Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
File: TvMzZvDPXk-oBO730eKSlO6lFIw.mft (raw, json)
Hash identifier: j5fdDC0CyGyCz86eCMT9NFhQj9dQc5a3PndG+tktrkE=
Subject key identifier: FA:ED:5E:05:6A:BA:07:69:90:CD:93:46:27:52:CC:B7:18:10:4B:D5
Authority key identifier: 4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
Certificate issuer: /CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Certificate serial: 0199FD6B189E41F028DEBDAF78E04029FA6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
Manifest number: 037C
Signing time: Sun 19 Oct 2025 17:01:18 +0000
Manifest this update: Sun 19 Oct 2025 17:01:18 +0000
Manifest next update: Mon 20 Oct 2025 17:01:18 +0000
Files and hashes: 1: TvMzZvDPXk-oBO730eKSlO6lFIw.crl (hash: kqeugg5f/bfdCfFQ/G7rBk62Qc+DHzQ5V2INYvDcfws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:18:9e:41:f0:28:de:bd:af:78:e0:40:29:fa:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Validity
Not Before: Oct 19 17:01:18 2025 GMT
Not After : Oct 20 17:01:18 2025 GMT
Subject: CN=faed5e056aba076990cd93462752ccb718104bd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ca:29:4c:6b:00:7e:9d:8b:c9:21:33:00:b6:
7d:7a:2f:43:36:07:c8:88:84:db:57:d5:66:ee:36:
f0:64:e6:13:fb:8a:fb:93:7e:a5:f1:8d:44:a2:57:
cc:25:ee:1e:b3:12:66:60:db:b4:44:6a:f8:45:87:
ff:f7:fc:b5:23:84:c7:8e:55:a3:70:2a:6f:08:70:
9b:f3:90:70:47:73:f2:aa:ad:05:5f:17:54:c9:d6:
bd:e2:2d:a1:3e:71:1d:a4:5b:f7:ad:05:3b:59:77:
84:5b:11:c5:8a:e7:dc:a3:83:b1:2b:ee:fe:cc:68:
04:47:02:f9:91:c0:3d:35:68:b3:11:fa:33:3a:a6:
a6:dd:da:9f:f5:7e:a9:90:a9:bf:45:3e:72:8c:09:
e6:e9:8f:cd:2e:fe:4a:42:e0:0d:1f:f1:30:e6:93:
f0:46:45:dd:8b:9c:dd:44:ce:98:4c:35:37:7d:18:
b2:d1:4e:e0:a9:90:4e:94:87:ad:ff:ae:d1:e4:5e:
e3:a0:78:6c:bf:0f:13:81:93:1c:9b:ae:2b:95:76:
53:80:91:44:1c:2b:7c:dd:8f:b5:ad:eb:47:de:9c:
6c:63:b4:7a:2a:89:12:0b:94:5d:c8:b8:78:ea:10:
a1:d4:19:1e:56:f1:03:74:a8:91:29:c2:1c:cc:bf:
d1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:ED:5E:05:6A:BA:07:69:90:CD:93:46:27:52:CC:B7:18:10:4B:D5
X509v3 Authority Key Identifier:
keyid:4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:fd:54:64:2f:a1:e9:24:60:89:db:e0:9c:3d:7f:51:82:59:
50:8e:6b:10:6f:79:0e:a3:f4:f9:15:ec:f6:19:c9:16:84:61:
dd:17:b9:a8:ef:23:37:35:3f:a6:c3:81:88:ca:99:ef:55:dd:
18:9f:09:87:74:33:aa:f8:13:1a:e8:39:0c:9c:87:fc:24:d9:
bd:3a:96:1f:f6:01:e3:8c:85:2a:06:46:08:fd:3a:d9:4f:0b:
88:2c:8a:e3:54:87:f3:84:d0:3a:d4:08:0a:c3:5f:7a:45:e6:
86:77:9e:56:11:f9:6f:c8:4f:7f:ad:e3:92:69:28:72:81:3f:
1d:e8:ab:34:2f:7d:06:00:28:89:67:6d:3c:04:85:09:61:0a:
c0:39:b3:e7:9f:94:3a:4c:00:cf:c1:39:db:fe:67:81:f6:ce:
f3:7b:c6:41:85:b5:94:95:23:a8:3e:b3:35:3b:57:89:bc:ee:
36:d0:65:47:aa:d2:1b:e3:43:30:17:08:c0:6a:c8:e9:43:c9:
b8:20:9f:6c:4f:f6:d3:49:a5:1a:04:2c:05:54:12:c5:22:6f:
be:9d:23:c3:23:0e:3f:bd:50:e8:50:38:05:14:fa:dc:ff:42:
e0:df:d4:3b:76:7f:1d:85:49:26:b4:88:0f:72:63:cb:d5:16:
8e:16:ae:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:09:10 2025 by rpki-client