Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
File: TyKDTEeXR7CovQphKfn-ZfgwJtA.mft (raw, json)
Hash identifier: C7mL/LhUDRqUGmqG1iZz9Lm8guH3JwB+1NyFl/YP2yc=
Subject key identifier: F7:F1:6F:3F:58:9F:6A:9D:44:1F:E0:52:9A:5C:73:86:6A:59:28:71
Authority key identifier: 4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
Certificate issuer: /CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Certificate serial: 0199FBEADD32B95993E306378F896C4ADCC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
Manifest number: 04CD
Signing time: Sun 19 Oct 2025 10:01:37 +0000
Manifest this update: Sun 19 Oct 2025 10:01:37 +0000
Manifest next update: Mon 20 Oct 2025 10:01:37 +0000
Files and hashes: 1: 5_qRdcU_zBI67bUjjCeGmUT4bso.roa (hash: S33Bj4i6cQIjVG+I+Gmo76E+1aI2U06ldTXtc0u4sXQ=)
2: TyKDTEeXR7CovQphKfn-ZfgwJtA.crl (hash: F8MuZ1M692s3be83N7un/Cdb7Aw1EOUJwzKcXeMfy6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:dd:32:b9:59:93:e3:06:37:8f:89:6c:4a:dc:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Validity
Not Before: Oct 19 10:01:37 2025 GMT
Not After : Oct 20 10:01:37 2025 GMT
Subject: CN=f7f16f3f589f6a9d441fe0529a5c73866a592871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2f:67:cc:d0:b6:d5:97:21:15:f3:29:83:13:
43:53:66:96:b0:27:42:f9:e9:eb:f7:15:26:b8:54:
54:4d:ab:76:d2:a4:80:d3:40:17:fb:81:b8:0c:9f:
f2:aa:1c:fe:3a:74:67:5d:43:7b:92:4e:61:e2:6c:
86:5f:db:8f:98:43:a8:7c:59:0d:24:c1:8f:0d:e3:
f2:9e:3f:cc:78:13:48:c2:9a:41:d0:6c:9e:97:c7:
71:ea:fe:68:6f:26:6d:ef:3c:b2:8b:bb:01:3e:f0:
0e:54:3d:7d:0b:81:55:54:a8:01:4c:12:ab:27:a0:
ac:a0:10:3d:0d:c6:51:04:e6:c9:76:13:f9:7c:8e:
5c:ad:cd:2f:c4:51:0a:79:23:db:7f:56:d1:82:60:
0a:f2:89:6d:58:28:ca:34:19:c2:d6:5c:83:c7:a2:
f8:89:07:0e:cc:66:57:72:4a:35:35:26:f2:a9:6a:
78:6b:19:84:c0:27:e3:35:85:06:76:aa:b9:f7:de:
c0:48:dd:d0:e1:0e:5f:73:0f:52:70:e5:83:7f:6f:
1d:dc:b6:63:32:39:da:16:e1:2a:3d:7d:24:11:21:
38:f8:b8:14:97:c8:19:cf:74:54:3a:35:98:0c:ff:
9c:f1:55:37:71:81:4b:39:db:0c:ef:3d:10:cd:18:
22:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:F1:6F:3F:58:9F:6A:9D:44:1F:E0:52:9A:5C:73:86:6A:59:28:71
X509v3 Authority Key Identifier:
keyid:4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:e4:a6:2d:d4:74:19:b6:72:fe:99:23:48:5f:0a:05:fd:98:
99:e4:f5:90:41:70:bc:bc:8c:6e:03:f1:e0:77:83:5a:ce:5b:
db:c6:fa:f4:e6:6e:91:f5:09:66:4d:b7:c1:35:d2:b0:d2:8b:
10:8e:da:50:6f:3d:63:b0:11:25:ab:63:0d:ec:1d:b7:d3:fe:
63:2d:d9:20:89:d0:a2:b5:08:6a:f2:07:a9:89:2a:2e:4c:cd:
33:bf:44:aa:61:f1:af:9b:9a:c1:d1:1e:55:fc:f6:b2:a8:e2:
f8:c0:af:ae:3e:61:32:b2:ac:3f:f3:c7:8a:e4:47:79:03:cd:
8f:5c:5b:6a:c2:8d:f7:68:32:60:e3:5c:88:56:91:3d:04:8c:
98:a2:e5:56:24:76:8b:b9:c1:9c:62:68:64:e6:df:06:7b:80:
64:99:57:ce:6e:ae:b5:9f:7b:80:55:03:df:2a:ca:f6:9a:4d:
3f:fa:9a:dc:5b:3f:69:7c:97:be:7d:65:a0:04:65:54:e5:e5:
a9:36:00:ec:fb:83:d8:b5:42:0f:67:15:b1:28:3f:01:fa:e4:
53:fe:f2:10:87:f0:4c:06:6f:96:1b:15:18:7e:05:b4:80:31:
87:e2:bb:0e:99:38:b1:df:4a:2c:f5:95:17:51:fe:35:3b:2e:
06:af:1b:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:05:55 2025 by rpki-client