Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
File: TNkIkaeTL3NWqAMznaDM32OtLTU.mft (raw, json)
Hash identifier: wkTrX3zVL1TcxhqCu4u2wkAlHTqFLynJ8EB6Auqx3EM=
Subject key identifier: C0:61:FE:30:2F:02:72:4F:0E:20:90:3F:20:19:3E:10:43:E4:05:D5
Authority key identifier: 4C:D9:08:91:A7:93:2F:73:56:A8:03:33:9D:A0:CC:DF:63:AD:2D:35
Certificate issuer: /CN=4cd90891a7932f7356a803339da0ccdf63ad2d35
Certificate serial: 019931FF192A609500D63EEA2DE573995105
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
Manifest number: 0164
Signing time: Wed 10 Sep 2025 05:00:25 +0000
Manifest this update: Wed 10 Sep 2025 05:00:25 +0000
Manifest next update: Thu 11 Sep 2025 05:00:25 +0000
Files and hashes: 1: GPp0CA4dJEmXPt3FvKOuB6Y1Ajo.roa (hash: /WVZb52tGGnvS1Lpmu++5VCxojp2nMgaocCDFVDfPQY=)
2: TNkIkaeTL3NWqAMznaDM32OtLTU.crl (hash: 037AKhkDePKN+gdICYIMzeVyH4ouKkXPfps2Ti6PfLI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:ff:19:2a:60:95:00:d6:3e:ea:2d:e5:73:99:51:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cd90891a7932f7356a803339da0ccdf63ad2d35
Validity
Not Before: Sep 10 05:00:25 2025 GMT
Not After : Sep 11 05:00:25 2025 GMT
Subject: CN=c061fe302f02724f0e20903f20193e1043e405d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3d:f4:c9:ce:59:40:24:af:ec:a2:bf:2a:c6:
76:88:4d:17:3a:f1:58:53:e5:74:59:8c:f2:57:a7:
73:bb:01:c7:42:15:dd:47:c9:89:0d:b0:62:33:84:
d8:26:b8:55:88:f0:fb:46:48:98:ad:ae:6d:f8:8b:
f8:0f:d3:00:73:12:34:5b:f4:4b:c8:a6:c4:cd:bd:
42:3a:dc:c6:03:be:03:07:b4:5f:07:b1:e0:d1:0c:
16:d6:e2:fb:a8:4f:af:6c:e8:6e:72:ff:7c:40:58:
fe:63:26:b9:42:f3:04:2e:0d:2c:72:f2:d5:4c:b2:
52:ac:b1:9d:b1:01:12:9d:7a:8c:32:d6:88:56:68:
b7:9e:02:17:87:a2:1d:ea:8a:b5:92:49:cd:ec:46:
8c:24:17:0c:fa:46:19:fe:80:82:a4:30:ce:e4:23:
1d:f3:37:cf:03:13:2c:3e:97:71:d9:4a:e7:16:39:
23:ac:11:25:0a:3a:df:e0:5a:1e:4e:63:44:0c:47:
f0:c7:21:e5:42:80:97:e3:87:5e:ee:70:53:ce:89:
bf:e1:32:36:b5:b6:e7:29:3c:16:1f:d2:9d:0d:75:
a7:19:fe:66:d4:98:c9:80:f9:08:7e:6b:71:0f:77:
72:3c:f7:c0:d2:44:9e:21:e1:4a:cc:fc:86:ed:f1:
07:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:61:FE:30:2F:02:72:4F:0E:20:90:3F:20:19:3E:10:43:E4:05:D5
X509v3 Authority Key Identifier:
keyid:4C:D9:08:91:A7:93:2F:73:56:A8:03:33:9D:A0:CC:DF:63:AD:2D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:e2:f0:5b:5b:1a:5a:6e:92:3e:4e:75:f5:3f:2f:a3:31:a3:
94:fd:59:6b:8c:03:9b:fa:24:cd:4c:f1:23:ce:40:1b:37:ee:
6a:74:0b:ba:49:08:5a:2b:f4:09:2a:81:3d:72:12:20:02:1f:
8f:50:9d:65:5b:11:63:48:52:95:0a:de:09:e4:2b:e4:0a:71:
46:09:ed:c5:bd:3a:9d:e0:ca:a6:c5:9d:3d:d8:e2:23:32:6f:
e9:89:27:8b:75:68:fa:de:ce:5d:4b:a4:83:3d:36:7a:70:87:
e0:9e:27:71:8c:62:d2:6e:85:47:10:b8:72:2a:fe:5b:7d:10:
77:24:6b:a8:ae:af:3d:d6:3b:09:c3:e2:60:63:05:15:12:f0:
dd:40:92:3b:a3:54:b6:f2:53:c9:4d:01:c1:15:d2:4b:40:0e:
f7:32:9f:ba:09:36:ba:21:56:01:71:ec:e7:0e:44:ca:13:ec:
32:12:2d:c5:9b:62:96:46:7e:80:4a:93:36:f5:cc:18:ee:78:
c6:49:d9:38:c8:08:c4:61:b8:bf:39:f0:43:3f:f5:70:fd:3c:
18:1a:9d:bc:69:e6:ea:1c:0a:20:2c:74:bb:d1:89:28:de:55:
3f:88:1e:f1:17:a0:a1:17:1f:c4:d5:b5:83:9b:cd:20:85:bc:
3e:96:22:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 12:42:10 2025 by rpki-client