Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
File: TKha1Dt7R-dSh4MHGEeU1woCdmw.mft (raw, json)
Hash identifier: uAkDMB4iXykN+lIWPgLZvLAXPMpxcdBgphpiJwvhBms=
Subject key identifier: 46:D4:CC:7B:C2:74:F6:73:15:94:2E:38:19:70:1B:36:8B:3A:59:5D
Authority key identifier: 4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
Certificate issuer: /CN=4ca85ad43b7b47e752878307184794d70a02766c
Certificate serial: 019923314E982B55E5EC908B018AA93CFA9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
Manifest number: 01F7
Signing time: Sun 07 Sep 2025 08:00:57 +0000
Manifest this update: Sun 07 Sep 2025 08:00:57 +0000
Manifest next update: Mon 08 Sep 2025 08:00:57 +0000
Files and hashes: 1: TKha1Dt7R-dSh4MHGEeU1woCdmw.crl (hash: iT6pc026sj9bg74BM0DCRsTJLaIEus6dES3Js/BpJD8=)
2: cpRFayTuWEzodEO-QznXVMR-alE.roa (hash: wcJbOFjwwy8ZnD5yiXe5CzeprbHM7YA3HHhv8zEs++s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:4e:98:2b:55:e5:ec:90:8b:01:8a:a9:3c:fa:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca85ad43b7b47e752878307184794d70a02766c
Validity
Not Before: Sep 7 08:00:57 2025 GMT
Not After : Sep 8 08:00:57 2025 GMT
Subject: CN=46d4cc7bc274f67315942e3819701b368b3a595d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1a:ee:da:a6:d5:56:22:44:ca:40:95:d9:2b:
bf:a4:24:5f:28:51:f7:e3:e6:92:03:a6:c6:8e:af:
b6:d9:20:40:af:86:11:40:79:b1:19:51:1a:fb:a1:
93:52:f2:9a:42:43:8f:e1:52:b3:d8:03:25:05:66:
28:1f:55:06:e3:bb:80:53:cb:bf:9d:c8:bc:86:26:
a5:c8:33:19:26:ea:f0:65:ce:0a:ed:db:c5:a0:50:
cf:e6:36:c7:2e:b7:9d:e2:e1:96:c9:5f:76:15:5a:
c6:dd:25:b4:66:92:08:db:80:02:ab:7d:e7:d0:f2:
fe:1d:c5:bf:8f:2c:1a:ac:e0:29:a7:2d:5a:9c:f6:
b4:0f:f5:e5:56:7e:48:ee:78:15:89:cd:cd:87:af:
b5:6a:e5:4d:d7:bb:e7:33:0e:4d:a2:24:07:f5:3d:
44:81:a3:c3:7c:4c:d7:b1:c1:28:a8:db:2c:b9:74:
8a:6b:91:e3:44:d9:47:d5:3b:21:0e:3a:36:96:9e:
1d:c6:52:a3:84:85:0f:36:c0:94:f1:a1:9a:ab:5b:
cd:14:17:77:8f:4e:69:b2:11:d8:f3:11:54:7b:a3:
83:d7:30:cc:c9:60:04:ca:46:3b:46:22:22:d5:50:
72:88:f9:fc:78:06:56:6e:03:92:b8:40:ea:68:02:
7d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D4:CC:7B:C2:74:F6:73:15:94:2E:38:19:70:1B:36:8B:3A:59:5D
X509v3 Authority Key Identifier:
keyid:4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:de:48:65:0b:8b:b9:9b:01:38:3f:0d:ea:fa:ab:96:df:20:
e2:bb:20:0a:f8:1c:24:ad:7f:c5:1e:01:46:2d:6e:bf:b7:ec:
9c:e6:10:21:18:32:d4:01:07:19:25:cb:0f:44:1c:6b:50:7e:
71:b7:9b:a7:dc:2b:fa:ac:ab:34:0c:a5:fc:f6:6d:be:4f:c3:
dc:47:2e:01:f3:65:08:77:a3:9b:75:3f:07:bd:eb:e7:2d:e0:
ee:5d:4a:5c:80:f4:0e:a6:9d:ae:40:fc:29:38:21:e7:2c:93:
b4:23:ee:8b:12:8c:e4:e0:52:23:86:af:39:8e:6a:4e:de:7f:
20:94:34:ff:66:19:eb:f7:36:94:9b:6d:74:e1:36:38:50:dc:
2b:85:1e:44:53:a4:df:1b:fd:84:7e:75:0e:63:33:b9:cb:09:
d6:e1:15:e6:79:ba:5f:ec:40:b1:22:b9:1c:5e:70:a6:6e:e7:
57:4a:b0:d9:85:09:d5:02:c2:71:c2:ab:e3:96:6e:ad:7c:47:
12:4d:da:b1:3a:93:69:9a:7b:44:0a:ab:2b:eb:35:fd:29:79:
f2:3e:5e:7c:46:b1:4f:65:dd:bf:c6:36:ab:71:e3:1c:ea:5f:
12:d9:81:a2:99:b1:fc:6b:1a:99:53:c6:0f:21:0c:2a:ae:ca:
d4:66:d1:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjMU6YK1Xl7JCLAYqpPPqbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYTg1YWQ0M2I3YjQ3ZTc1Mjg3ODMwNzE4NDc5NGQ3MGEw
Mjc2NmMwHhcNMjUwOTA3MDgwMDU3WhcNMjUwOTA4MDgwMDU3WjAzMTEwLwYDVQQD
Eyg0NmQ0Y2M3YmMyNzRmNjczMTU5NDJlMzgxOTcwMWIzNjhiM2E1OTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3xru2qbVViJEykCV2Su/pCRfKFH3
4+aSA6bGjq+22SBAr4YRQHmxGVEa+6GTUvKaQkOP4VKz2AMlBWYoH1UG47uAU8u/
nci8hialyDMZJurwZc4K7dvFoFDP5jbHLred4uGWyV92FVrG3SW0ZpII24ACq33n
0PL+HcW/jywarOAppy1anPa0D/XlVn5I7ngVic3Nh6+1auVN17vnMw5NoiQH9T1E
gaPDfEzXscEoqNssuXSKa5HjRNlH1TshDjo2lp4dxlKjhIUPNsCU8aGaq1vNFBd3
j05pshHY8xFUe6OD1zDMyWAEykY7RiIi1VByiPn8eAZWbgOSuEDqaAJ9xQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEbUzHvCdPZzFZQuOBlwGzaLOlldMB8GA1UdIwQY
MBaAFEyoWtQ7e0fnUoeDBxhHlNcKAnZsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yYmVhOGYtOWZiYy00NzY1LTkzYmMt
MjIyMjUyOTI5ODczLzEvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC8yYmVhOGYtOWZiYy00NzY1LTkzYmMtMjIyMjUyOTI5ODcz
LzEvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk95IZQuL
uZsBOD8N6vqrlt8g4rsgCvgcJK1/xR4BRi1uv7fsnOYQIRgy1AEHGSXLD0Qca1B+
cbebp9wr+qyrNAyl/PZtvk/D3EcuAfNlCHejm3U/B73r5y3g7l1KXID0DqadrkD8
KTgh5yyTtCPuixKM5OBSI4avOY5qTt5/IJQ0/2YZ6/c2lJttdOE2OFDcK4UeRFOk
3xv9hH51DmMzucsJ1uEV5nm6X+xAsSK5HF5wpm7nV0qw2YUJ1QLCccKr45ZurXxH
Ek3asTqTaZp7RAqrK+s1/Sl58j5efEaxT2Xdv8Y2q3HjHOpfEtmBopmx/GsamVPG
DyEMKq7K1GbRFA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:28:05 2025 by rpki-client