Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
File: TNkIkaeTL3NWqAMznaDM32OtLTU.mft (raw, json)
Hash identifier: tmO/wffYQh7pvwp4Nao/Q/V1jBMPVckugWWnv+WqUI4=
Subject key identifier: D8:A7:53:DD:D1:89:CC:35:88:51:F5:1F:D7:E3:4B:C0:4E:3C:C6:1C
Authority key identifier: 4C:D9:08:91:A7:93:2F:73:56:A8:03:33:9D:A0:CC:DF:63:AD:2D:35
Certificate issuer: /CN=4cd90891a7932f7356a803339da0ccdf63ad2d35
Certificate serial: 019A2176D2204B42A1CFDB56170F07394058
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
Manifest number: 01E0
Signing time: Sun 26 Oct 2025 17:00:26 +0000
Manifest this update: Sun 26 Oct 2025 17:00:26 +0000
Manifest next update: Mon 27 Oct 2025 17:00:26 +0000
Files and hashes: 1: GPp0CA4dJEmXPt3FvKOuB6Y1Ajo.roa (hash: /WVZb52tGGnvS1Lpmu++5VCxojp2nMgaocCDFVDfPQY=)
2: TNkIkaeTL3NWqAMznaDM32OtLTU.crl (hash: 3jZjN3YXRUAoxilFX85Y47/XcK5atDVSNzOwEL902IY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:76:d2:20:4b:42:a1:cf:db:56:17:0f:07:39:40:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cd90891a7932f7356a803339da0ccdf63ad2d35
Validity
Not Before: Oct 26 17:00:26 2025 GMT
Not After : Oct 27 17:00:26 2025 GMT
Subject: CN=d8a753ddd189cc358851f51fd7e34bc04e3cc61c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3b:f7:fc:cd:89:a2:9d:f2:83:c3:9c:61:73:
e4:20:83:15:83:2c:c5:f4:29:7d:2c:14:07:b2:b7:
ec:a1:40:54:c0:5a:b6:78:51:a0:0b:0e:c1:c4:29:
ab:da:c0:7c:4d:6f:d9:7c:5e:80:73:ae:6e:ae:da:
8b:12:1d:47:dc:fa:8a:2f:d0:74:f7:dd:c3:0e:5e:
74:f2:8b:08:2e:13:d9:c2:f0:ee:6b:e8:32:fd:17:
a0:c9:fc:df:36:5c:95:3d:7e:d7:fb:40:90:fd:0f:
97:be:36:8f:73:ae:d7:65:65:d6:89:0d:e1:9a:81:
29:60:d9:25:84:58:78:45:b3:68:76:42:64:6b:0d:
4a:3a:c7:5d:be:3d:e6:cb:dd:3e:d2:b6:a4:7d:d6:
a1:e6:fa:fa:2f:90:de:fe:66:a9:fb:10:33:2b:ed:
e0:fd:29:84:34:33:74:c1:9e:e2:c5:c5:f5:f0:d7:
b2:32:be:8f:b4:07:72:68:07:b0:6b:50:a8:79:5c:
5c:ed:0e:25:44:84:5d:15:6a:7a:b6:74:6c:cc:c8:
1c:3a:f8:26:c8:7f:93:b1:f8:10:67:30:35:d7:d4:
fc:30:25:61:90:0b:41:b8:00:fc:b9:07:37:31:ab:
86:9b:1b:66:2f:ad:e5:fd:58:23:b9:85:82:3e:83:
a2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A7:53:DD:D1:89:CC:35:88:51:F5:1F:D7:E3:4B:C0:4E:3C:C6:1C
X509v3 Authority Key Identifier:
keyid:4C:D9:08:91:A7:93:2F:73:56:A8:03:33:9D:A0:CC:DF:63:AD:2D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:53:50:58:db:3c:8e:52:fc:9d:1d:95:73:69:8e:ae:38:2d:
90:79:d3:2d:6b:c6:91:da:02:87:cf:ef:c8:5d:86:bd:2d:ae:
ad:24:03:2b:02:46:b1:50:26:4e:39:06:f6:9c:2d:ac:6b:b0:
9c:b9:3e:ab:59:48:d7:97:04:90:ae:4b:3b:95:0d:99:b0:5e:
19:10:4e:ef:a3:06:45:8f:e8:7a:3e:c2:88:c3:27:0a:c7:8e:
33:8f:c2:fd:83:c8:0d:fc:8c:13:a6:36:ae:0c:8d:db:fa:e1:
b6:d8:03:d2:79:60:b4:10:c9:9a:4b:de:b3:d8:b0:73:f5:af:
7c:f2:73:87:1f:db:7a:5b:ef:18:71:9d:8f:f6:e6:ce:14:4d:
2e:83:00:6f:25:5c:7a:53:a2:d9:89:21:7e:73:ed:c7:4c:9c:
3e:fb:30:eb:cf:0f:6f:2e:85:b3:e5:e9:18:1c:88:40:3e:e1:
d5:69:1f:f5:d3:91:4a:3e:79:57:8e:62:0f:e9:2c:7a:c8:69:
70:2c:39:89:89:ad:ea:3f:50:29:be:90:f2:2e:a1:b5:66:5a:
d7:e4:9d:55:de:20:e7:8f:68:9f:03:e8:35:99:0d:c2:3b:7a:
01:77:2d:76:d5:42:70:97:4e:8e:21:81:d8:46:15:a6:35:d2:
2c:13:da:b8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZohdtIgS0Khz9tWFw8HOUBYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjZDkwODkxYTc5MzJmNzM1NmE4MDMzMzlkYTBjY2RmNjNh
ZDJkMzUwHhcNMjUxMDI2MTcwMDI2WhcNMjUxMDI3MTcwMDI2WjAzMTEwLwYDVQQD
EyhkOGE3NTNkZGQxODljYzM1ODg1MWY1MWZkN2UzNGJjMDRlM2NjNjFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuzv3/M2Jop3yg8OcYXPkIIMVgyzF
9Cl9LBQHsrfsoUBUwFq2eFGgCw7BxCmr2sB8TW/ZfF6Ac65urtqLEh1H3PqKL9B0
993DDl508osILhPZwvDua+gy/RegyfzfNlyVPX7X+0CQ/Q+XvjaPc67XZWXWiQ3h
moEpYNklhFh4RbNodkJkaw1KOsddvj3my90+0rakfdah5vr6L5De/map+xAzK+3g
/SmENDN0wZ7ixcX18NeyMr6PtAdyaAewa1CoeVxc7Q4lRIRdFWp6tnRszMgcOvgm
yH+TsfgQZzA119T8MCVhkAtBuAD8uQc3MauGmxtmL63l/VgjuYWCPoOiKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNinU93Ricw1iFH1H9fjS8BOPMYcMB8GA1UdIwQY
MBaAFEzZCJGnky9zVqgDM52gzN9jrS01MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVE5rSWthZVRMM05XcUFNem5hRE0zMk90TFRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS82YTkzNzgtMmZhNy00ODJkLThjN2Mt
NjljYTRjYjY1Zjk3LzEvVE5rSWthZVRMM05XcUFNem5hRE0zMk90TFRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS82YTkzNzgtMmZhNy00ODJkLThjN2MtNjljYTRjYjY1Zjk3
LzEvVE5rSWthZVRMM05XcUFNem5hRE0zMk90TFRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS1NQWNs8
jlL8nR2Vc2mOrjgtkHnTLWvGkdoCh8/vyF2GvS2urSQDKwJGsVAmTjkG9pwtrGuw
nLk+q1lI15cEkK5LO5UNmbBeGRBO76MGRY/oej7CiMMnCseOM4/C/YPIDfyME6Y2
rgyN2/rhttgD0nlgtBDJmkves9iwc/WvfPJzhx/belvvGHGdj/bmzhRNLoMAbyVc
elOi2YkhfnPtx0ycPvsw688Pby6Fs+XpGByIQD7h1Wkf9dORSj55V45iD+kseshp
cCw5iYmt6j9QKb6Q8i6htWZa1+SdVd4g549onwPoNZkNwjt6AXctdtVCcJdOjiGB
2EYVpjXSLBPauA==
-----END CERTIFICATE-----
Generated at Mon Oct 27 01:48:16 2025 by rpki-client