Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
File: TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft (raw, json)
Hash identifier: 73qLzG8kpLxgXrK3zwBaMvV8SvvQKHDtTDBpd+cyncM=
Subject key identifier: A4:96:95:07:27:36:13:EC:A1:BB:55:D8:56:E7:30:42:08:B7:9B:54
Authority key identifier: 4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
Certificate issuer: /CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Certificate serial: 019933B78B1C100397E985BA8A492721688F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
Manifest number: 167C
Signing time: Wed 10 Sep 2025 13:01:30 +0000
Manifest this update: Wed 10 Sep 2025 13:01:30 +0000
Manifest next update: Thu 11 Sep 2025 13:01:30 +0000
Files and hashes: 1: TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl (hash: 26fhwkbqBU0mFU806nmB5VPSTIfoeYRge1d34EUeYlo=)
2: bs1HYE5HpmfRDe1IWRWlAw4_YbQ.roa (hash: /9wCX+4PJTuFTnMcFlhOot3PdJrbFSkbu3ySPd314JY=)
3: kvulLtgS7l9j5cL5cr_z1UEgt1M.roa (hash: lwycUBIUeNB/fogCEgMYVAepQLASER5k8Ye40EXBAoI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:b7:8b:1c:10:03:97:e9:85:ba:8a:49:27:21:68:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Validity
Not Before: Sep 10 13:01:30 2025 GMT
Not After : Sep 11 13:01:30 2025 GMT
Subject: CN=a4969507273613eca1bb55d856e7304208b79b54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a1:2f:0c:31:eb:02:25:41:39:25:f0:c0:9b:
50:a8:2e:2c:e5:c3:13:9a:1b:cd:65:27:31:da:3d:
dd:57:36:9b:da:32:7f:94:8f:9b:76:92:5f:8a:4e:
df:1d:f9:75:1e:59:ed:9b:3b:ca:1a:bf:a1:21:5d:
2d:29:49:44:68:11:3f:6f:aa:4b:6a:3f:0e:71:b1:
1b:18:81:47:20:b4:fe:d7:a1:96:e8:d8:c7:c5:8e:
ce:4d:9d:26:ac:18:ca:54:2b:d0:02:c4:d9:94:81:
85:6b:78:cd:19:15:9e:c7:6a:0d:43:8d:43:de:d4:
7f:cf:1b:28:24:9c:74:e2:96:c2:40:32:b7:2e:ba:
23:73:c8:b6:7b:54:3d:cc:dc:06:16:cb:60:ee:8c:
85:37:f5:9b:31:40:52:60:93:09:86:5f:e2:4a:5a:
95:84:d6:73:e2:e3:24:d7:59:2b:eb:35:1c:e2:e2:
3a:b1:94:2a:f4:07:c3:3c:e3:0a:04:ed:d5:20:55:
9a:a5:a5:2a:96:29:ff:d5:77:e1:30:27:89:ab:d1:
b1:e1:f7:21:77:bf:d4:b0:cb:0c:53:af:ea:92:be:
40:e4:7e:91:6b:97:8d:bb:b3:b7:85:49:57:65:93:
95:65:4b:77:1c:bc:a6:4d:cc:44:ee:f7:9c:5e:5f:
66:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:96:95:07:27:36:13:EC:A1:BB:55:D8:56:E7:30:42:08:B7:9B:54
X509v3 Authority Key Identifier:
keyid:4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:fa:a4:f3:ea:1d:e4:41:3e:0c:76:c2:a3:6b:dc:de:b1:25:
8c:e7:99:78:49:5e:91:be:f6:4e:6b:32:e1:6e:fc:7c:ad:e0:
5c:af:d8:1e:ab:60:df:18:25:15:12:73:da:a4:9f:04:4b:c0:
6d:8e:59:dd:2f:46:12:a7:e3:76:d2:30:48:ef:4a:51:f8:a1:
53:a5:a6:ad:55:e0:96:58:dd:5d:e1:1d:0f:d4:94:74:32:d7:
08:18:d0:bb:9d:13:67:ca:7c:23:fb:41:49:5b:7f:8d:53:33:
ff:48:34:79:9f:f7:81:8f:ce:98:0c:82:83:28:65:65:0b:24:
82:b8:35:c6:69:27:3c:50:fd:01:0d:4c:43:e4:39:ed:8f:a9:
90:66:cf:b1:4c:ec:ff:fb:c7:0b:ae:9c:44:e4:41:40:d6:f4:
9a:ad:df:9f:5f:a0:52:59:43:a7:91:21:a5:ea:bd:8a:c8:59:
b8:9c:a7:a3:e3:d1:ba:ba:07:75:6c:1c:e4:d1:00:fc:74:f2:
5b:19:be:5b:c2:31:7a:ae:e3:1c:66:b9:0d:2b:a6:6c:55:64:
d4:c5:a4:d4:81:f0:b8:bf:e9:f0:30:76:c5:d1:a2:c8:c3:84:
2f:38:70:a8:7d:93:10:22:82:50:aa:1c:4b:61:79:85:a4:92:
c6:ad:4b:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 16:11:03 2025 by rpki-client