Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json)
Hash identifier: 3pLfdj7n049ox6ZvzH+GSRz7uBpwzXjTCzRZrHKY46o=
Subject key identifier: F5:16:D3:8E:00:13:3F:61:04:AC:1F:55:DA:11:17:7A:EB:75:9A:D5
Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Certificate serial: 019A04119AEDA585D2FA3BCA3E6B89ECC904
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
Manifest number: 1702
Signing time: Tue 21 Oct 2025 00:00:53 +0000
Manifest this update: Tue 21 Oct 2025 00:00:53 +0000
Manifest next update: Wed 22 Oct 2025 00:00:53 +0000
Files and hashes: 1: 15pjcL48pkWZSvyXnDWjH3srMzQ.roa (hash: dmd97hcLtSzZy7Qz5O/ccY1dtF/UXlYHWlHQGTz9cV0=)
2: 3m24X-EciRhk0jIJsdLBkFHw4Vc.roa (hash: 4191ER+HI71G/WcSYBdVlGxJt+on8LpGReotMNSci7U=)
3: OW3nOicLkrmXZdp3r5orx47eGJQ.roa (hash: 5EmIochVR6v8ogsSzgwpakcQSlqncNbG0N7JC4GvEpY=)
4: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: m1XAZfy0+R2GpfSou6WGivv0dqvELBIJjotvo15eqbM=)
5: XRjqskDJfCb5PURI6gE2z-7afCI.roa (hash: lC6CdL71ZqZQFEg499ebGpokdZd/v2A2IJbWINe+nqc=)
6: aVSDFG9S0qVagyGCDyRaZCcj4uM.roa (hash: 10vd3ei8CEhJdvfMHANX2v90tno0+7P3mxjOYtPwbi4=)
7: yCdRlY1dy91_yoXt5TFoEdJrw-o.roa (hash: KareyGqAsZ0sDsSq6dTpkWiy0kkcW1Zx+0QaG17jqGs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 00:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:04:11:9a:ed:a5:85:d2:fa:3b:ca:3e:6b:89:ec:c9:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Validity
Not Before: Oct 21 00:00:53 2025 GMT
Not After : Oct 22 00:00:53 2025 GMT
Subject: CN=f516d38e00133f6104ac1f55da11177aeb759ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:02:61:66:d0:b6:1b:39:f0:e3:55:91:26:c9:
4f:7d:b3:cf:f9:e4:e1:98:3f:d7:22:92:3e:7e:ff:
25:81:81:24:34:18:52:5a:95:6f:ae:b9:49:2d:a9:
a7:cc:d5:c1:7d:4c:c6:59:0c:e5:63:57:38:23:0f:
f3:f1:40:6b:66:fd:ae:52:25:f5:46:35:8d:7a:eb:
bb:5b:09:48:ce:04:a2:d2:f6:bc:50:b7:26:be:12:
6f:c7:90:f9:d2:8e:d1:96:92:66:ec:9d:55:b7:46:
8c:0c:0d:08:24:3b:98:ea:fb:11:3a:10:9e:67:4a:
65:d9:df:2a:e1:12:1c:b0:5b:3a:70:02:0e:4b:b3:
38:55:99:0c:fe:19:3d:6d:b6:8e:c5:70:f9:5b:73:
1d:1c:f9:c7:ac:93:20:cf:55:52:6e:18:44:0c:f4:
ab:54:bd:bd:56:5a:32:a5:fa:6b:38:36:67:9e:22:
20:12:39:0e:82:ab:b3:7b:ae:41:15:dc:ad:ab:0a:
8f:26:3d:51:7e:00:a1:1e:ba:69:f2:9b:57:8e:e2:
3f:cb:46:23:8c:e6:16:b4:92:d6:09:47:d0:d5:c3:
27:ae:66:05:85:61:4b:37:9c:f1:66:9a:58:0a:f2:
e5:c8:15:06:db:d5:a0:f8:a1:a8:4d:f4:d7:bc:1e:
63:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:16:D3:8E:00:13:3F:61:04:AC:1F:55:DA:11:17:7A:EB:75:9A:D5
X509v3 Authority Key Identifier:
keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:cd:54:ca:60:84:f5:5f:01:44:8b:a8:7b:20:3c:d6:af:ac:
ab:7e:fa:ef:bb:f2:83:e2:87:7e:76:59:60:6c:11:21:13:ea:
42:40:73:c0:01:11:5d:09:b7:34:c6:65:31:1a:f7:fb:89:36:
a5:e4:66:96:09:39:ac:30:ea:97:3a:84:4d:8c:4e:3f:92:1b:
51:f0:f4:18:5b:4a:fb:60:f8:80:bc:27:f0:d9:b2:80:88:14:
29:69:92:9f:8c:8a:8a:e1:7b:35:85:55:2a:ed:d6:34:dc:61:
3f:06:2e:8b:23:33:9f:6a:86:c7:c6:17:64:39:b8:45:0f:17:
f9:7f:fb:89:11:64:57:81:24:33:89:a3:c5:8c:ab:ae:99:12:
07:77:16:e9:43:c6:d2:74:8b:2c:48:5a:4c:f9:33:c8:74:d0:
19:42:d7:8f:a4:72:d2:55:55:55:6e:2f:85:36:ea:c9:89:f8:
c2:52:3d:57:5d:bc:16:ff:38:ed:1f:2a:a1:56:28:08:16:51:
ad:29:ea:ef:af:18:00:ed:6a:c0:90:8f:fc:76:a0:be:33:db:
91:8e:d5:fa:74:9d:23:82:40:e2:9b:c9:22:65:8d:d4:03:9b:
7b:89:fd:cf:ee:c5:d0:f6:76:cf:a4:50:a8:de:11:6d:4b:d5:
58:6b:b0:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 10:59:48 2025 by rpki-client