
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e703c8-465f-47a5-952c-495e188701b6/1/tTmDGDXIfHUB9sN8tI5gp5WjlLs.mft
File: tTmDGDXIfHUB9sN8tI5gp5WjlLs.mft (raw, json)
Hash identifier: Ug8RLltejvQc+nB4wYyQnUG3PrBpWfmTXT7ymSYTRW8=
Subject key identifier: B6:61:F7:CD:C7:2A:04:54:7C:47:8A:C1:17:DB:66:DD:18:4F:6A:E8
Authority key identifier: B5:39:83:18:35:C8:7C:75:01:F6:C3:7C:B4:8E:60:A7:95:A3:94:BB
Certificate issuer: /CN=b539831835c87c7501f6c37cb48e60a795a394bb
Certificate serial: 0199FBEABA2864BFCC96EBC91941F0DCBB2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTmDGDXIfHUB9sN8tI5gp5WjlLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e703c8-465f-47a5-952c-495e188701b6/1/tTmDGDXIfHUB9sN8tI5gp5WjlLs.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 10:01:28 +0000
Manifest this update: Sun 19 Oct 2025 10:01:28 +0000
Manifest next update: Mon 20 Oct 2025 10:01:28 +0000
Files and hashes: 1: tTmDGDXIfHUB9sN8tI5gp5WjlLs.crl (hash: KM5azpMYxY1hxfPHFxcBniUa/CoC/3A6+N1hmGuwN9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/e703c8-465f-47a5-952c-495e188701b6/1/tTmDGDXIfHUB9sN8tI5gp5WjlLs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/e703c8-465f-47a5-952c-495e188701b6/1/tTmDGDXIfHUB9sN8tI5gp5WjlLs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tTmDGDXIfHUB9sN8tI5gp5WjlLs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:ba:28:64:bf:cc:96:eb:c9:19:41:f0:dc:bb:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b539831835c87c7501f6c37cb48e60a795a394bb
Validity
Not Before: Oct 19 10:01:28 2025 GMT
Not After : Oct 20 10:01:28 2025 GMT
Subject: CN=b661f7cdc72a04547c478ac117db66dd184f6ae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:35:22:a0:cb:92:fb:4c:93:ef:a7:35:bf:d6:
bb:2c:7e:ba:aa:50:5a:6b:f4:42:f9:63:f5:ce:5c:
42:8d:2c:67:cc:93:b6:3d:18:fc:a6:72:e9:ad:d8:
d7:59:46:e7:23:b1:7f:ab:dd:5a:8d:fd:22:de:b1:
db:85:2f:ee:78:73:59:c7:5d:2f:08:7b:3b:fb:c4:
b3:0d:1f:ac:cf:1d:5f:45:3f:1b:09:32:31:a8:12:
6d:30:45:71:17:18:18:c6:d9:a2:f1:c2:b6:d5:88:
fc:e4:28:08:3e:83:c2:78:3e:07:16:5f:d5:0b:38:
e5:e2:2e:04:ba:c3:8b:3d:c1:5e:b2:9e:cf:c5:f7:
1e:9b:82:7a:02:37:9a:3e:95:87:d5:a5:22:16:8c:
26:3a:eb:e0:df:1e:b4:d3:33:a9:c4:b4:bf:ad:90:
fc:ff:2e:54:df:5c:14:2f:ee:f5:97:a6:2f:62:0c:
c8:92:2a:6c:7b:0e:02:57:54:d6:17:81:23:a1:74:
c2:3f:36:6b:4d:6d:c4:e7:cc:de:0d:fc:2e:2a:e5:
e7:5c:02:fb:e3:3b:5d:91:5d:61:fa:2b:fc:b6:cd:
d2:ac:0f:8b:07:8b:76:75:59:e4:1b:17:bd:f5:d0:
20:5f:a4:31:90:0a:91:20:39:8d:f2:b3:14:56:f4:
e6:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:61:F7:CD:C7:2A:04:54:7C:47:8A:C1:17:DB:66:DD:18:4F:6A:E8
X509v3 Authority Key Identifier:
keyid:B5:39:83:18:35:C8:7C:75:01:F6:C3:7C:B4:8E:60:A7:95:A3:94:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTmDGDXIfHUB9sN8tI5gp5WjlLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e703c8-465f-47a5-952c-495e188701b6/1/tTmDGDXIfHUB9sN8tI5gp5WjlLs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e703c8-465f-47a5-952c-495e188701b6/1/tTmDGDXIfHUB9sN8tI5gp5WjlLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:89:2f:12:fb:64:e7:44:8e:14:ad:ec:af:2f:f0:6f:1a:6d:
91:0c:e3:09:5f:dd:36:8d:87:ce:f2:ff:59:fc:82:c4:ca:eb:
6f:80:46:64:59:03:29:ee:a5:66:8d:cb:e4:ef:39:4a:70:70:
33:18:dd:ef:34:07:6f:d2:5f:e5:ac:6c:0f:02:71:00:53:94:
6f:f3:33:de:00:b7:9f:78:74:d3:55:45:a9:70:bb:72:14:02:
f6:e2:ac:37:a2:86:19:f4:de:3b:27:42:4a:35:3f:97:05:31:
24:2e:af:25:e6:2c:54:63:23:8c:71:04:67:30:8c:b0:87:a5:
79:1b:3d:1a:b5:7e:ec:63:58:33:b7:6f:aa:15:28:38:cc:64:
a7:fa:ff:55:13:9e:6f:62:80:44:eb:70:ed:7b:50:3b:d7:d2:
35:37:eb:41:5b:94:b2:b0:08:cd:52:0b:32:e0:24:f7:de:71:
55:6e:46:de:5a:14:0b:67:b3:bc:93:ff:dc:22:23:25:86:a0:
5d:e7:bd:dc:86:45:b0:63:a4:0a:f8:a3:ae:a5:f1:2a:18:eb:
84:f4:42:7b:3c:99:b4:20:cc:27:1c:43:9e:10:6c:f8:f6:95:
ef:78:ea:b4:69:03:1a:0c:c8:25:1b:0a:cd:76:60:b0:eb:b4:
39:a2:34:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:05:24 2025 by rpki-client