Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
File: TSPi7bMh4ailzp7j4tlapA8N6KA.mft (raw, json)
Hash identifier: Imo/WicPMuFKlrfQTrpvfgOcz7J063/pNEV9F1KIB10=
Subject key identifier: 6D:DF:FD:11:3E:F8:1C:76:27:F6:88:47:89:2B:9B:5E:FE:56:6C:D6
Authority key identifier: 4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0
Certificate issuer: /CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0
Certificate serial: 0199FC21BBB942B5449D0036E62C30C29D9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
Manifest number: 0B98
Signing time: Sun 19 Oct 2025 11:01:33 +0000
Manifest this update: Sun 19 Oct 2025 11:01:33 +0000
Manifest next update: Mon 20 Oct 2025 11:01:33 +0000
Files and hashes: 1: E8fqlMMExB61QIsEKMENcZNpWcs.roa (hash: BmnUAt4AevLzEKuzLNe+ibP+z5vcZguaEireBbRJdHM=)
2: TSPi7bMh4ailzp7j4tlapA8N6KA.crl (hash: XZ1p/xJNRdFDMn2Qy4d365Hrbe2LroXm5uKbszhzVds=)
3: gXlhbbxVLQVqCMGvhejieNdtoBY.roa (hash: 8u7C6SqKmEB/oIEa7cYGrPkrur0B3bFj0WV0Kh36+qQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:bb:b9:42:b5:44:9d:00:36:e6:2c:30:c2:9d:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0
Validity
Not Before: Oct 19 11:01:33 2025 GMT
Not After : Oct 20 11:01:33 2025 GMT
Subject: CN=6ddffd113ef81c7627f68847892b9b5efe566cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cd:c1:44:a2:ae:46:c1:a5:26:ec:9a:3e:78:
44:e1:fd:92:e8:a2:86:78:3e:58:05:02:12:84:3e:
90:ee:b7:69:80:68:c1:c8:28:36:e3:15:d1:8d:1d:
ad:a1:0c:01:03:7a:50:8f:e7:58:84:31:8c:ca:9c:
bf:10:a3:4d:4c:1a:cd:41:0b:fe:87:f0:41:72:8a:
57:a2:3e:cd:9e:0b:57:7f:c6:9f:46:04:1f:d6:2a:
28:48:3b:79:20:7e:88:8a:b9:b2:09:3b:0e:8d:1f:
5a:35:b9:70:e3:13:57:fc:ed:1a:a7:a3:47:bf:d3:
85:db:43:52:44:f6:b8:b3:37:09:ec:d1:02:62:62:
af:3d:06:30:8b:0f:61:27:56:0a:7b:c8:5d:f1:83:
c1:71:f3:3b:99:6e:21:38:af:0c:34:be:95:c1:dc:
b9:a1:7a:ce:6a:8e:24:c4:7e:f1:77:60:42:f5:4d:
73:1f:16:b5:d2:19:3f:0c:d5:cf:3f:f0:f7:f0:f1:
0b:cf:c3:8b:90:88:a6:4c:1f:c6:8c:74:48:09:10:
5a:2d:8a:1d:db:bf:f9:5e:9f:04:23:99:99:9b:02:
26:82:ba:31:31:4e:7e:7b:5a:5c:02:35:ab:c9:77:
0d:a8:d0:ee:cf:6d:c6:32:52:51:0e:dd:bf:62:a4:
ef:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:DF:FD:11:3E:F8:1C:76:27:F6:88:47:89:2B:9B:5E:FE:56:6C:D6
X509v3 Authority Key Identifier:
keyid:4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:fa:40:7f:9d:d2:b4:38:61:c4:15:3b:7d:90:19:50:84:72:
27:f6:c8:b2:a3:59:6e:2f:c6:a5:07:14:40:cd:af:b8:3b:cb:
6c:ae:06:dc:46:f4:da:97:e5:72:00:95:71:d5:11:50:7a:84:
98:81:03:13:11:f4:34:c5:2e:49:41:c9:2e:48:e6:b7:16:76:
a6:66:46:c6:d9:09:27:3b:e9:ee:95:38:b5:b0:6e:1d:50:64:
46:24:ed:c3:43:55:58:7e:0a:2b:80:ad:df:93:6c:c3:57:56:
10:62:27:d6:b4:d2:98:48:af:66:73:1a:04:53:b4:58:60:f1:
fe:b5:8c:10:34:2f:04:48:f7:96:f5:01:4c:67:f3:66:d9:0b:
02:c7:6a:c8:bd:57:8b:fb:83:a2:30:32:36:b0:97:8d:45:a8:
ad:29:31:79:69:2b:f6:87:8f:d1:1b:46:7d:43:eb:b0:d1:5c:
14:1d:94:c8:12:22:3f:c9:91:4d:43:49:a9:1e:93:b2:d4:3d:
de:c1:c8:53:2e:3f:45:34:79:44:78:03:1b:e6:fd:36:94:74:
30:e5:6f:01:a6:a6:61:01:07:9b:05:09:8f:41:dc:71:7b:09:
20:6e:b7:51:15:31:5b:28:1b:ab:37:30:c5:bc:5e:d9:3b:e7:
09:56:6e:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8Ibu5QrVEnQA25iwwwp2bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkMjNlMmVkYjMyMWUxYThhNWNlOWVlM2UyZDk1YWE0MGYw
ZGU4YTAwHhcNMjUxMDE5MTEwMTMzWhcNMjUxMDIwMTEwMTMzWjAzMTEwLwYDVQQD
Eyg2ZGRmZmQxMTNlZjgxYzc2MjdmNjg4NDc4OTJiOWI1ZWZlNTY2Y2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAts3BRKKuRsGlJuyaPnhE4f2S6KKG
eD5YBQIShD6Q7rdpgGjByCg24xXRjR2toQwBA3pQj+dYhDGMypy/EKNNTBrNQQv+
h/BBcopXoj7NngtXf8afRgQf1iooSDt5IH6IirmyCTsOjR9aNblw4xNX/O0ap6NH
v9OF20NSRPa4szcJ7NECYmKvPQYwiw9hJ1YKe8hd8YPBcfM7mW4hOK8MNL6Vwdy5
oXrOao4kxH7xd2BC9U1zHxa10hk/DNXPP/D38PELz8OLkIimTB/GjHRICRBaLYod
27/5Xp8EI5mZmwImgroxMU5+e1pcAjWryXcNqNDuz23GMlJRDt2/YqTvjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG3f/RE++Bx2J/aIR4krm17+VmzWMB8GA1UdIwQY
MBaAFE0j4u2zIeGopc6e4+LZWqQPDeigMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFNQaTdiTWg0YWlsenA3ajR0bGFwQThONktBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9lNGUwN2UtMTVmYy00OTQyLTg0MmEt
NTM4NTA5ZjNhNzg5LzEvVFNQaTdiTWg0YWlsenA3ajR0bGFwQThONktBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC9lNGUwN2UtMTVmYy00OTQyLTg0MmEtNTM4NTA5ZjNhNzg5
LzEvVFNQaTdiTWg0YWlsenA3ajR0bGFwQThONktBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAePpAf53S
tDhhxBU7fZAZUIRyJ/bIsqNZbi/GpQcUQM2vuDvLbK4G3Eb02pflcgCVcdURUHqE
mIEDExH0NMUuSUHJLkjmtxZ2pmZGxtkJJzvp7pU4tbBuHVBkRiTtw0NVWH4KK4Ct
35Nsw1dWEGIn1rTSmEivZnMaBFO0WGDx/rWMEDQvBEj3lvUBTGfzZtkLAsdqyL1X
i/uDojAyNrCXjUWorSkxeWkr9oeP0RtGfUPrsNFcFB2UyBIiP8mRTUNJqR6TstQ9
3sHIUy4/RTR5RHgDG+b9NpR0MOVvAaamYQEHmwUJj0HccXsJIG63URUxWygbqzcw
xbxe2TvnCVZuig==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:14:10 2025 by rpki-client