Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
File: TQiJTKQFMefSApQJEojnetEsKXk.mft (raw, json)
Hash identifier: 4qvnmHTSHomoBNqd8m6lu1PDQ/86lImNPAI6BH8pMb0=
Subject key identifier: D5:87:1E:50:F9:A9:A8:8E:CA:22:5A:56:18:9C:02:74:84:38:8E:75
Authority key identifier: 4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
Certificate issuer: /CN=4d08894ca40531e7d20294091288e77ad12c2979
Certificate serial: 0199221E8543CB0BEF63368CF06AD9F0DEE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
Manifest number: 0738
Signing time: Sun 07 Sep 2025 03:00:49 +0000
Manifest this update: Sun 07 Sep 2025 03:00:49 +0000
Manifest next update: Mon 08 Sep 2025 03:00:49 +0000
Files and hashes: 1: 9vSYuCdAG_e0E6RGGzb6agTE0BM.roa (hash: QacZLKOpB/Eo9Q8tjYWI0KN++SKGpTz/tW+UR9tDqD0=)
2: TQiJTKQFMefSApQJEojnetEsKXk.crl (hash: d6O/gGjojUJPaWtavtByMMteAIY1rlxBjZ7e4xTmE5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:85:43:cb:0b:ef:63:36:8c:f0:6a:d9:f0:de:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d08894ca40531e7d20294091288e77ad12c2979
Validity
Not Before: Sep 7 03:00:49 2025 GMT
Not After : Sep 8 03:00:49 2025 GMT
Subject: CN=d5871e50f9a9a88eca225a56189c027484388e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b8:f7:c0:64:e2:32:3c:42:96:91:7c:17:6a:
e5:bf:93:ed:7a:9c:ef:2f:48:a2:f0:53:03:35:aa:
62:bc:19:2a:f8:a2:19:42:02:f9:e3:fc:f1:06:ff:
fc:ca:a6:c9:db:f1:88:10:8a:af:a3:64:41:55:ac:
cc:43:7b:c3:c3:da:3c:e0:93:b4:88:52:ff:e0:24:
cb:56:89:42:d4:3b:a5:eb:04:ea:0d:fe:7c:ed:df:
39:2c:95:1b:b1:e1:d4:e8:fe:3f:93:f4:26:b4:73:
6c:b8:02:08:c7:c6:84:2b:55:9c:2c:68:ce:99:8f:
6e:bb:b0:4d:5a:4f:d0:ef:62:fd:3d:6e:85:91:d1:
cd:96:d6:b7:45:fb:82:12:41:c8:6b:ce:0a:8e:53:
47:01:5c:8d:ad:7f:1a:95:3c:9d:72:21:c7:f7:99:
ce:3f:0c:2a:8b:9d:53:0d:c6:a7:05:3a:61:5b:2e:
8a:ba:39:20:c8:36:66:8f:29:c7:b4:4f:29:e3:7c:
38:bb:2c:36:5b:09:fc:45:e9:d8:98:ee:06:55:02:
b0:45:e4:f6:71:db:e2:65:e6:21:de:b4:9c:ce:80:
23:5d:ca:47:d0:62:e4:53:85:28:1f:a4:3d:14:13:
e8:a8:5a:7d:f0:a4:37:67:c5:54:e8:6c:0e:6b:d8:
66:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:87:1E:50:F9:A9:A8:8E:CA:22:5A:56:18:9C:02:74:84:38:8E:75
X509v3 Authority Key Identifier:
keyid:4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:b0:e8:9e:e3:87:0b:40:51:09:c8:e3:a9:d6:76:63:54:83:
63:9c:c8:13:04:18:fd:a7:4b:b4:0f:d4:d6:51:3d:a8:6d:60:
af:d5:3b:17:aa:62:a4:07:2d:55:8d:5f:7d:a9:05:06:a9:0a:
1b:49:cb:20:28:47:db:4a:e3:c6:c8:4b:77:71:8e:f3:6e:da:
9a:1f:55:e2:da:b4:0f:3b:fe:74:e2:d5:ee:2d:ef:3a:eb:a1:
26:9e:4b:a5:04:0f:c7:95:1a:06:fa:47:29:3b:cb:0b:33:e8:
0a:f7:02:43:9b:70:e6:1a:85:00:47:30:0f:80:d3:8d:fd:ed:
98:fb:6f:5f:17:d6:dd:f0:31:01:b8:42:d2:41:d6:ab:bc:ca:
ae:c5:af:45:59:8a:11:97:f9:f9:88:c4:1f:c6:f2:3f:80:d9:
8c:c8:9a:df:04:b6:ed:14:3c:c4:b5:8e:44:0b:34:3c:de:56:
aa:40:da:a9:50:0c:16:db:6e:6d:1c:c5:9a:ba:d0:9b:9c:f3:
6c:a6:bb:83:3e:78:e3:8c:10:4e:83:16:12:9c:f0:68:36:d8:
24:d4:9c:37:d5:a1:e1:cc:bc:fa:31:81:d0:7b:43:42:b8:e7:
6b:5b:b2:1d:9a:84:42:2c:cf:e5:22:d8:10:2a:46:64:5b:dc:
cb:9f:1c:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:05:51 2025 by rpki-client