Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json)
Hash identifier: InfUxOXv1cnLOQ2mYM2WNhbPo0UhIm60Ndg48UknIiA=
Subject key identifier: A5:93:4E:6B:CC:2F:7F:D7:6C:B0:55:9C:72:3C:62:EC:B3:28:71:22
Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Certificate serial: 0198CB01CB0DDA3411305872CADD7BE2A92D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
Manifest number: 1653
Signing time: Thu 21 Aug 2025 05:02:28 +0000
Manifest this update: Thu 21 Aug 2025 05:02:28 +0000
Manifest next update: Fri 22 Aug 2025 05:02:28 +0000
Files and hashes: 1: JYm-31tHmtKX0NnDCQwWZyZvWS4.roa (hash: g4JwaI96sCFvP21t58o8pogqZoudya604Aq5hrOnaTM=)
2: RJXW4LBK4fFR7-qXARrAfcS6HVM.roa (hash: nADRNIhqhtAZRzc6jlM5uns21XppYQB+SgxQZjcIenk=)
3: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: B1hGQo+Lm0tFcm3QQvUjsc5P3/02rmg1YjpBcwIOAvo=)
4: aVSDFG9S0qVagyGCDyRaZCcj4uM.roa (hash: 10vd3ei8CEhJdvfMHANX2v90tno0+7P3mxjOYtPwbi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Aug 2025 05:02:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:cb:01:cb:0d:da:34:11:30:58:72:ca:dd:7b:e2:a9:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Validity
Not Before: Aug 21 05:02:28 2025 GMT
Not After : Aug 22 05:02:28 2025 GMT
Subject: CN=a5934e6bcc2f7fd76cb0559c723c62ecb3287122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a0:5e:96:0f:8d:fe:fa:b2:15:f2:c3:29:d7:
95:81:ec:4e:f5:4e:d2:75:d4:34:be:de:73:39:18:
90:1e:98:39:89:24:74:34:26:04:dd:f4:65:e3:27:
ac:f7:6f:04:8c:a2:27:6e:34:ab:ee:bf:01:42:66:
31:de:e9:f6:e3:b5:cd:c9:c2:90:22:d6:c2:cf:9e:
cb:4d:8d:c4:93:6d:d4:a2:a7:60:c2:45:94:02:a6:
7f:25:28:a3:ef:a0:6d:df:0f:bc:f8:53:34:70:bf:
db:6d:bc:26:30:14:05:22:84:8e:2d:c9:04:56:64:
c9:96:28:ce:04:c6:c3:e6:b6:2d:3d:21:79:b5:2d:
45:0e:66:a5:e3:07:db:f4:0e:63:9e:f4:81:27:c7:
36:fc:e1:e9:1e:54:4f:f5:e8:ca:a6:91:55:fd:a8:
4f:53:52:e2:9f:4f:34:83:e6:93:df:3d:55:8e:e1:
36:46:74:98:0d:a3:af:26:44:31:73:69:2d:39:c4:
99:8b:ee:a9:3b:a7:10:f4:0b:33:48:e6:8c:b6:55:
58:45:44:1c:bf:14:fc:9d:9d:0e:a3:bb:f5:9a:e5:
38:02:2c:af:ee:f3:f5:c8:06:4f:1c:67:86:7b:1e:
93:6a:29:5a:6b:94:23:9a:23:bd:e3:7e:32:89:56:
45:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:93:4E:6B:CC:2F:7F:D7:6C:B0:55:9C:72:3C:62:EC:B3:28:71:22
X509v3 Authority Key Identifier:
keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:a3:59:83:f6:e3:ad:c5:40:ed:a5:8d:68:52:f0:47:ea:cd:
2f:b6:8e:24:98:bf:43:c4:7f:c6:c6:18:fe:6a:02:8c:3b:8f:
0d:de:36:4b:6b:eb:06:c2:11:80:29:84:a4:48:3d:77:65:41:
f9:5e:6c:8c:b3:03:53:fb:1e:9d:8b:82:89:0b:e8:4c:57:db:
93:bf:76:cc:b3:13:7f:8b:ab:13:57:8b:11:55:d7:5d:68:a3:
b7:2e:57:71:60:6e:90:39:e5:75:72:27:42:56:54:28:24:fd:
d8:da:68:04:27:f0:77:98:7b:4f:c7:f3:6d:59:7f:19:6b:30:
e1:81:d1:1c:7a:2a:f5:53:00:94:0c:36:9c:25:5e:e2:1e:8d:
32:c6:ef:e2:8a:ad:8c:e2:f7:40:8c:1a:77:93:63:39:e6:ad:
7f:39:f4:e5:eb:41:45:c8:7f:5a:05:36:75:76:a1:22:6c:78:
2f:6c:5a:33:8d:d3:f7:bf:a0:e8:3c:be:55:72:c5:f4:b2:13:
b5:18:84:f9:b7:6d:88:30:72:17:d3:db:4a:f2:3b:14:d1:b5:
ab:95:89:7c:03:f0:e4:3d:2d:59:19:73:4e:30:03:74:14:bc:
92:45:80:26:6a:a9:55:b5:e7:ad:ba:b4:db:aa:75:fc:08:56:
a1:66:3e:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 15:39:12 2025 by rpki-client