Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
File: TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft (raw, json)
Hash identifier: MBRvrgdQhM+abVI13lkDdVBD3b7d3ojpbevT4GL7vCE=
Subject key identifier: C1:4F:B5:2B:21:4D:DF:2B:1C:A7:C5:7B:A9:9E:FF:DB:F9:8C:21:5B
Authority key identifier: 4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
Certificate issuer: /CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Certificate serial: 0199FD6B50A2643DE0DBDA1F2DFE030FBEE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
Manifest number: 038B
Signing time: Sun 19 Oct 2025 17:01:32 +0000
Manifest this update: Sun 19 Oct 2025 17:01:32 +0000
Manifest next update: Mon 20 Oct 2025 17:01:32 +0000
Files and hashes: 1: 1-QbsigNOAsIOrzATvCDKf5YVw3s.roa (hash: gWNRwRZG0Ifn0uSFb+Au9uZSZqHds/SqKOwbteITnow=)
2: TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl (hash: TX7HL5ytTFdKujQo/eSQT0tgaqEivgwCaipSRJ86dnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:50:a2:64:3d:e0:db:da:1f:2d:fe:03:0f:be:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Validity
Not Before: Oct 19 17:01:32 2025 GMT
Not After : Oct 20 17:01:32 2025 GMT
Subject: CN=c14fb52b214ddf2b1ca7c57ba99effdbf98c215b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:66:d8:fb:96:6b:ef:a3:fc:c5:f0:aa:84:2a:
4d:d2:b8:42:68:aa:48:7c:c9:59:bf:31:5b:60:6a:
5c:3d:82:28:72:7a:c7:b5:22:da:82:04:ac:22:b7:
51:6a:13:fa:ac:c8:de:d5:48:89:95:cc:0a:78:16:
1f:6a:57:de:45:df:3d:fb:2f:61:4d:4b:ba:69:fa:
cf:bf:2a:1e:98:34:33:01:fb:1f:85:f1:59:0d:f0:
18:38:83:89:ca:f4:50:df:39:ad:27:8e:c7:51:96:
10:62:de:7f:a8:89:cc:9b:95:bc:96:48:4b:36:97:
21:3c:20:88:a2:2c:32:fe:e4:d8:71:a8:4f:ce:60:
46:0f:62:84:f5:01:c0:f3:a4:c5:84:67:49:27:0e:
02:0c:62:9c:8d:20:2c:85:da:41:bf:af:a8:b2:e8:
dc:3f:5e:31:f2:39:94:89:d5:5f:ae:d4:10:b0:36:
64:5e:94:78:f6:89:2f:cb:10:e6:06:3c:0f:89:0c:
63:cf:06:21:df:e3:78:25:da:3f:6b:b4:fa:8d:26:
29:f0:5f:9b:ed:96:c2:cd:a7:79:37:30:3a:be:96:
15:b3:03:2d:1c:2d:f5:78:2e:15:51:1a:46:73:91:
fa:4e:45:03:92:06:cf:2c:b1:0e:e8:a9:b3:05:b1:
5e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:4F:B5:2B:21:4D:DF:2B:1C:A7:C5:7B:A9:9E:FF:DB:F9:8C:21:5B
X509v3 Authority Key Identifier:
keyid:4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:9b:29:c2:69:81:54:02:cb:c5:f3:f4:29:21:4b:e7:db:43:
d8:3b:fb:4d:7c:e2:ba:62:21:70:2f:7f:6b:c4:bc:1b:43:54:
53:5e:ba:bc:db:12:eb:04:5d:82:90:f0:75:9c:03:11:41:f7:
60:79:5a:3e:85:2b:f1:22:71:a1:d8:00:7d:4a:df:f9:08:5f:
32:de:53:80:29:48:02:25:ac:60:41:db:b4:10:a3:27:b9:f2:
cc:e2:d7:8f:2e:f3:87:41:09:83:9b:65:ad:cc:93:9a:7a:2c:
b0:f5:3f:2a:e9:8c:cd:f6:a6:8a:4e:1e:a6:17:15:f0:99:48:
ba:bd:20:42:76:ac:a2:74:f7:e1:06:01:d5:03:4c:26:d6:b6:
bb:00:7a:9b:85:df:42:56:9d:b7:e7:c4:4f:18:22:28:7e:5f:
a3:0b:c6:1b:2b:47:92:e7:2c:2a:67:92:bb:15:b1:51:2c:09:
a4:33:a2:b6:30:3c:ae:41:3c:50:68:1f:b8:91:70:f0:fd:4d:
a5:c3:b1:f9:c9:e5:70:ff:a9:2f:a0:ee:35:30:77:e2:ad:e3:
98:01:0a:46:07:dc:68:49:ec:9d:d1:b9:dc:be:99:c9:91:9e:
76:a9:20:fd:e7:a5:82:f1:c2:c6:31:4b:fa:04:76:0a:88:48:
59:d6:d5:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:24 2025 by rpki-client