Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft
File: TSkoLUc3P5QvCti5HtlAk7Zuo68.mft (raw, json)
Hash identifier: nJCTuj0FtUnw47cyMguWPPLx89/nID/zc8yeLLRxWNE=
Subject key identifier: 2E:18:CC:9E:23:7A:64:B3:A2:83:8C:B2:FD:69:A6:F8:2D:4A:DF:63
Authority key identifier: 4D:29:28:2D:47:37:3F:94:2F:0A:D8:B9:1E:D9:40:93:B6:6E:A3:AF
Certificate issuer: /CN=4d29282d47373f942f0ad8b91ed94093b66ea3af
Certificate serial: 0198D4E0DFE5E66AB0BD0DA67BC4DB71BB5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft
Manifest number: 15D2
Signing time: Sat 23 Aug 2025 03:02:43 +0000
Manifest this update: Sat 23 Aug 2025 03:02:43 +0000
Manifest next update: Sun 24 Aug 2025 03:02:43 +0000
Files and hashes: 1: 8G7CKA2HbZHRoNb9HaqBloS90vU.roa (hash: lDvm+Nsn5gFxpzefNnpEbQ5VLuNGtuV4rwnVopzkwq0=)
2: TSkoLUc3P5QvCti5HtlAk7Zuo68.crl (hash: KZzS5/eGGNJ/8fHqA46jn9UeaavDhMlulS7aWXRv0NQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft
rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:df:e5:e6:6a:b0:bd:0d:a6:7b:c4:db:71:bb:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d29282d47373f942f0ad8b91ed94093b66ea3af
Validity
Not Before: Aug 23 03:02:43 2025 GMT
Not After : Aug 24 03:02:43 2025 GMT
Subject: CN=2e18cc9e237a64b3a2838cb2fd69a6f82d4adf63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:2f:a8:b7:7e:a6:71:29:34:d9:0a:b0:0a:b1:
a4:fd:c4:8a:d2:6a:1f:e5:fd:36:18:ad:86:cf:21:
47:21:72:2b:17:c7:82:c3:09:5f:54:b6:3c:fe:ce:
d6:eb:13:6b:c7:d4:77:29:5a:6a:16:bd:28:46:66:
d9:3d:70:86:04:1b:66:e0:b6:f6:39:61:d0:e1:29:
ea:b5:e0:bd:3f:4e:d6:bf:8b:00:70:88:0b:b7:dc:
17:45:c0:1d:72:31:22:28:1f:ce:30:b2:0a:1e:e5:
11:c5:14:d9:7b:04:af:ea:57:c7:53:db:7e:ab:3f:
a2:65:9b:30:14:7d:f3:a8:49:f6:a2:dc:d9:f4:20:
81:7c:9c:61:36:a7:40:54:a4:a8:07:0d:48:ce:3a:
36:9d:f7:f3:9c:ef:25:83:5f:a6:06:82:f9:05:ed:
22:98:c4:cd:24:ea:f9:9e:9b:72:b3:cc:36:72:f9:
01:fc:ce:7c:59:37:5e:84:bc:f5:37:3f:1e:59:bc:
dc:a0:f9:c3:bd:60:33:69:30:69:77:fb:51:7a:1f:
89:02:5a:20:ab:6b:9b:74:2a:53:9f:a0:33:3c:f3:
5c:ef:6b:9d:c5:e5:e0:9d:79:4a:14:27:09:a4:81:
3a:f8:ac:73:0b:ed:1a:78:e4:10:69:6f:b6:b6:43:
cd:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:18:CC:9E:23:7A:64:B3:A2:83:8C:B2:FD:69:A6:F8:2D:4A:DF:63
X509v3 Authority Key Identifier:
keyid:4D:29:28:2D:47:37:3F:94:2F:0A:D8:B9:1E:D9:40:93:B6:6E:A3:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:f2:9e:83:75:5e:8f:01:ae:44:9f:3e:47:29:df:9c:ed:ec:
20:bd:4c:96:f8:31:1d:d7:8b:08:df:9f:38:9e:5b:e6:33:a3:
92:60:39:23:04:f4:06:e3:ca:ce:a2:c5:5a:19:c6:52:3d:d0:
b1:10:ee:9d:32:80:e9:d1:90:fb:24:a1:a7:5c:20:3f:08:7f:
3e:73:13:c6:61:91:47:08:26:25:1c:64:a9:6b:04:f7:11:50:
f4:2e:22:3c:ef:86:2f:32:41:e9:76:7b:c0:62:87:82:54:2a:
cd:70:f6:d1:6e:ea:3f:8b:13:98:c6:db:b3:51:4a:21:b7:b2:
85:1f:09:a1:d9:be:df:23:b1:c9:6a:20:67:c5:83:da:40:8b:
26:51:20:a7:20:5e:0a:28:22:3c:62:ce:b5:86:38:54:9f:73:
6e:4a:4c:c3:51:ab:3a:fc:90:fe:5e:75:49:47:98:81:48:95:
c4:7c:58:a2:31:65:4e:f2:2a:47:e1:f4:a4:b7:ec:93:2c:56:
72:a8:f1:f2:83:e9:c7:65:d4:5e:7c:6a:58:8c:9e:d1:b3:4f:
11:63:64:d1:7a:ee:1c:59:ed:39:6d:79:69:40:fe:c0:8e:ad:
69:d0:84:ac:31:63:fd:75:f7:54:b7:b8:7e:71:f6:ff:6c:a3:
47:1d:ac:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:34 2025 by rpki-client