Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
File: TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft (raw, json)
Hash identifier: jERn3jmgEofC8LBhKfNtd3DhvaYKfqR3lq77uxy7KiU=
Subject key identifier: A3:9F:F5:02:B3:5E:9B:BF:D4:C6:81:AE:2A:1D:F6:9C:A3:A9:B7:D6
Authority key identifier: 4C:21:6F:66:56:0A:E1:6B:A7:59:4F:46:AF:06:0F:35:1E:0E:B4:9E
Certificate issuer: /CN=4c216f66560ae16ba7594f46af060f351e0eb49e
Certificate serial: 019A239C6BC98FCD2F57E2943E0B11C57DF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
Manifest number: 0D21
Signing time: Mon 27 Oct 2025 03:00:44 +0000
Manifest this update: Mon 27 Oct 2025 03:00:44 +0000
Manifest next update: Tue 28 Oct 2025 03:00:44 +0000
Files and hashes: 1: MhvE3qmmLRT0N7DSbTLw9Csy23Q.roa (hash: JVGSBwpVFJHRhnHW5L6AwZ0tkeTLczM6lU9i030j0HQ=)
2: TCFvZlYK4WunWU9GrwYPNR4OtJ4.crl (hash: JaQuc8EY0QZNsil6hMDMGrE3CTjIMy2fwGvFyAQsDPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 03:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:9c:6b:c9:8f:cd:2f:57:e2:94:3e:0b:11:c5:7d:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c216f66560ae16ba7594f46af060f351e0eb49e
Validity
Not Before: Oct 27 03:00:44 2025 GMT
Not After : Oct 28 03:00:44 2025 GMT
Subject: CN=a39ff502b35e9bbfd4c681ae2a1df69ca3a9b7d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:91:e0:a2:f7:9c:34:88:af:7e:0a:7c:8f:c2:
39:ad:10:95:9e:7c:6c:51:a7:31:21:6d:4c:23:eb:
b1:d3:f6:54:0c:cf:37:49:ab:1d:72:d7:cb:77:0b:
53:40:cb:4c:57:96:73:fa:c9:66:fd:f5:ca:8e:b2:
1c:0f:7d:da:ca:b9:41:cb:97:cb:66:3e:b1:2d:d1:
07:0e:5f:6a:49:cd:a7:18:68:a5:4f:88:fd:e6:b1:
b2:a9:66:08:d3:3d:f0:2d:b6:c5:bc:23:18:a8:99:
a4:47:1b:de:5a:9e:e1:f7:87:c8:ce:cd:ae:d9:01:
bd:3a:f5:6e:17:d2:60:d7:5b:74:96:b0:46:bf:43:
fc:13:ce:c8:7a:f6:ae:c0:96:10:4b:d7:76:b5:ef:
41:c6:22:58:33:3f:48:d6:50:ea:c1:75:7b:c1:8e:
d5:c8:69:21:0c:94:3c:90:62:8f:47:0b:61:a1:3a:
69:e8:16:b0:cf:c4:9a:d4:39:66:b8:90:6f:21:27:
8d:11:8b:17:06:47:16:31:ea:43:5c:1f:c2:07:55:
6c:e0:26:33:f0:c0:2d:f1:56:bb:be:3c:9d:1d:01:
58:9b:79:cf:e6:d9:50:08:ae:8b:d1:2c:94:8a:e5:
87:c8:6a:db:31:cf:80:61:35:12:85:22:34:b8:70:
ff:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:9F:F5:02:B3:5E:9B:BF:D4:C6:81:AE:2A:1D:F6:9C:A3:A9:B7:D6
X509v3 Authority Key Identifier:
keyid:4C:21:6F:66:56:0A:E1:6B:A7:59:4F:46:AF:06:0F:35:1E:0E:B4:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:c3:5e:01:3c:93:0c:a6:b9:f3:1f:73:9a:6d:52:7c:5a:9f:
26:f7:a5:61:d9:8a:5f:f4:ed:a2:de:e1:a4:bc:86:80:62:67:
c4:a4:40:84:d2:41:5f:c5:53:fb:39:00:eb:49:cc:ce:05:c4:
c4:94:de:5d:d6:b9:04:84:bf:b6:8e:95:f8:4f:1e:12:e9:63:
b1:ff:f7:57:c4:86:2d:d5:42:e3:e3:39:8b:1d:9f:c8:d1:8b:
2c:cf:ec:5c:5d:19:18:f0:69:5e:4c:a1:34:bb:6f:4f:6e:a9:
a1:d9:7d:36:19:77:60:93:f6:bd:94:7d:33:4a:12:c3:99:6e:
11:c8:d1:41:0d:7b:02:83:e5:30:36:c5:a3:f0:88:fa:81:f3:
51:7a:4f:bf:93:d3:0c:9f:73:3b:71:6c:ad:a3:6e:c3:03:b9:
f1:ad:23:3d:95:77:4f:42:99:53:f8:3a:39:fd:fc:21:cd:32:
25:c4:31:a1:ca:69:ec:4c:31:9d:cc:1d:01:07:19:96:44:37:
7c:d3:a7:c6:ab:f5:0b:11:fa:36:91:82:d7:99:c1:35:50:d0:
39:e9:0c:eb:c9:09:3d:81:3e:cf:84:80:6b:00:0c:88:9f:a6:
42:0d:60:04:de:27:e8:b0:5f:59:76:fa:ff:36:e8:85:9d:e8:
3a:97:99:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:27:32 2025 by rpki-client