Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft
File: TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft (raw, json)
Hash identifier: Q8/mLKKN0Ofnvuuks0Sn/ssalt1dnW3jmBtl5xkCb90=
Subject key identifier: 96:C3:F3:9B:82:F5:ED:C9:43:F5:2F:55:E2:9A:B6:F3:D2:8B:A6:32
Authority key identifier: 4C:E9:03:79:BD:8D:04:37:4B:3A:DE:F0:60:D5:1A:E2:15:71:09:35
Certificate issuer: /CN=4ce90379bd8d04374b3adef060d51ae215710935
Certificate serial: 0198D4E00D9AAF25F9C19396975459F1001F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOkDeb2NBDdLOt7wYNUa4hVxCTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft
Manifest number: 31
Signing time: Sat 23 Aug 2025 03:01:50 +0000
Manifest this update: Sat 23 Aug 2025 03:01:50 +0000
Manifest next update: Sun 24 Aug 2025 03:01:50 +0000
Files and hashes: 1: 1zKIP7xP-3mviAaLxu-Q9kO8TDw.roa (hash: i+hbxTxfZVrUKiiV4ml6H+EfTXIaAVLa/rzpycnZQE0=)
2: TOkDeb2NBDdLOt7wYNUa4hVxCTU.crl (hash: ibGsogEH6u4s3YS3CElH/1182sxW2OgNQfVLVT4zB5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TOkDeb2NBDdLOt7wYNUa4hVxCTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:0d:9a:af:25:f9:c1:93:96:97:54:59:f1:00:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ce90379bd8d04374b3adef060d51ae215710935
Validity
Not Before: Aug 23 03:01:50 2025 GMT
Not After : Aug 24 03:01:50 2025 GMT
Subject: CN=96c3f39b82f5edc943f52f55e29ab6f3d28ba632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3a:5e:d0:e8:44:d2:21:79:14:53:55:e9:42:
eb:76:d4:e3:98:51:db:74:84:ec:02:5d:0e:8b:56:
99:05:d7:48:b6:89:b3:a3:dc:4c:49:7b:b8:4c:2b:
dd:4a:35:12:46:bb:55:a9:bf:8d:3e:51:f7:c9:c1:
bc:80:e1:cd:3d:63:56:44:d0:df:38:f1:e4:ab:71:
e8:a5:80:a2:f1:27:7b:ad:a7:10:61:e0:9e:1e:26:
a0:aa:2a:08:1d:42:d2:5e:f7:e3:5d:3e:69:cc:c0:
7c:01:11:ff:f1:ca:e9:06:6c:64:2e:3e:2a:1d:88:
c5:27:44:bd:d8:de:cd:86:a3:a8:f2:af:28:10:ce:
53:9c:2b:17:6b:ee:b4:a3:8d:4a:33:d5:bd:1d:2a:
2f:d7:1b:b7:91:c5:34:77:96:b8:5e:0d:3a:77:b7:
c4:cc:19:09:af:a7:0d:5b:10:fb:d1:52:e8:ce:47:
98:c3:dc:a4:5d:be:d1:7a:d3:5a:d2:0f:c4:66:60:
a0:df:53:98:ca:b4:af:e7:e0:c1:c5:5e:87:92:6b:
f0:7f:2b:94:47:77:49:b3:c2:98:d3:3f:f5:07:c8:
a1:29:98:be:28:5a:8e:6d:b3:65:e0:a5:97:71:9b:
86:18:b1:1d:fc:49:ed:8e:17:8e:3d:4b:28:ef:f4:
03:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C3:F3:9B:82:F5:ED:C9:43:F5:2F:55:E2:9A:B6:F3:D2:8B:A6:32
X509v3 Authority Key Identifier:
keyid:4C:E9:03:79:BD:8D:04:37:4B:3A:DE:F0:60:D5:1A:E2:15:71:09:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOkDeb2NBDdLOt7wYNUa4hVxCTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:90:db:3a:41:99:2c:8a:be:b6:f0:d5:f2:b8:7e:08:c2:01:
17:0b:ef:34:1f:68:3f:b6:77:f7:9c:d7:56:1d:22:37:e4:27:
b0:47:5b:a2:86:e3:df:9a:7a:b9:eb:3c:20:17:a4:28:10:b8:
2b:77:c8:2f:db:d6:10:dd:9d:e4:ce:fc:69:c3:60:b1:a0:dc:
18:c8:f7:41:5e:e4:43:c5:cb:e3:9e:76:06:1d:c4:b7:c1:b8:
ad:1f:85:54:44:1a:4d:d2:56:1f:15:19:8f:11:7d:5d:af:f5:
b5:5a:1a:30:d1:53:90:b7:59:46:0a:a2:cf:41:ad:e8:99:69:
ec:bd:d6:77:14:19:74:97:61:88:e2:35:06:11:d3:49:6a:d8:
6b:ae:d7:fa:ae:fb:a1:de:0b:15:bf:70:6f:0e:f9:b1:dc:a7:
9f:4c:58:a1:f9:33:1c:56:66:21:ca:e5:52:fb:cb:c9:cd:cd:
7f:dd:ab:c6:3d:58:fd:a1:39:5b:08:27:40:e2:3c:c1:79:9c:
3d:da:68:d8:6e:b3:3c:e7:9a:51:ad:93:33:b0:72:b4:5c:c7:
96:a6:89:41:e2:7d:b9:c2:6e:f5:49:ee:6e:5c:c7:2a:59:7d:
c0:e1:1a:98:8c:26:e1:21:3a:35:e1:7a:ee:65:06:72:fe:0d:
12:4a:bc:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:29 2025 by rpki-client