Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
File: tkDbwv_PXWNFicBEAV1xdcuv8-0.mft (raw, json)
Hash identifier: 84vkPgSUrXbucgHtJMppmSGD/izm0sWwgdkObf3nTKk=
Subject key identifier: 94:39:A3:9F:F0:08:8F:CB:7E:EB:58:66:2D:CC:62:E9:D4:BE:7A:68
Authority key identifier: B6:40:DB:C2:FF:CF:5D:63:45:89:C0:44:01:5D:71:75:CB:AF:F3:ED
Certificate issuer: /CN=b640dbc2ffcf5d634589c044015d7175cbaff3ed
Certificate serial: 01984A0A621C509E2FB79267F1D9F2EEF68C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
Manifest number: 10A0
Signing time: Sun 27 Jul 2025 04:00:51 +0000
Manifest this update: Sun 27 Jul 2025 04:00:51 +0000
Manifest next update: Mon 28 Jul 2025 04:00:51 +0000
Files and hashes: 1: tkDbwv_PXWNFicBEAV1xdcuv8-0.crl (hash: msChNtQidVgWw6Xm8Oj2ZPlnBKvrUJdgJengwX9VBQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:0a:62:1c:50:9e:2f:b7:92:67:f1:d9:f2:ee:f6:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b640dbc2ffcf5d634589c044015d7175cbaff3ed
Validity
Not Before: Jul 27 04:00:51 2025 GMT
Not After : Jul 28 04:00:51 2025 GMT
Subject: CN=9439a39ff0088fcb7eeb58662dcc62e9d4be7a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:cf:5f:cd:31:45:8a:05:5a:bb:58:96:8d:23:
bb:3b:2f:21:1c:5b:9a:80:db:1d:9d:f2:38:a3:e6:
56:af:c3:33:26:d7:9a:57:05:aa:18:c0:19:4b:48:
c0:18:ab:bf:5f:20:95:af:3f:db:53:5a:05:82:a7:
e1:6f:af:d3:db:31:b4:28:7f:cb:ce:7d:1e:25:5d:
23:8e:39:33:6a:e1:87:59:29:70:85:c5:5c:78:7c:
73:9d:09:b0:9a:5d:64:a9:23:b9:0c:2d:dc:28:93:
aa:8b:aa:a3:f8:b6:ec:7f:c3:62:74:32:ae:53:23:
6b:c8:b0:01:33:8f:00:8d:fa:06:82:85:17:9b:c0:
27:f9:98:9a:6b:50:e3:ba:ff:da:79:62:74:a5:5c:
5c:5b:68:fd:83:cf:07:83:f1:27:10:a1:46:42:a8:
be:6c:ce:56:a7:c9:fe:4d:0a:45:68:ce:07:0e:2d:
58:eb:f3:d1:b0:32:33:eb:0d:22:e9:e8:df:9d:14:
9f:2b:0d:16:d0:11:33:b9:57:ff:90:db:3d:8e:14:
66:bf:b6:28:45:9c:2d:1f:42:76:54:c8:c4:ae:7e:
f0:05:58:c2:5e:e3:8b:c9:18:5b:1d:99:77:3f:67:
e8:a8:3f:cd:54:63:51:09:ad:81:06:03:7f:72:54:
f4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:39:A3:9F:F0:08:8F:CB:7E:EB:58:66:2D:CC:62:E9:D4:BE:7A:68
X509v3 Authority Key Identifier:
keyid:B6:40:DB:C2:FF:CF:5D:63:45:89:C0:44:01:5D:71:75:CB:AF:F3:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:15:62:0a:c8:82:8b:5f:d9:fe:67:c4:27:01:dc:35:27:81:
7c:c5:06:c9:e5:97:8f:41:7a:41:e1:af:74:96:2a:5d:c7:ff:
ce:2d:39:f4:40:8a:3c:68:32:33:ef:10:0a:8f:fb:73:a7:51:
75:c1:b0:b0:c4:b3:e7:e0:0d:80:d9:d9:54:3f:6f:8f:d5:37:
3a:56:0d:49:51:85:4e:35:e8:5a:b4:04:3c:e7:21:b5:f6:e6:
2a:63:33:cc:d8:bc:dc:3b:9b:0b:8d:ef:c5:13:0a:4b:90:ca:
63:87:f8:4b:d5:ea:4a:f0:85:88:12:24:40:80:63:a0:f7:7e:
4a:80:f0:a0:c4:6e:55:bb:a2:02:e4:36:13:4d:d1:48:7c:45:
2c:4c:8b:06:33:c0:75:68:9b:0d:7d:20:59:b2:05:5f:fc:d9:
45:60:78:78:6b:18:5c:ba:ed:16:77:87:73:b0:e5:15:f9:ce:
2c:f2:41:48:3b:11:45:6f:c7:37:3e:92:64:05:46:6f:5c:02:
dc:42:89:eb:2d:92:06:b4:7c:90:8f:c7:86:c8:41:29:e0:94:
ec:3c:36:4b:c8:f9:d0:21:53:e4:14:1b:21:83:9f:a9:f4:4b:
7d:fd:56:61:d9:8b:2a:9f:7d:2b:af:c0:c9:84:76:22:c0:8d:
c7:21:08:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhKCmIcUJ4vt5Jn8dny7vaMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2NDBkYmMyZmZjZjVkNjM0NTg5YzA0NDAxNWQ3MTc1Y2Jh
ZmYzZWQwHhcNMjUwNzI3MDQwMDUxWhcNMjUwNzI4MDQwMDUxWjAzMTEwLwYDVQQD
Eyg5NDM5YTM5ZmYwMDg4ZmNiN2VlYjU4NjYyZGNjNjJlOWQ0YmU3YTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnM9fzTFFigVau1iWjSO7Oy8hHFua
gNsdnfI4o+ZWr8MzJteaVwWqGMAZS0jAGKu/XyCVrz/bU1oFgqfhb6/T2zG0KH/L
zn0eJV0jjjkzauGHWSlwhcVceHxznQmwml1kqSO5DC3cKJOqi6qj+Lbsf8NidDKu
UyNryLABM48AjfoGgoUXm8An+Ziaa1Djuv/aeWJ0pVxcW2j9g88Hg/EnEKFGQqi+
bM5Wp8n+TQpFaM4HDi1Y6/PRsDIz6w0i6ejfnRSfKw0W0BEzuVf/kNs9jhRmv7Yo
RZwtH0J2VMjErn7wBVjCXuOLyRhbHZl3P2foqD/NVGNRCa2BBgN/clT0xwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJQ5o5/wCI/LfutYZi3MYunUvnpoMB8GA1UdIwQY
MBaAFLZA28L/z11jRYnARAFdcXXLr/PtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGtEYnd2X1BYV05GaWNCRUFWMXhkY3V2OC0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi83Njc2OGMtY2Q3NS00NmE5LThkNjUt
NmNiYjc3YmFhMDJkLzEvdGtEYnd2X1BYV05GaWNCRUFWMXhkY3V2OC0wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi83Njc2OGMtY2Q3NS00NmE5LThkNjUtNmNiYjc3YmFhMDJk
LzEvdGtEYnd2X1BYV05GaWNCRUFWMXhkY3V2OC0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZxViCsiC
i1/Z/mfEJwHcNSeBfMUGyeWXj0F6QeGvdJYqXcf/zi059ECKPGgyM+8QCo/7c6dR
dcGwsMSz5+ANgNnZVD9vj9U3OlYNSVGFTjXoWrQEPOchtfbmKmMzzNi83DubC43v
xRMKS5DKY4f4S9XqSvCFiBIkQIBjoPd+SoDwoMRuVbuiAuQ2E03RSHxFLEyLBjPA
dWibDX0gWbIFX/zZRWB4eGsYXLrtFneHc7DlFfnOLPJBSDsRRW/HNz6SZAVGb1wC
3EKJ6y2SBrR8kI/HhshBKeCU7Dw2S8j50CFT5BQbIYOfqfRLff1WYdmLKp99K6/A
yYR2IsCNxyEIIA==
-----END CERTIFICATE-----
Generated at Sun Jul 27 09:57:11 2025 by rpki-client