Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
File: TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft (raw, json)
Hash identifier: RyrN6k7hH7CmT4wNnnX9OdjqUSsp98QL72e9lkHcjLc=
Subject key identifier: F8:CD:FA:8A:83:92:43:13:BA:75:BA:8C:51:8F:1F:46:67:C0:59:3F
Authority key identifier: 4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
Certificate issuer: /CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Certificate serial: 019A2140440E7C57C3C2018562CE7165CD9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
Manifest number: 16F7
Signing time: Sun 26 Oct 2025 16:00:50 +0000
Manifest this update: Sun 26 Oct 2025 16:00:50 +0000
Manifest next update: Mon 27 Oct 2025 16:00:50 +0000
Files and hashes: 1: TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl (hash: kvCU8E3YFrPgeOZ7OcpuYrX+dqvfb7enNhMKHhQB7eA=)
2: bs1HYE5HpmfRDe1IWRWlAw4_YbQ.roa (hash: /9wCX+4PJTuFTnMcFlhOot3PdJrbFSkbu3ySPd314JY=)
3: kvulLtgS7l9j5cL5cr_z1UEgt1M.roa (hash: lwycUBIUeNB/fogCEgMYVAepQLASER5k8Ye40EXBAoI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:40:44:0e:7c:57:c3:c2:01:85:62:ce:71:65:cd:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Validity
Not Before: Oct 26 16:00:50 2025 GMT
Not After : Oct 27 16:00:50 2025 GMT
Subject: CN=f8cdfa8a83924313ba75ba8c518f1f4667c0593f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:14:7e:37:01:73:3e:c3:6b:78:0d:8a:fa:0e:
df:7d:79:8d:09:94:51:41:51:bd:6e:79:d0:e3:25:
c4:9a:63:46:23:7a:af:35:87:d3:b9:f3:27:f9:11:
c1:2d:1a:f0:9e:a6:f5:b8:3f:95:a5:e6:ff:4b:88:
2e:a2:65:cb:b8:1f:f9:00:81:fb:03:db:a7:0f:b4:
41:4a:ae:b7:01:ba:2b:74:fc:2e:3b:fa:c4:25:bb:
c6:c5:e9:19:7a:f1:7c:7d:af:02:9d:7c:65:99:d3:
b6:27:a9:ec:ac:fb:f9:67:a9:12:32:6c:19:32:a7:
8c:66:cc:25:99:91:61:67:23:67:b9:21:e8:f9:96:
0f:8c:86:18:45:93:12:fe:4b:bb:da:f5:c1:81:3a:
7c:3f:79:60:19:13:b2:be:df:cb:29:5b:56:58:58:
d0:b2:53:c5:94:2a:38:41:e4:36:e8:bc:cd:80:5a:
c0:10:6c:06:71:76:bb:91:f5:4c:50:23:10:43:4f:
db:54:55:ac:c7:c0:ee:42:66:5f:f7:57:02:ae:59:
26:93:51:5e:c0:9d:b9:c8:2b:b8:76:a8:e2:ae:94:
16:f5:f1:6d:43:2a:7d:ba:b7:70:b3:47:34:4b:91:
40:c9:7d:64:ef:2e:06:24:4a:31:e0:ce:1b:25:3a:
18:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:CD:FA:8A:83:92:43:13:BA:75:BA:8C:51:8F:1F:46:67:C0:59:3F
X509v3 Authority Key Identifier:
keyid:4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:00:c5:f1:62:4f:65:f9:a3:48:8b:f3:84:67:87:18:47:7c:
1a:2e:0a:b4:ee:e8:02:1c:34:f0:5c:87:fe:79:18:1c:24:4d:
fd:5f:62:d9:24:78:a2:eb:28:62:3f:39:18:8e:f9:86:f4:e3:
77:66:a2:4c:ef:ed:b2:4a:e8:f7:15:fa:ef:78:7d:06:f3:67:
4b:e0:f9:b1:51:4f:87:5d:2a:1e:3f:d6:1b:56:c7:ca:88:75:
74:a3:44:0f:61:b6:d6:47:f8:4b:87:d1:5d:62:ee:30:84:c0:
c8:8c:18:7c:90:3d:54:a4:c6:0a:e7:ee:a3:96:a0:e4:7b:ef:
5b:66:59:15:e4:f6:84:d5:aa:e0:7c:f6:33:b3:98:5c:e9:00:
e5:63:b8:d8:06:10:35:ac:30:91:30:12:39:dc:cb:b2:02:3e:
1e:e3:dc:c9:d7:15:c1:67:5c:91:d4:a7:91:ee:6b:77:b2:c7:
a3:de:9d:d2:ec:61:68:b6:03:a9:d3:11:0b:ba:82:66:9d:5c:
9c:88:5a:f9:23:74:96:59:1e:5f:d2:2d:9e:d5:00:99:9f:8e:
36:5d:e4:02:1f:01:da:3e:51:61:81:8e:54:b5:c8:7c:60:7d:
26:e7:54:f5:f4:3d:ff:df:a9:7a:18:dd:07:68:7f:a9:66:db:
72:c9:dd:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 20:30:58 2025 by rpki-client