Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: exMCVGIyf52+uVsHYyCxHEXCaB5Kea6SWWGcGR2ejrY=
Subject key identifier: 9C:15:D1:08:5C:23:2A:F5:AC:4C:8B:CE:07:7C:0F:FE:93:08:63:7C
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 01993794ECE4B9039F268FF4D4CC9087FCD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 167A
Signing time: Thu 11 Sep 2025 07:02:10 +0000
Manifest this update: Thu 11 Sep 2025 07:02:10 +0000
Manifest next update: Fri 12 Sep 2025 07:02:10 +0000
Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: X3hp8Lgz6kw1kv6gL72c+wZLBTeRZB0K6OkAqW/SXPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 07:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:37:94:ec:e4:b9:03:9f:26:8f:f4:d4:cc:90:87:fc:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Sep 11 07:02:10 2025 GMT
Not After : Sep 12 07:02:10 2025 GMT
Subject: CN=9c15d1085c232af5ac4c8bce077c0ffe9308637c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1c:84:a8:fb:11:34:64:b4:bb:5e:d4:d9:45:
4a:2a:7d:7b:da:bc:f9:31:9e:c3:e9:f1:1f:0c:23:
15:73:8a:eb:99:5c:75:a2:8b:2d:d0:87:88:ed:1d:
62:d4:c1:87:75:10:96:80:dd:47:09:0b:69:05:ec:
b9:43:90:8b:d9:6f:7b:f9:94:16:c9:e2:7b:cd:79:
55:c4:b2:af:0b:94:f7:fb:1d:ee:02:d8:7e:3a:35:
01:23:6e:0a:9d:7f:f0:6b:1a:1f:f6:c0:06:15:ac:
bf:61:72:b0:d2:9d:c2:0f:01:9a:53:e8:1d:b3:4e:
81:6b:33:53:9a:46:c6:66:ee:dc:aa:1d:ea:8e:2a:
98:61:0b:94:4d:7b:5a:c8:4a:60:bc:ec:21:ef:b1:
07:26:d9:e7:63:c9:59:c2:2a:88:fd:32:a1:f3:eb:
4a:69:e8:1b:78:35:ff:62:c5:cc:8e:c4:cb:3e:fd:
05:83:12:4b:b4:05:8a:e6:0c:13:89:71:80:4e:16:
d4:6b:d6:b1:5e:ae:aa:a8:86:ea:7a:42:03:6f:27:
45:85:b9:88:f0:7d:78:fa:20:cc:5f:dd:a3:19:b8:
ea:61:7e:fd:d0:8c:16:13:06:5f:f6:3a:31:c4:b9:
60:5b:d8:b2:87:4c:b5:76:ab:9c:0e:63:67:4f:f5:
84:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:15:D1:08:5C:23:2A:F5:AC:4C:8B:CE:07:7C:0F:FE:93:08:63:7C
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:c6:51:12:b5:b9:98:3b:02:55:2c:50:a9:01:62:99:71:af:
a0:ca:f5:e0:18:dc:be:bf:b9:f6:2c:ae:88:10:0f:90:3a:91:
b6:5e:31:74:f5:41:f4:1d:22:60:ff:4c:52:30:4c:39:73:d0:
4a:8b:fc:dd:50:7d:c4:5e:af:50:35:fc:7a:65:8c:61:72:74:
45:d5:f3:62:74:7b:5a:f3:22:1d:92:a5:df:7c:99:8f:a2:9c:
a9:0d:71:ed:e8:f5:0c:24:d9:d4:bd:87:00:09:25:1c:5b:07:
ed:27:50:fa:7a:5a:af:7b:c3:c4:83:f2:58:58:34:d4:5a:76:
9e:42:0b:50:dc:0d:17:4e:ca:5c:41:bd:0a:3b:1f:d4:94:6a:
8c:f1:32:88:70:a3:67:96:e2:51:5f:f0:be:48:cc:ee:48:71:
7f:8d:fc:a1:49:b2:2a:62:31:16:c0:b4:bd:db:9e:ad:d6:0e:
d2:f1:52:cb:8c:c5:87:72:80:cf:be:f2:96:0e:77:b7:e3:9f:
e5:56:60:fc:1b:d3:82:21:1a:d2:2c:49:8b:50:4d:39:90:5d:
20:3e:b8:25:b9:5c:b8:e4:14:dc:35:37:4d:e0:f3:5a:03:6c:
b1:18:01:b4:0f:3e:3f:0a:05:13:06:c2:e8:f8:d6:3b:32:05:
93:de:5a:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 16:44:25 2025 by rpki-client