Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
File: tKW-MwcSDmXjxBZcnI50jBwSp6I.mft (raw, json)
Hash identifier: eiIzAskhsUbC60ow1qA6H2qBuHHRtv/4Y7S4S0QGmpE=
Subject key identifier: 56:7E:65:8E:CA:A1:1D:55:95:41:0E:C6:F2:B6:F7:78:23:09:F7:23
Authority key identifier: B4:A5:BE:33:07:12:0E:65:E3:C4:16:5C:9C:8E:74:8C:1C:12:A7:A2
Certificate issuer: /CN=b4a5be3307120e65e3c4165c9c8e748c1c12a7a2
Certificate serial: 0199FBEB1103CFC196FDDB9F097E7A0D88D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
Manifest number: 0632
Signing time: Sun 19 Oct 2025 10:01:50 +0000
Manifest this update: Sun 19 Oct 2025 10:01:50 +0000
Manifest next update: Mon 20 Oct 2025 10:01:50 +0000
Files and hashes: 1: pHJ5oRo1kF5oiX8KeKirS42gdJI.roa (hash: pWmX7zoUYI3ChoG1HELYfAkOPLPYyR79PMNSLK6H1B0=)
2: tKW-MwcSDmXjxBZcnI50jBwSp6I.crl (hash: mMotWP5DPjraapA5+xuiDQfXin+srD8PgyUuqmuds4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:11:03:cf:c1:96:fd:db:9f:09:7e:7a:0d:88:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a5be3307120e65e3c4165c9c8e748c1c12a7a2
Validity
Not Before: Oct 19 10:01:50 2025 GMT
Not After : Oct 20 10:01:50 2025 GMT
Subject: CN=567e658ecaa11d5595410ec6f2b6f7782309f723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:69:18:25:fc:02:00:80:cf:4f:db:ec:ee:20:
f0:c5:a2:43:da:11:09:80:cf:a8:e4:de:8c:16:55:
95:9c:37:76:04:d5:16:59:0f:6d:b6:e4:bb:c1:8b:
24:b0:76:c0:f9:be:f6:1d:6b:b2:52:ce:51:cf:fc:
38:61:c3:d0:ff:eb:28:40:38:85:c3:4a:4f:2a:95:
f5:bb:1e:fd:76:cb:ec:0b:2e:ec:37:14:2d:f2:fd:
8c:92:fb:5d:d8:0c:5f:5d:6f:0d:7c:d1:31:06:f5:
c8:49:ba:8d:19:ec:18:3f:d7:d5:9d:5d:9a:ea:34:
9d:59:cc:9f:e4:52:33:38:87:c8:3a:7d:6b:08:4f:
ac:07:cc:f7:80:03:ed:63:43:4d:2b:e8:26:ad:ed:
d2:c3:9b:10:ed:e3:3f:8a:ab:e9:2d:4a:81:eb:19:
9c:cf:55:b7:71:01:ee:b1:28:70:7b:52:b3:0f:3c:
b3:5c:f8:60:00:6f:d9:13:bf:a8:43:bd:28:ce:56:
bf:91:7c:df:1b:b0:f6:af:f4:f4:f3:92:07:af:bf:
a1:8b:65:9e:3e:18:ae:a0:57:56:b2:01:8d:6a:fd:
46:fd:5d:62:7b:eb:69:01:66:dc:dc:a3:1d:f1:5e:
b5:14:2d:3f:d6:93:d1:21:88:a0:b3:af:cc:46:c2:
31:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:7E:65:8E:CA:A1:1D:55:95:41:0E:C6:F2:B6:F7:78:23:09:F7:23
X509v3 Authority Key Identifier:
keyid:B4:A5:BE:33:07:12:0E:65:E3:C4:16:5C:9C:8E:74:8C:1C:12:A7:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:61:1d:02:65:c9:23:b5:37:bc:4f:4b:a2:48:e7:fd:fd:9d:
0e:fe:c5:30:2a:a0:21:4b:40:7d:ec:0a:f6:5d:de:56:e4:f0:
2c:78:12:3c:7e:f9:c7:35:be:17:56:d3:ca:f3:36:fe:c9:d0:
81:18:df:3c:cc:0f:4b:fb:c1:d5:ba:86:cf:42:05:2e:e8:54:
78:68:5b:ec:e0:ee:27:97:fe:3f:24:06:0d:a6:76:dd:b5:7c:
3c:80:72:d0:5a:71:94:00:fa:1c:03:ff:dd:5d:b4:22:46:94:
04:6e:82:bb:35:50:b5:0b:c7:04:cd:1a:07:46:ef:be:c6:a4:
c2:7e:34:4d:ce:a4:dc:e0:25:84:e7:84:a2:4c:cf:34:3f:90:
80:e0:0e:09:c5:f3:74:c0:4c:d2:4d:65:65:bd:fb:0f:e2:e8:
9d:51:b7:a6:18:a6:b4:4f:a5:aa:0b:24:ee:60:20:95:e9:99:
c7:7f:78:99:58:24:b1:f6:e2:0a:e5:ef:0b:74:bc:b2:0a:c1:
eb:94:a9:4e:73:8e:34:f3:b1:a0:f7:6a:9a:4d:92:71:b7:13:
32:a0:a1:e3:4d:a1:10:73:47:c7:5b:41:0a:b3:eb:a9:64:d4:
e7:62:f4:f5:96:11:f6:69:99:25:c0:6b:13:00:62:9c:4b:c1:
2c:d0:5c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:11:06 2025 by rpki-client