Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
File: TZRvTfIjdJGmjfpAe-QfroS72mY.mft (raw, json)
Hash identifier: OgHJE38d1xR1DuqhC6EJZKDVQN6BopVgJX1pJddVgFw=
Subject key identifier: A1:F9:42:13:0C:75:3A:20:F0:DC:F9:96:9E:BF:5C:9F:A4:45:6E:2D
Authority key identifier: 4D:94:6F:4D:F2:23:74:91:A6:8D:FA:40:7B:E4:1F:AE:84:BB:DA:66
Certificate issuer: /CN=4d946f4df2237491a68dfa407be41fae84bbda66
Certificate serial: 0199FC216EE646B084ADC8CFC39C9F38BCD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
Manifest number: 1044
Signing time: Sun 19 Oct 2025 11:01:13 +0000
Manifest this update: Sun 19 Oct 2025 11:01:13 +0000
Manifest next update: Mon 20 Oct 2025 11:01:13 +0000
Files and hashes: 1: C8PR4XXWsjpP8PHYuoN78zoE9nY.roa (hash: uu2Jn3Slz9u+yGZ22j4LqOkp9lCOWyyfMINckydLJ3E=)
2: TZRvTfIjdJGmjfpAe-QfroS72mY.crl (hash: fMrenaE6gzIJnjMbaiu++ESfoypkxy9dvF5iKQ6vMho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:6e:e6:46:b0:84:ad:c8:cf:c3:9c:9f:38:bc:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d946f4df2237491a68dfa407be41fae84bbda66
Validity
Not Before: Oct 19 11:01:13 2025 GMT
Not After : Oct 20 11:01:13 2025 GMT
Subject: CN=a1f942130c753a20f0dcf9969ebf5c9fa4456e2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:43:f2:5e:ac:3d:70:42:3c:9a:39:49:8c:09:
fb:e6:6a:09:da:3a:76:21:b6:7b:2c:91:23:a7:c7:
1d:e8:de:c2:02:3d:5a:bf:be:98:9c:ad:a7:f3:07:
2b:66:e8:c3:cc:61:8a:b5:63:0a:e6:a0:7f:2a:f4:
00:da:c2:4d:b3:95:76:2c:01:d5:81:e2:b3:22:35:
97:f3:d0:2e:9b:88:7c:2d:75:79:ae:66:e9:56:a8:
5a:2a:6a:db:0c:1a:74:9c:b3:e2:6c:2f:b9:64:6d:
21:b8:e1:c7:bb:70:60:1c:01:cd:0a:21:36:40:c5:
33:0b:71:d1:cf:19:62:54:0b:8f:58:e5:e1:96:f1:
2b:dc:f9:24:8a:86:48:01:bd:05:a6:3a:2e:db:7e:
a5:a3:d1:7c:35:03:1c:19:40:fc:ad:ba:27:63:26:
35:4c:63:5d:c3:51:fe:98:54:01:ed:55:7f:08:b6:
e9:8d:6a:5d:14:a6:62:35:aa:5a:67:a6:9c:88:df:
38:50:98:d3:df:ec:81:dd:0c:36:66:38:c0:4a:79:
f3:96:9a:7d:54:ca:9a:3d:8e:23:54:8a:e5:3f:27:
79:b7:ee:66:60:05:82:e5:29:2b:2a:e3:99:5a:1c:
0d:e3:c7:56:bf:e9:1e:47:25:23:1d:27:9c:7d:94:
4c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F9:42:13:0C:75:3A:20:F0:DC:F9:96:9E:BF:5C:9F:A4:45:6E:2D
X509v3 Authority Key Identifier:
keyid:4D:94:6F:4D:F2:23:74:91:A6:8D:FA:40:7B:E4:1F:AE:84:BB:DA:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:86:68:54:de:99:89:08:9b:70:36:ea:71:b4:0d:c8:4c:07:
bf:5f:aa:a2:90:74:25:64:db:58:ae:83:48:ab:76:f7:3b:00:
75:31:12:32:93:ce:60:79:2a:48:9e:49:75:c1:15:24:59:0a:
f3:c4:87:14:b3:0b:76:75:fd:4f:c6:be:5b:5b:21:78:ff:e9:
72:c1:79:b0:0e:06:d5:13:88:ca:17:cc:12:46:aa:fb:63:80:
70:92:17:fa:3a:5a:28:ae:1c:15:75:76:c5:b1:c2:86:b3:ad:
38:27:0b:62:1c:82:4a:e8:73:26:51:95:3e:75:44:3c:1b:e2:
cd:59:21:3d:26:84:b7:a4:9b:f2:db:7c:66:05:95:e7:b9:ac:
46:48:0a:f7:77:58:73:92:e2:b7:92:15:1d:61:62:5f:04:8e:
d6:d1:58:f5:61:f5:46:b4:80:d5:30:b9:bb:e4:95:a8:d4:39:
95:94:49:95:fb:e3:53:29:84:96:ee:cd:c0:ec:b9:eb:81:88:
8e:6c:4d:f6:a4:77:f1:b1:e5:24:6e:de:8d:91:23:49:56:4e:
1d:b5:44:e9:e1:7e:ab:03:2e:30:93:90:64:ba:55:8d:0b:1b:
d0:34:e0:b4:84:b9:4d:45:72:bc:a9:46:1f:b5:c7:4a:c0:00:
a8:2f:ad:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:32 2025 by rpki-client