Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft
File: tmlTqin4JZqgLBImpGzgnt1Fzp0.mft (raw, json)
Hash identifier: 4zeZOpURQLMTkWSdQXlKVMUZ6yvZOv/ztPQUAyFOrYo=
Subject key identifier: EC:32:86:16:54:F4:3F:C4:E0:38:EA:05:37:90:17:A6:CE:88:DF:F8
Authority key identifier: B6:69:53:AA:29:F8:25:9A:A0:2C:12:26:A4:6C:E0:9E:DD:45:CE:9D
Certificate issuer: /CN=b66953aa29f8259aa02c1226a46ce09edd45ce9d
Certificate serial: 0199FBEC217630573B55D935DA657EAA8795
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tmlTqin4JZqgLBImpGzgnt1Fzp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft
Manifest number: 0197
Signing time: Sun 19 Oct 2025 10:02:59 +0000
Manifest this update: Sun 19 Oct 2025 10:02:59 +0000
Manifest next update: Mon 20 Oct 2025 10:02:59 +0000
Files and hashes: 1: pqvRnrkHquypsw02knASEmaM8CA.roa (hash: iRr4/5L2X3HFedqB9qSGokTGPgu0NihU0rX3BfoQgdM=)
2: tmlTqin4JZqgLBImpGzgnt1Fzp0.crl (hash: azHpqRXqQGjXCpiFxFnz3E0Csq5Z408UH2Z5WTJu+ZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tmlTqin4JZqgLBImpGzgnt1Fzp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:21:76:30:57:3b:55:d9:35:da:65:7e:aa:87:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b66953aa29f8259aa02c1226a46ce09edd45ce9d
Validity
Not Before: Oct 19 10:02:59 2025 GMT
Not After : Oct 20 10:02:59 2025 GMT
Subject: CN=ec32861654f43fc4e038ea05379017a6ce88dff8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ff:9d:60:0b:b7:2c:bb:97:f0:7a:99:ca:d4:
49:b0:c0:9b:4f:60:37:7a:ab:7e:f8:f9:02:28:9d:
de:0f:6b:50:63:c5:33:90:32:36:1b:46:e9:5e:7f:
77:b7:36:43:37:6b:1d:00:28:9a:83:1e:77:01:59:
96:c5:7f:ec:62:b8:ec:3f:05:4a:db:f0:b5:f9:37:
34:95:8a:9a:34:20:7c:91:03:e8:ce:6d:d9:00:50:
fc:64:e3:08:8c:b2:e1:ef:e2:e4:92:f1:31:63:3b:
4a:3f:a2:d7:69:b3:39:df:cf:40:83:f1:cf:b7:39:
f4:3a:25:48:63:be:21:a7:c2:c3:04:ad:b9:0f:9b:
61:44:a5:04:b8:67:a4:66:9d:17:3a:5e:b2:6a:36:
04:9d:53:4d:87:14:6d:a7:a2:e4:b0:51:e3:60:d5:
b3:f4:7b:2d:d6:6f:64:ea:28:fe:3e:07:97:4b:9e:
15:62:53:35:31:fa:b0:d1:89:a7:a1:12:f3:20:cf:
bd:7d:92:5e:f9:5f:74:59:76:e8:ba:f0:61:f0:b0:
2d:92:a8:84:f2:46:a3:e2:d0:bc:ae:f5:1f:38:d7:
57:40:34:2a:ca:e2:e5:fa:27:fb:bd:08:92:e3:d9:
ba:1d:ce:ca:99:5e:08:dd:0a:b3:a4:58:18:24:c1:
15:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:32:86:16:54:F4:3F:C4:E0:38:EA:05:37:90:17:A6:CE:88:DF:F8
X509v3 Authority Key Identifier:
keyid:B6:69:53:AA:29:F8:25:9A:A0:2C:12:26:A4:6C:E0:9E:DD:45:CE:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tmlTqin4JZqgLBImpGzgnt1Fzp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:f7:5a:04:1f:f0:16:fc:51:a9:51:7d:3f:f7:58:56:34:db:
cf:e1:4e:ab:5b:0d:6d:6b:e3:2b:3b:96:86:64:55:7d:b3:4c:
9e:d1:4d:f6:21:7d:e9:bc:93:b7:3c:d0:a0:dd:a7:7c:eb:52:
4f:27:12:58:1b:93:57:5a:ae:f7:20:6f:00:cd:20:7c:95:10:
f9:31:51:64:25:54:30:5a:b6:db:a3:dc:07:a9:f5:b6:0d:c7:
0d:3c:95:b0:fb:89:9b:5a:85:db:75:b3:1b:db:d7:46:6e:86:
e1:c3:fc:a2:ce:17:5f:bd:5a:ee:e1:6c:c8:0d:15:af:5c:5b:
68:2f:f6:5e:64:f7:d6:cd:55:96:18:24:f3:de:22:b4:96:15:
0b:c6:1a:f7:44:16:80:de:ae:eb:da:67:89:e7:95:d2:cc:93:
69:23:dd:2f:e3:b1:22:0f:40:fe:a2:cd:01:4a:32:d9:5f:c6:
8c:e7:72:dd:d0:e9:0e:69:dc:5d:62:fb:64:7b:7a:9d:7d:79:
11:f4:5d:a6:e3:dd:52:f3:78:14:9e:0e:72:2d:5a:c0:4c:9f:
12:1a:ee:3a:91:ff:1e:36:18:68:1f:6a:68:eb:e3:71:d7:d8:
89:d7:e5:4a:f7:d4:57:2b:58:8c:8d:07:8b:14:75:4c:a7:6f:
c8:6b:e3:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:29 2025 by rpki-client