Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: uZrY4KwybJgpZe7SqepahaeD8dWRSzCjE/zOhaYYTBA=
Subject key identifier: 61:3D:0E:C2:59:00:09:A9:EE:6F:74:B4:C3:0A:95:D3:5E:00:EA:5F
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 019A270AE91DEDE41204541ECF5EDD770042
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 16F6
Signing time: Mon 27 Oct 2025 19:00:17 +0000
Manifest this update: Mon 27 Oct 2025 19:00:17 +0000
Manifest next update: Tue 28 Oct 2025 19:00:17 +0000
Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: tIetDyjAaan0vCewlE6PsDx1rDfLT5vMSrfDTCRXshM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:27:0a:e9:1d:ed:e4:12:04:54:1e:cf:5e:dd:77:00:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Oct 27 19:00:17 2025 GMT
Not After : Oct 28 19:00:17 2025 GMT
Subject: CN=613d0ec2590009a9ee6f74b4c30a95d35e00ea5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:58:01:b0:1c:20:5e:2e:5f:79:4b:3b:67:84:
ef:15:a6:a2:05:81:a9:5b:92:4c:0c:52:f9:93:27:
be:7d:f6:4f:09:79:b1:e4:46:63:ab:0a:73:87:c7:
d9:2f:76:db:ad:94:b7:e3:47:96:5a:df:a1:97:93:
2e:85:b3:59:b8:ca:7f:ff:95:cb:81:a3:13:be:d0:
a7:01:fa:40:e4:cd:b6:85:07:e9:79:50:ec:6c:2e:
85:2c:f5:b7:d5:f1:a7:1a:37:30:33:2a:7e:a4:32:
40:c6:92:37:b4:12:19:38:3b:dd:0a:c2:20:97:e9:
f3:ea:5c:58:78:19:61:60:34:3f:0d:74:7b:ff:ce:
1c:16:a1:d0:ad:f2:4b:30:d6:ba:4f:1c:43:88:bb:
cc:e9:de:18:3a:fb:7d:55:29:f4:64:68:81:59:15:
50:d4:48:ca:03:1a:82:6a:62:91:93:d2:f8:e4:3c:
b4:bd:88:b2:d8:d0:33:3a:25:3a:e8:46:4c:43:e2:
0a:45:eb:d3:7b:c8:e0:e7:22:ab:07:77:9f:64:61:
51:e4:d8:56:3d:fd:12:03:e6:ba:18:85:43:aa:41:
90:5d:30:00:73:15:0f:2a:9b:1b:7a:89:31:3a:64:
e8:0b:ab:b0:66:0d:ef:a4:56:46:a3:bb:c6:4f:4e:
cb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:3D:0E:C2:59:00:09:A9:EE:6F:74:B4:C3:0A:95:D3:5E:00:EA:5F
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:d5:02:b7:2c:73:94:5d:54:62:a5:4e:5a:d8:c1:6d:de:ec:
bc:53:24:50:3b:11:e8:0d:77:30:d0:20:d8:1a:9e:17:ed:0c:
11:14:08:0b:5b:f9:aa:dc:10:75:96:82:c2:e7:12:33:28:63:
8b:2f:25:d0:98:b5:a8:e2:01:c1:4f:bd:73:06:ce:ff:e7:aa:
12:5f:58:fa:b2:fa:f9:44:cb:60:9d:6c:d9:9d:28:31:a1:d6:
24:b8:81:6c:88:af:a9:70:fa:c2:5a:7e:10:60:44:8f:61:a2:
5e:a8:bd:e3:5b:f9:a7:ef:61:77:6e:6a:e8:05:c7:4b:bb:08:
34:b3:e5:25:a6:09:e9:47:ae:ec:45:31:18:a7:03:74:0f:10:
3c:1a:f9:f1:3e:8e:f6:f9:55:85:be:5d:e0:07:92:58:4e:7a:
28:11:20:96:00:e0:03:ef:99:83:55:a3:04:ed:47:f1:3c:ea:
e8:5e:11:24:e2:bc:28:8c:58:a6:ab:36:b6:86:28:87:c7:ab:
7a:61:b8:1f:c1:b8:77:d6:de:f2:2b:67:bf:93:fb:cd:78:d8:
e9:53:6c:13:0c:a9:e8:14:c0:c3:fb:79:0e:35:33:24:5c:42:
c2:25:76:8a:0f:92:4c:53:04:8a:aa:b6:c8:60:16:1b:b5:48:
b5:33:57:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 00:36:02 2025 by rpki-client