Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
File: TKE73qVPdrioVxKv22FRhrM4OME.mft (raw, json)
Hash identifier: 95XSIb10N/+Uho+3ZJc2SGhnzAyFPpPyhyC9dsTX6dI=
Subject key identifier: 4E:D0:97:78:EC:6A:C3:1D:86:2F:D5:4C:AD:4E:05:7E:EF:6E:EB:C8
Authority key identifier: 4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1
Certificate issuer: /CN=4ca13bdea54f76b8a85712afdb615186b33838c1
Certificate serial: 019A21AE0B3BF344683991C605BACA313F16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
Manifest number: 16F7
Signing time: Sun 26 Oct 2025 18:00:45 +0000
Manifest this update: Sun 26 Oct 2025 18:00:45 +0000
Manifest next update: Mon 27 Oct 2025 18:00:45 +0000
Files and hashes: 1: TKE73qVPdrioVxKv22FRhrM4OME.crl (hash: RZ29x6mlc776TVkoWCsLeEjAeMsFScipH+bVKfrzWtM=)
2: WNroR83uzcjISqXHww42f1zYgLY.roa (hash: ZAQula8xqSNg9/XEOBi+pmskOiJ5Nh7rkmicK30wwYU=)
3: WZJH_ooSqUDE8CuUHonLIGQeTwM.roa (hash: PXoHbbx7PHb2+Knkp3tuLg6G82PksLK6/WnPXwU1W1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 18:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:ae:0b:3b:f3:44:68:39:91:c6:05:ba:ca:31:3f:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca13bdea54f76b8a85712afdb615186b33838c1
Validity
Not Before: Oct 26 18:00:45 2025 GMT
Not After : Oct 27 18:00:45 2025 GMT
Subject: CN=4ed09778ec6ac31d862fd54cad4e057eef6eebc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:da:b2:21:dd:61:84:05:94:b1:14:56:b2:cf:
1e:3e:3d:59:a5:8f:76:28:c6:7b:5e:8a:48:6d:ca:
f3:37:10:33:ad:85:73:2c:df:89:7a:f1:56:99:3d:
69:28:25:43:f0:8d:c7:e8:05:88:83:4c:37:e9:b8:
1d:26:92:33:36:2e:a0:4d:10:46:ac:21:2d:3b:5c:
c9:cf:0c:27:ac:06:14:ee:25:8e:89:ee:07:0b:9c:
33:d1:5a:a6:2a:70:3b:47:82:df:f4:e8:14:1b:ac:
d2:af:45:32:f1:bc:de:84:e7:49:6a:88:7b:fd:62:
f6:e8:a8:78:27:93:16:f8:c9:7c:20:5d:37:c8:07:
91:db:4b:55:8c:28:14:09:00:ef:95:e8:a9:2f:5c:
de:42:d9:3a:3f:6a:c6:84:90:d3:1e:d2:4a:2e:35:
ba:61:b8:c7:66:5c:4e:f8:ed:15:0d:19:3d:f7:fa:
f0:f5:94:11:a3:40:b0:d9:38:67:3b:d7:c8:59:d1:
20:d1:c4:48:5d:83:55:f3:c1:7b:38:ac:11:de:49:
e9:71:a1:95:e5:d8:89:82:be:ca:4e:47:c1:cf:e1:
1d:a6:40:1a:dd:80:87:3c:ca:68:78:66:b7:2c:8e:
f8:53:38:bf:62:e9:04:50:c4:7a:9c:c9:13:27:f3:
a6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D0:97:78:EC:6A:C3:1D:86:2F:D5:4C:AD:4E:05:7E:EF:6E:EB:C8
X509v3 Authority Key Identifier:
keyid:4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:fd:a2:d0:a5:19:f8:f3:37:43:c5:e4:3e:b1:46:a3:d8:5f:
62:71:f0:bd:51:74:56:99:3e:12:93:ce:d8:d1:51:af:10:98:
0e:79:71:37:50:f4:68:2a:67:d3:ab:a9:ec:f7:ea:e9:e5:51:
b2:9a:c5:90:af:b1:85:0f:00:44:fb:2a:d8:9c:1e:d8:4e:0a:
e5:f1:c9:cf:c8:8a:85:2d:52:d9:16:31:61:cd:15:7a:6e:c3:
74:07:c5:31:1b:fb:be:ea:04:0f:45:8b:5f:e4:dd:b8:9e:89:
a1:ca:61:bf:4b:d0:35:b5:36:ea:8a:e6:5e:51:67:34:29:62:
8d:0c:2c:0d:4c:cc:81:0d:69:64:89:b3:fa:14:80:7b:40:d7:
20:29:e8:c3:46:a2:e5:aa:0a:e0:4d:4e:a5:20:47:9d:f0:5c:
44:6e:3a:25:19:17:25:d5:d0:12:e2:00:aa:c4:10:72:09:7b:
a5:f1:f1:ba:ca:f6:bd:7e:f7:d2:5c:39:b3:9e:37:e4:50:7e:
38:b2:d0:02:0c:8a:1f:50:05:9c:d2:a7:b8:6c:7b:c9:45:8b:
62:ad:bc:c7:11:86:61:6d:c1:27:7e:49:fa:b5:4e:80:9e:69:
51:ef:09:13:a4:4e:91:a4:a2:0b:2b:f2:7a:40:8c:91:90:46:
74:05:0c:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:32:52 2025 by rpki-client