Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/876166-f057-46e1-be08-a65e5e33dcc0/1/TDXafoQ-N8fbpPynGPQ4Zf18mNw.mft
File: TDXafoQ-N8fbpPynGPQ4Zf18mNw.mft (raw, json)
Hash identifier: ajeIP9UOwWTnrQoUCALwMGZkvobsEr26LDWqDBgktrc=
Subject key identifier: A9:E6:82:F7:28:49:3A:F2:56:42:0B:BF:3A:24:18:98:AF:DE:02:C0
Authority key identifier: 4C:35:DA:7E:84:3E:37:C7:DB:A4:FC:A7:18:F4:38:65:FD:7C:98:DC
Certificate issuer: /CN=4c35da7e843e37c7dba4fca718f43865fd7c98dc
Certificate serial: 0198D515F08BB7B52B86A23A746208974FFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDXafoQ-N8fbpPynGPQ4Zf18mNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/876166-f057-46e1-be08-a65e5e33dcc0/1/TDXafoQ-N8fbpPynGPQ4Zf18mNw.mft
Manifest number: 1317
Signing time: Sat 23 Aug 2025 04:00:41 +0000
Manifest this update: Sat 23 Aug 2025 04:00:41 +0000
Manifest next update: Sun 24 Aug 2025 04:00:41 +0000
Files and hashes: 1: TDXafoQ-N8fbpPynGPQ4Zf18mNw.crl (hash: FVq+9snl7ZIwgC+u9g3+j8yfsk7Kiq/Twm0JeeBQOvg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/876166-f057-46e1-be08-a65e5e33dcc0/1/TDXafoQ-N8fbpPynGPQ4Zf18mNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/876166-f057-46e1-be08-a65e5e33dcc0/1/TDXafoQ-N8fbpPynGPQ4Zf18mNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDXafoQ-N8fbpPynGPQ4Zf18mNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:f0:8b:b7:b5:2b:86:a2:3a:74:62:08:97:4f:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c35da7e843e37c7dba4fca718f43865fd7c98dc
Validity
Not Before: Aug 23 04:00:41 2025 GMT
Not After : Aug 24 04:00:41 2025 GMT
Subject: CN=a9e682f728493af256420bbf3a241898afde02c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7d:02:19:99:ec:92:d8:c3:dd:57:8a:e3:fe:
db:a3:88:01:0f:4b:81:cb:70:8c:00:a7:c2:8b:f1:
2b:27:33:b7:c4:8e:7c:06:51:8b:c0:3f:b5:dc:fc:
c4:fe:79:74:c0:35:8d:52:d9:10:42:63:3f:38:72:
be:9e:7a:5a:c8:69:28:15:d6:7d:af:99:4e:91:99:
df:5f:02:ba:ea:96:43:f5:db:cf:8c:44:a3:70:13:
55:7c:4f:3a:48:14:74:05:13:ba:5a:2d:de:88:d1:
c6:f1:2d:e3:1d:68:2c:a7:41:6b:aa:dd:d3:c8:6e:
91:94:bd:5d:34:f8:c0:fa:b8:73:8f:b9:84:d2:bb:
2c:4c:ef:35:c5:61:0c:83:cd:20:1c:98:f6:72:80:
75:44:04:11:bc:b9:31:85:21:02:1e:ed:62:4a:d2:
3c:28:e7:d0:5d:e9:db:2b:93:70:32:21:00:28:07:
2c:92:98:3d:c3:35:88:f7:c0:b7:29:69:ad:0e:17:
09:9a:d5:37:22:c9:94:6a:5c:b1:c1:b7:99:7f:31:
4a:87:9d:dc:17:26:53:2a:a6:84:00:33:49:f6:7c:
30:0b:6f:5a:e8:6e:d3:14:74:4c:1c:73:e4:14:77:
49:5e:0b:ac:75:bc:ba:a7:7c:22:7a:33:54:df:cb:
5a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E6:82:F7:28:49:3A:F2:56:42:0B:BF:3A:24:18:98:AF:DE:02:C0
X509v3 Authority Key Identifier:
keyid:4C:35:DA:7E:84:3E:37:C7:DB:A4:FC:A7:18:F4:38:65:FD:7C:98:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDXafoQ-N8fbpPynGPQ4Zf18mNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/876166-f057-46e1-be08-a65e5e33dcc0/1/TDXafoQ-N8fbpPynGPQ4Zf18mNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/876166-f057-46e1-be08-a65e5e33dcc0/1/TDXafoQ-N8fbpPynGPQ4Zf18mNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:c1:4a:1f:4f:1c:8b:d2:f5:77:d4:f6:e8:7d:67:54:04:64:
51:ed:47:d6:9c:f9:7f:fa:9c:fb:0a:ce:43:ad:6c:95:de:3d:
fb:57:e6:27:ab:7e:71:f9:79:fe:e0:9b:33:2f:87:a0:5b:c2:
af:b1:8e:e9:20:b2:36:85:86:08:83:25:ed:5a:3e:bf:cc:48:
49:7a:3f:e6:0b:62:85:c4:50:89:18:96:30:8c:ed:97:97:40:
85:20:43:ec:4a:c0:9b:3f:c4:65:46:0a:0d:8f:e5:5f:05:66:
f1:8a:4e:c1:9f:a1:8d:42:11:fb:cb:81:a9:92:5d:17:57:67:
40:db:ab:b7:67:05:b8:71:29:79:11:a8:4c:46:8b:c8:c8:7e:
69:64:5b:e0:48:85:95:9a:7b:64:f7:48:14:8a:61:17:63:9e:
81:51:0c:20:6d:d1:1a:01:21:59:a9:d2:82:76:7c:0e:95:8c:
10:c4:c9:3b:14:fe:e0:71:8a:3e:5d:84:5b:1d:63:3f:c9:97:
d3:a5:25:8e:2b:c3:b2:1d:42:ab:2f:eb:2c:a8:2e:bd:a8:40:
cb:80:1c:97:e8:4a:43:b1:15:07:d9:58:90:cb:ff:f4:4a:7e:
91:3e:f0:1c:55:40:61:eb:75:57:17:43:20:92:6e:c0:95:66:
3a:6b:64:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFfCLt7UrhqI6dGIIl0/8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjMzVkYTdlODQzZTM3YzdkYmE0ZmNhNzE4ZjQzODY1ZmQ3
Yzk4ZGMwHhcNMjUwODIzMDQwMDQxWhcNMjUwODI0MDQwMDQxWjAzMTEwLwYDVQQD
EyhhOWU2ODJmNzI4NDkzYWYyNTY0MjBiYmYzYTI0MTg5OGFmZGUwMmMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv30CGZnsktjD3VeK4/7bo4gBD0uB
y3CMAKfCi/ErJzO3xI58BlGLwD+13PzE/nl0wDWNUtkQQmM/OHK+nnpayGkoFdZ9
r5lOkZnfXwK66pZD9dvPjESjcBNVfE86SBR0BRO6Wi3eiNHG8S3jHWgsp0Frqt3T
yG6RlL1dNPjA+rhzj7mE0rssTO81xWEMg80gHJj2coB1RAQRvLkxhSECHu1iStI8
KOfQXenbK5NwMiEAKAcskpg9wzWI98C3KWmtDhcJmtU3IsmUalyxwbeZfzFKh53c
FyZTKqaEADNJ9nwwC29a6G7TFHRMHHPkFHdJXgusdby6p3wiejNU38ta8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKnmgvcoSTryVkILvzokGJiv3gLAMB8GA1UdIwQY
MBaAFEw12n6EPjfH26T8pxj0OGX9fJjcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVERYYWZvUS1OOGZicFB5bkdQUTRaZjE4bU53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy84NzYxNjYtZjA1Ny00NmUxLWJlMDgt
YTY1ZTVlMzNkY2MwLzEvVERYYWZvUS1OOGZicFB5bkdQUTRaZjE4bU53Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy84NzYxNjYtZjA1Ny00NmUxLWJlMDgtYTY1ZTVlMzNkY2Mw
LzEvVERYYWZvUS1OOGZicFB5bkdQUTRaZjE4bU53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACcFKH08c
i9L1d9T26H1nVARkUe1H1pz5f/qc+wrOQ61sld49+1fmJ6t+cfl5/uCbMy+HoFvC
r7GO6SCyNoWGCIMl7Vo+v8xISXo/5gtihcRQiRiWMIztl5dAhSBD7ErAmz/EZUYK
DY/lXwVm8YpOwZ+hjUIR+8uBqZJdF1dnQNurt2cFuHEpeRGoTEaLyMh+aWRb4EiF
lZp7ZPdIFIphF2OegVEMIG3RGgEhWanSgnZ8DpWMEMTJOxT+4HGKPl2EWx1jP8mX
06UljivDsh1Cqy/rLKguvahAy4Acl+hKQ7EVB9lYkMv/9Ep+kT7wHFVAYet1VxdD
IJJuwJVmOmtk7Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:34:52 2025 by rpki-client