sDnCs.mft
File: tmxJhc1gZDIg4GSi4RTXj1sDnCs.mft (raw, json)
Hash identifier: kmiwIJkHn23IrDNjxiOzKRS1/5bvSrY2Nj4bY+C9zzo=
Subject key identifier: B7:F2:2E:56:D4:68:57:EA:25:9C:F1:01:26:7A:8D:EA:A9:B4:21:A9
Authority key identifier: B6:6C:49:85:CD:60:64:32:20:E0:64:A2:E1:14:D7:8F:5B:03:9C:2B
Certificate issuer: /CN=b66c4985cd60643220e064a2e114d78f5b039c2b
Certificate serial: 019A01B538829268A2F4884DFA2BEE0750CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tmxJhc1gZDIg4GSi4RTXj1sDnCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/1d0c39-2555-468f-be66-ff9bab90af18/1/tmxJhc1gZDIg4GSi4RTXj1sDnCs.mft
Manifest number: 0932
Signing time: Mon 20 Oct 2025 13:00:44 +0000
Manifest this update: Mon 20 Oct 2025 13:00:44 +0000
Manifest next update: Tue 21 Oct 2025 13:00:44 +0000
Files and hashes: 1: tmxJhc1gZDIg4GSi4RTXj1sDnCs.crl (hash: Uy8+iogPjb5eLNjF/JvkraXXYg5txBMpwtfNlAOWjNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/1d0c39-2555-468f-be66-ff9bab90af18/1/tmxJhc1gZDIg4GSi4RTXj1sDnCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/1d0c39-2555-468f-be66-ff9bab90af18/1/tmxJhc1gZDIg4GSi4RTXj1sDnCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tmxJhc1gZDIg4GSi4RTXj1sDnCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:b5:38:82:92:68:a2:f4:88:4d:fa:2b:ee:07:50:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b66c4985cd60643220e064a2e114d78f5b039c2b
Validity
Not Before: Oct 20 13:00:44 2025 GMT
Not After : Oct 21 13:00:44 2025 GMT
Subject: CN=b7f22e56d46857ea259cf101267a8deaa9b421a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5c:90:c9:99:d4:ce:4a:39:58:0d:38:86:38:
57:ea:12:97:a3:16:d6:80:0c:9f:48:aa:bd:87:c4:
cc:78:62:dd:6b:98:a0:aa:c5:16:4c:07:ce:97:58:
f3:0e:c9:79:2f:7f:a5:9a:da:fd:e5:e5:f4:1d:78:
be:63:5c:0d:cd:8b:ef:0d:ba:17:cd:3d:d4:a9:31:
11:fe:2b:0c:2d:1e:c2:dd:22:a9:5d:4d:a4:7d:1c:
2e:77:cd:86:bc:bd:e4:31:4d:96:98:30:40:cd:e9:
59:47:f8:45:cb:c8:fd:1f:23:1a:c7:65:cc:33:bf:
f0:58:41:9e:85:e4:21:42:c3:a4:79:aa:3c:47:40:
7a:53:e7:3c:a2:23:e9:48:62:40:d6:cb:00:08:37:
b2:e1:de:19:be:ea:42:77:b4:06:fd:2f:ce:f5:10:
4d:ca:24:b9:a4:63:9c:58:4d:04:12:d8:27:8e:9b:
67:9c:d2:7a:f7:f1:86:46:68:ee:05:12:33:69:f3:
8d:3d:1f:3f:91:2a:10:b4:c4:a4:4f:3b:81:92:8e:
ec:4c:4e:42:0e:da:15:30:63:c5:cc:47:9c:0a:f3:
d4:19:88:60:dc:ac:25:63:fd:d6:c1:e1:5c:2a:3d:
0b:cd:5f:04:c4:97:62:08:0d:74:4f:88:35:7a:1d:
35:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:F2:2E:56:D4:68:57:EA:25:9C:F1:01:26:7A:8D:EA:A9:B4:21:A9
X509v3 Authority Key Identifier:
keyid:B6:6C:49:85:CD:60:64:32:20:E0:64:A2:E1:14:D7:8F:5B:03:9C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tmxJhc1gZDIg4GSi4RTXj1sDnCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1d0c39-2555-468f-be66-ff9bab90af18/1/tmxJhc1gZDIg4GSi4RTXj1sDnCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1d0c39-2555-468f-be66-ff9bab90af18/1/tmxJhc1gZDIg4GSi4RTXj1sDnCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:ad:26:a8:d0:80:57:c9:6a:0d:d4:1b:44:22:b4:1c:d5:28:
69:2a:3c:63:2c:7f:84:4f:c5:5a:78:43:34:77:ac:5e:b6:30:
1e:dc:e0:7c:ff:ac:58:7a:01:84:7d:d7:60:4a:51:c3:54:3b:
b8:6a:1c:71:8a:cd:5d:05:d6:5a:ac:c6:cf:2e:b3:aa:4a:00:
bb:45:a8:d1:d2:8f:6b:34:cb:cb:92:14:d8:98:52:87:dc:79:
85:33:03:ce:8a:9d:63:af:74:96:18:c9:13:45:7a:d7:b2:e2:
16:a4:b2:aa:b6:04:e9:96:7a:12:50:ad:65:f2:2f:04:21:66:
55:03:24:3e:ea:89:23:6e:04:e9:6a:b3:4d:d0:2e:d0:07:27:
d1:d4:c9:83:00:ef:ff:5c:8e:65:4f:73:b5:74:8b:17:7a:51:
c4:d5:dc:75:72:4b:f0:5c:06:90:66:53:78:c3:e4:43:8f:87:
8a:5a:ca:b4:c7:9d:32:fa:99:76:98:7e:03:73:36:d2:14:d1:
fa:8d:58:f7:8a:5e:53:35:42:94:83:f7:2d:0f:1b:ad:96:6c:
3d:9e:4f:a6:ca:e8:8e:25:27:0f:53:43:a6:19:6d:5b:1e:ad:
04:f5:97:d2:1f:6b:db:a3:7f:93:a5:cd:9b:08:4f:89:b4:2d:
6a:d2:cb:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:18:05 2025 by rpki-client