Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
File: tF9VYNefBKktehUPPtjaQwir6jM.mft (raw, json)
Hash identifier: p4rITvHstaPq4uPKynln3m6/ZH8iVAJJbleHe9FJNX4=
Subject key identifier: C8:95:4F:B4:2D:12:09:A5:11:A3:3E:40:AD:56:37:22:90:41:76:48
Authority key identifier: B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
Certificate issuer: /CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Certificate serial: 0199FC219F31262131D55F8B1BF161EE29D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
Manifest number: 126A
Signing time: Sun 19 Oct 2025 11:01:25 +0000
Manifest this update: Sun 19 Oct 2025 11:01:25 +0000
Manifest next update: Mon 20 Oct 2025 11:01:25 +0000
Files and hashes: 1: rFHksT2fJAQ7epdh-sMDgGR2SM4.roa (hash: Z/iFpAzmqAm2KrlQVqRFy4X3KTo7SXYWoBA5a7g2HG4=)
2: tF9VYNefBKktehUPPtjaQwir6jM.crl (hash: CIUn5QX3WkY3oN3n2lYElLvXHL5E2q0pyID+FQ3hCVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:9f:31:26:21:31:d5:5f:8b:1b:f1:61:ee:29:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Validity
Not Before: Oct 19 11:01:25 2025 GMT
Not After : Oct 20 11:01:25 2025 GMT
Subject: CN=c8954fb42d1209a511a33e40ad56372290417648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:88:cf:be:a9:d0:16:48:ce:69:8d:ff:c8:2e:
80:62:ee:e5:1b:dd:58:3e:b0:52:24:d3:0a:3b:02:
b4:7b:a5:1c:c7:bc:36:b1:95:26:e9:56:97:06:c7:
f9:e6:82:37:3c:41:d8:d1:eb:a6:1b:99:f5:e6:bd:
9a:6b:cf:42:a5:0a:ee:62:22:f9:dc:e0:1c:13:1b:
64:92:d5:65:e8:ef:e9:ae:7a:86:42:7a:90:af:e7:
fb:06:2b:a0:63:c0:8b:4e:44:fb:04:78:d5:c4:0b:
df:0d:49:c6:45:b3:e7:ce:fb:6f:f9:4b:f7:d0:d4:
c8:74:50:fc:09:b0:58:13:b3:a5:76:34:1a:e2:2e:
98:24:81:82:6c:38:bf:b7:53:09:5d:ad:67:18:9d:
3b:8c:3a:96:5c:7e:14:0b:64:b4:f4:df:08:e1:68:
d4:02:03:48:b4:bf:e8:cb:d3:89:8a:38:eb:e6:89:
8b:6e:c6:bf:89:c4:4f:6a:96:ee:3f:03:5b:ab:61:
8a:1d:aa:5c:57:a4:19:e1:d0:92:03:50:13:5a:db:
2c:ba:54:e3:cb:49:c5:d1:6c:5d:8b:dc:b5:1c:60:
29:44:78:c7:62:5a:13:b2:1f:6a:81:b8:b0:aa:a9:
2b:4c:f1:86:fb:cc:8e:a3:f7:93:6e:58:6e:cc:cf:
24:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:95:4F:B4:2D:12:09:A5:11:A3:3E:40:AD:56:37:22:90:41:76:48
X509v3 Authority Key Identifier:
keyid:B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:79:51:6c:d9:92:73:8b:af:65:e7:d2:e1:94:76:75:99:3e:
87:22:8a:24:a0:de:6a:66:41:ea:ca:d5:0a:34:41:b3:f1:6a:
79:97:63:53:85:7b:77:bb:80:00:c4:ed:04:63:58:84:3a:fa:
77:31:73:d0:7f:b3:49:9c:4d:4a:3d:18:4e:ca:1e:ef:2e:81:
9b:2c:67:23:6d:5e:f0:df:4a:47:b9:bb:a2:56:75:4e:b9:59:
bb:4a:45:d5:e1:15:18:43:8e:11:7f:bf:4e:f9:b2:26:f8:1c:
c5:f2:e8:2d:9d:ae:35:b0:b3:8a:82:ad:55:9e:05:15:33:19:
fe:24:34:5f:42:b1:89:5f:16:21:7c:e7:f1:12:e5:e1:62:b0:
9d:57:09:6f:b4:fc:a1:f3:87:d1:5a:99:dc:1e:c3:00:45:a9:
84:e4:88:f2:3a:e8:66:e5:cf:86:c6:4a:ad:e9:0a:20:8a:40:
c5:c8:60:d4:b6:85:07:6d:b3:ea:b2:0f:36:12:b6:c4:4d:53:
b6:50:47:d1:56:4f:97:8b:a9:16:d6:2d:68:67:42:90:fe:07:
72:6e:49:ba:21:84:b3:fa:42:66:06:f9:e1:e6:95:9d:31:f4:
df:e5:7f:22:c5:81:62:5a:24:54:4c:7d:e9:e6:d5:ff:91:6b:
08:3e:48:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:41:45 2025 by rpki-client