Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
File: TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft (raw, json)
Hash identifier: xyYtJnF1eZ5chxeDWFBya0JsoBa4qfamBCvHG80Jy7A=
Subject key identifier: 5B:F6:37:A4:71:23:2A:2E:0E:0D:70:BA:BB:60:79:D3:CB:93:BC:72
Authority key identifier: 4C:21:6F:66:56:0A:E1:6B:A7:59:4F:46:AF:06:0F:35:1E:0E:B4:9E
Certificate issuer: /CN=4c216f66560ae16ba7594f46af060f351e0eb49e
Certificate serial: 01993424D18C67B9DB6070458D622D1EA9DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
Manifest number: 0CA5
Signing time: Wed 10 Sep 2025 15:00:52 +0000
Manifest this update: Wed 10 Sep 2025 15:00:52 +0000
Manifest next update: Thu 11 Sep 2025 15:00:52 +0000
Files and hashes: 1: MhvE3qmmLRT0N7DSbTLw9Csy23Q.roa (hash: JVGSBwpVFJHRhnHW5L6AwZ0tkeTLczM6lU9i030j0HQ=)
2: TCFvZlYK4WunWU9GrwYPNR4OtJ4.crl (hash: yUycc9PR+aZ0f9j+dnO7gXFeqJ+s5yav1eDfNhYMMZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:24:d1:8c:67:b9:db:60:70:45:8d:62:2d:1e:a9:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c216f66560ae16ba7594f46af060f351e0eb49e
Validity
Not Before: Sep 10 15:00:52 2025 GMT
Not After : Sep 11 15:00:52 2025 GMT
Subject: CN=5bf637a471232a2e0e0d70babb6079d3cb93bc72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d3:cf:53:31:95:eb:bb:69:e2:53:41:f6:3d:
55:32:93:34:ea:de:bd:c9:e2:0f:de:93:02:d6:a5:
b4:6d:22:6d:6f:4f:69:f1:58:13:80:bd:25:e5:3f:
08:ad:1d:3a:dc:0c:0d:f2:87:89:60:6a:80:7b:5d:
53:50:46:e1:c8:7c:7f:d8:6d:04:b3:af:c0:32:45:
8b:6c:06:14:16:fb:d8:a1:2d:7d:86:f1:76:8f:3c:
9f:c2:6a:d4:c8:7f:33:91:c8:b3:c5:17:b1:9d:1a:
20:91:09:06:a6:22:41:63:ec:70:6e:9b:71:5b:a8:
dc:08:bf:47:90:d5:30:17:cd:cd:c5:84:be:31:54:
2c:66:eb:1e:f7:fa:3a:e0:1e:ee:0c:44:2c:74:4f:
71:36:3a:b6:7a:59:97:40:71:8b:d4:ed:b5:a7:62:
7f:69:95:7c:25:05:7f:8e:e1:80:15:cd:f7:bb:7d:
4f:88:8f:22:33:03:cf:da:4a:20:af:dc:68:14:42:
ea:29:45:44:df:98:3e:94:a8:13:0f:04:9a:32:76:
eb:dd:dd:bf:ba:47:2c:d2:1c:25:5f:f4:60:e3:92:
02:47:49:b7:cc:e5:83:20:34:83:76:99:58:18:ad:
94:2b:31:84:33:2e:cb:dc:a3:19:41:60:c9:82:00:
67:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:F6:37:A4:71:23:2A:2E:0E:0D:70:BA:BB:60:79:D3:CB:93:BC:72
X509v3 Authority Key Identifier:
keyid:4C:21:6F:66:56:0A:E1:6B:A7:59:4F:46:AF:06:0F:35:1E:0E:B4:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:15:23:f2:9e:61:c9:2f:e5:1e:69:b4:a0:ea:36:10:7b:72:
f0:d0:30:73:b3:28:b5:48:22:d1:61:ae:e5:61:7d:84:ce:ec:
2c:a5:29:38:e1:75:6e:d9:ed:77:74:e3:ba:f8:98:34:f2:f1:
b4:23:84:91:a0:7b:13:6d:eb:a1:3e:24:22:0e:0d:a3:aa:24:
09:c2:97:b4:7c:73:80:93:c5:73:4b:a6:ff:4e:13:eb:ae:1e:
3f:54:37:42:bf:82:f6:e8:2e:50:8e:51:b3:88:3b:29:2b:77:
fc:5f:a2:47:29:cb:68:3d:63:de:17:6b:77:4d:ec:28:e1:15:
74:f5:9c:82:e9:c8:26:3c:98:8d:07:92:fc:0f:68:3b:16:ff:
c7:3e:21:f9:d0:1d:c2:6c:fe:69:a3:2f:13:fb:d9:28:ab:f7:
1c:a6:dc:0e:d7:35:21:a8:d1:bd:33:cb:0b:ea:2a:47:cb:56:
76:ff:69:88:9c:d0:80:25:aa:5c:f5:f7:32:56:0e:14:f8:ee:
60:ac:d2:bb:a5:b4:da:8d:a1:ab:f7:0b:0b:9a:82:b3:e3:78:
e4:a1:33:c4:8d:b9:64:a2:d5:d0:1e:b2:c4:f2:b2:36:c0:c4:
66:fe:ab:4b:61:89:c1:27:e6:dd:83:b4:9f:80:19:52:88:e6:
cc:2c:93:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk0JNGMZ7nbYHBFjWItHqnbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjMjE2ZjY2NTYwYWUxNmJhNzU5NGY0NmFmMDYwZjM1MWUw
ZWI0OWUwHhcNMjUwOTEwMTUwMDUyWhcNMjUwOTExMTUwMDUyWjAzMTEwLwYDVQQD
Eyg1YmY2MzdhNDcxMjMyYTJlMGUwZDcwYmFiYjYwNzlkM2NiOTNiYzcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3tPPUzGV67tp4lNB9j1VMpM06t69
yeIP3pMC1qW0bSJtb09p8VgTgL0l5T8IrR063AwN8oeJYGqAe11TUEbhyHx/2G0E
s6/AMkWLbAYUFvvYoS19hvF2jzyfwmrUyH8zkcizxRexnRogkQkGpiJBY+xwbptx
W6jcCL9HkNUwF83NxYS+MVQsZuse9/o64B7uDEQsdE9xNjq2elmXQHGL1O21p2J/
aZV8JQV/juGAFc33u31PiI8iMwPP2kogr9xoFELqKUVE35g+lKgTDwSaMnbr3d2/
ukcs0hwlX/Rg45ICR0m3zOWDIDSDdplYGK2UKzGEMy7L3KMZQWDJggBnOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFv2N6RxIyouDg1wurtgedPLk7xyMB8GA1UdIwQY
MBaAFEwhb2ZWCuFrp1lPRq8GDzUeDrSeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVENGdlpsWUs0V3VuV1U5R3J3WVBOUjRPdEo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi82NTY0NmYtYmVhNC00ZjkzLTk2YmUt
NDhmZWEzNDVmYTEzLzEvVENGdlpsWUs0V3VuV1U5R3J3WVBOUjRPdEo0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi82NTY0NmYtYmVhNC00ZjkzLTk2YmUtNDhmZWEzNDVmYTEz
LzEvVENGdlpsWUs0V3VuV1U5R3J3WVBOUjRPdEo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJBUj8p5h
yS/lHmm0oOo2EHty8NAwc7MotUgi0WGu5WF9hM7sLKUpOOF1btntd3TjuviYNPLx
tCOEkaB7E23roT4kIg4No6okCcKXtHxzgJPFc0um/04T664eP1Q3Qr+C9uguUI5R
s4g7KSt3/F+iRynLaD1j3hdrd03sKOEVdPWcgunIJjyYjQeS/A9oOxb/xz4h+dAd
wmz+aaMvE/vZKKv3HKbcDtc1IajRvTPLC+oqR8tWdv9piJzQgCWqXPX3MlYOFPju
YKzSu6W02o2hq/cLC5qCs+N45KEzxI25ZKLV0B6yxPKyNsDEZv6rS2GJwSfm3YO0
n4AZUojmzCyTYA==
-----END CERTIFICATE-----
Generated at Wed Sep 10 20:54:48 2025 by rpki-client