Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
File: TDfyfrSZezvvnygmajlpQFD-dPk.mft (raw, json)
Hash identifier: KAD2H4ZHEqXyi+3xlwVO5MS1jNn726qhxH2zoVadb/A=
Subject key identifier: A8:2C:F8:69:1D:FF:53:DB:A0:76:9D:CF:07:83:DA:36:56:CB:31:0F
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 019A20D255DC575E0BC238287505AEF476A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
Manifest number: 1755
Signing time: Sun 26 Oct 2025 14:00:46 +0000
Manifest this update: Sun 26 Oct 2025 14:00:46 +0000
Manifest next update: Mon 27 Oct 2025 14:00:46 +0000
Files and hashes: 1: O9nHfOl2QVEFkw8z5PZAG-bDmQE.roa (hash: CmUudjBRBoLhGNB6o4EaSfh+UkgJVlz+52jeWbtrV5A=)
2: SzyIBUJURbOXMTDJ4Z_haTgvNpI.roa (hash: wJIDwOiFxDwrE3GURrkhai8iWOYh1f3lI6qeGAaNPyc=)
3: TDfyfrSZezvvnygmajlpQFD-dPk.crl (hash: y9ySOcZCr6aH+bNR9ltBSuSuZnHg1iqGeEuCvk1/VrE=)
4: UVW-IEFCCq7ahpPdj9WY7Kn8QqE.roa (hash: MZl++GgZA3uWjf7S8QTsOZZtzVITuzAAAAPegKRXupI=)
5: VIrZrIPn5JgwIWuerakwG37U7jA.roa (hash: +9EBlzR1H7BphSJTPeOlUDa4YDh16MokR5NsBCSFTMs=)
6: dQ4y2x688XsG8rEL7o8Sp4uIl8M.roa (hash: LuvxH8ju8nmShoj6OHN3o8s0V6hBxEddqrv3+BFDAgQ=)
7: gQDaBeXH0szJXrJTEvqe4lIGCV4.roa (hash: fhlImZ1nrh4i7H6LIP2R5ZbAmjbxd5MHcou/l4C25qU=)
8: lPoIPYo1ITlq-R71JXKfxiC_US0.roa (hash: 1ODRbC1wRix1ieOTK6Ku3fYNq0UfGPEvF5Esjd3aqDM=)
9: luug-CwXmvS54qQ88cgMGt-f5zU.roa (hash: HAfj14rHhfvfAv/i1MqUIJYZwmFczeoc01ZA/poLVk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:20:d2:55:dc:57:5e:0b:c2:38:28:75:05:ae:f4:76:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Oct 26 14:00:46 2025 GMT
Not After : Oct 27 14:00:46 2025 GMT
Subject: CN=a82cf8691dff53dba0769dcf0783da3656cb310f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:23:08:50:28:e6:43:43:15:6c:3a:48:64:75:
c3:97:5f:32:0b:12:65:66:f6:14:8b:dc:7b:1c:6c:
4a:f7:cb:ea:26:e9:10:33:6b:ab:c2:7c:62:f3:89:
9a:f6:55:71:64:d4:63:22:ef:92:e0:e0:62:30:7b:
06:83:ab:60:51:2e:3b:83:f9:57:c7:44:57:91:a0:
f6:55:84:cd:af:c7:00:72:de:86:e2:22:1f:18:c1:
5a:ee:93:fe:0d:80:ef:e6:a6:ce:0d:35:bf:d6:f2:
49:c0:16:c1:34:6b:55:95:97:27:1f:3d:f4:ef:b1:
8b:6a:58:72:d5:f9:6d:42:1f:8e:9f:9d:68:62:1a:
0a:cd:d4:96:ad:45:75:30:b6:40:f3:9b:54:89:2d:
0b:2e:38:a4:85:a0:18:ef:b2:56:45:5b:e4:b6:ec:
db:32:22:ed:36:79:9d:ee:d7:e0:dc:4e:a6:85:b3:
aa:98:c9:76:3b:3e:1a:06:ce:dd:64:97:35:d6:21:
61:4d:72:55:e6:31:00:0b:eb:8b:89:3f:2c:dd:51:
6e:ef:e6:ff:38:7c:80:6e:01:b3:97:96:8a:05:a9:
37:90:ab:69:79:d2:2b:68:17:49:f1:79:2a:33:da:
e4:70:a2:f3:c3:f3:9d:9a:ad:f5:dc:0e:1d:a2:40:
b3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:2C:F8:69:1D:FF:53:DB:A0:76:9D:CF:07:83:DA:36:56:CB:31:0F
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:64:45:12:2c:89:bd:83:30:0f:8e:f0:5d:5d:9c:a7:4c:26:
1d:ea:72:09:06:f6:60:35:9e:6d:21:6c:af:ef:e9:9c:b9:59:
a9:01:e0:22:3f:0b:27:70:c8:a0:e8:69:ad:d6:01:30:64:2e:
62:fd:79:db:a8:ad:b3:72:b8:16:ec:b2:78:3c:b4:63:97:96:
e3:de:c1:fc:dd:63:f3:ab:8b:12:af:b9:14:15:62:3b:48:dd:
8b:33:1e:55:56:c5:11:29:77:59:ba:ec:1a:7e:d0:a0:8e:c8:
10:d3:c0:92:22:e9:8a:75:e8:11:5f:a3:85:0c:73:4d:ad:9c:
dd:37:25:b2:8c:fa:0f:3c:ef:ef:2b:74:bb:13:60:63:a0:35:
03:2c:fe:87:a4:8b:e6:15:d7:0b:68:31:25:c5:48:d6:46:ef:
fe:02:db:e0:cd:3f:b5:2f:1b:4d:e5:81:f2:8d:26:94:3c:d6:
1d:aa:89:8b:31:82:05:87:47:19:34:9f:2f:57:55:1b:c4:cf:
0c:8d:b3:63:e8:16:39:e0:6f:73:ee:c9:8d:cd:78:75:9e:00:
de:5c:9d:f0:47:43:12:31:5d:af:13:d9:ce:66:d2:55:82:3f:
39:59:19:70:a8:8c:b8:27:bc:68:53:06:46:bd:b4:33:b9:97:
5d:c2:19:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZog0lXcV14LwjgodQWu9HakMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjMzdmMjdlYjQ5OTdiM2JlZjlmMjgyNjZhMzk2OTQwNTBm
ZTc0ZjkwHhcNMjUxMDI2MTQwMDQ2WhcNMjUxMDI3MTQwMDQ2WjAzMTEwLwYDVQQD
EyhhODJjZjg2OTFkZmY1M2RiYTA3NjlkY2YwNzgzZGEzNjU2Y2IzMTBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyiMIUCjmQ0MVbDpIZHXDl18yCxJl
ZvYUi9x7HGxK98vqJukQM2urwnxi84ma9lVxZNRjIu+S4OBiMHsGg6tgUS47g/lX
x0RXkaD2VYTNr8cAct6G4iIfGMFa7pP+DYDv5qbODTW/1vJJwBbBNGtVlZcnHz30
77GLalhy1fltQh+On51oYhoKzdSWrUV1MLZA85tUiS0LLjikhaAY77JWRVvktuzb
MiLtNnmd7tfg3E6mhbOqmMl2Oz4aBs7dZJc11iFhTXJV5jEAC+uLiT8s3VFu7+b/
OHyAbgGzl5aKBak3kKtpedIraBdJ8XkqM9rkcKLzw/Odmq313A4dokCzQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKgs+Gkd/1PboHadzweD2jZWyzEPMB8GA1UdIwQY
MBaAFEw38n60mXs7758oJmo5aUBQ/nT5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wOWNlYTAtZWYyYi00ZjIwLWExOWEt
ZWI1YTYyN2U3NmEzLzEvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8wOWNlYTAtZWYyYi00ZjIwLWExOWEtZWI1YTYyN2U3NmEz
LzEvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR2RFEiyJ
vYMwD47wXV2cp0wmHepyCQb2YDWebSFsr+/pnLlZqQHgIj8LJ3DIoOhprdYBMGQu
Yv1526its3K4FuyyeDy0Y5eW497B/N1j86uLEq+5FBViO0jdizMeVVbFESl3Wbrs
Gn7QoI7IENPAkiLpinXoEV+jhQxzTa2c3Tclsoz6Dzzv7yt0uxNgY6A1Ayz+h6SL
5hXXC2gxJcVI1kbv/gLb4M0/tS8bTeWB8o0mlDzWHaqJizGCBYdHGTSfL1dVG8TP
DI2zY+gWOeBvc+7Jjc14dZ4A3lyd8EdDEjFdrxPZzmbSVYI/OVkZcKiMuCe8aFMG
Rr20M7mXXcIZZw==
-----END CERTIFICATE-----
Generated at Sun Oct 26 20:44:10 2025 by rpki-client