Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
File: TyKDTEeXR7CovQphKfn-ZfgwJtA.mft (raw, json)
Hash identifier: g+8M8mtBmofM79JnewhnchSiLFrm0lVXoaG8OcQTi0Y=
Subject key identifier: A9:85:A3:D4:54:E7:F1:69:FE:B5:42:01:5E:52:67:CE:D6:75:74:0B
Authority key identifier: 4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
Certificate issuer: /CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Certificate serial: 01995F7D4AECECB87A8C7AEB3FE13FAA1EB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
Manifest number: 047C
Signing time: Fri 19 Sep 2025 01:01:10 +0000
Manifest this update: Fri 19 Sep 2025 01:01:10 +0000
Manifest next update: Sat 20 Sep 2025 01:01:10 +0000
Files and hashes: 1: 5_qRdcU_zBI67bUjjCeGmUT4bso.roa (hash: S33Bj4i6cQIjVG+I+Gmo76E+1aI2U06ldTXtc0u4sXQ=)
2: TyKDTEeXR7CovQphKfn-ZfgwJtA.crl (hash: t1hGEjRc/jaxIZM4Zmym8a+NYhUp88Dlqq+23NVXRSI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 01:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:5f:7d:4a:ec:ec:b8:7a:8c:7a:eb:3f:e1:3f:aa:1e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Validity
Not Before: Sep 19 01:01:10 2025 GMT
Not After : Sep 20 01:01:10 2025 GMT
Subject: CN=a985a3d454e7f169feb542015e5267ced675740b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2b:1a:79:e9:11:da:e8:f2:d6:ae:82:de:ed:
c7:4e:e6:f4:08:0b:6e:c1:91:98:0c:cd:8b:b7:63:
83:dd:0e:a7:59:79:77:ea:66:c1:4e:36:78:f0:2a:
2a:90:9d:17:1a:b5:2b:a2:cb:23:56:24:6f:54:2b:
2f:49:de:8f:e8:98:4a:7c:a8:7c:25:86:5b:2b:5c:
a0:b9:f6:89:4c:e5:fc:80:5f:9b:97:df:21:0f:53:
61:d1:e3:eb:91:e8:9e:a4:25:22:18:eb:b9:23:e8:
1b:38:4f:49:6d:be:91:78:de:23:08:be:a4:fd:f3:
80:d3:02:35:ff:f3:b8:8f:d4:48:18:32:6a:59:b6:
98:90:1b:26:77:5a:1d:19:78:34:b0:83:c5:71:a5:
f2:9f:a5:2c:e1:8e:b1:2b:15:25:f4:17:e5:89:3f:
1f:af:53:43:ed:fe:5c:e0:28:94:ee:01:ea:ee:18:
0a:23:b0:a0:fb:02:35:0c:c4:06:00:ee:3e:27:9a:
1e:4a:4b:0f:61:25:ee:a8:ff:78:30:d7:5b:91:8c:
4d:b3:92:d4:6c:02:4b:83:6d:d9:cb:30:17:ec:61:
11:04:f1:4b:af:6e:f4:b9:af:23:a9:08:d8:7f:1e:
1c:8d:fd:63:f1:b6:19:38:a4:4a:c2:33:76:90:00:
33:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:85:A3:D4:54:E7:F1:69:FE:B5:42:01:5E:52:67:CE:D6:75:74:0B
X509v3 Authority Key Identifier:
keyid:4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:b3:61:44:d0:b0:0b:51:a1:da:d2:89:fd:be:62:a7:ce:96:
70:f6:fe:ce:9c:3c:18:2b:5d:a6:d1:61:5b:a7:f3:a1:15:48:
4d:a0:dc:4c:69:7e:d8:1f:33:fd:8d:54:97:92:21:b5:46:ca:
63:9e:cc:48:85:a6:0d:d9:ff:81:f8:71:4b:2e:0e:9b:2b:30:
0c:5b:1a:98:38:6d:03:97:07:42:8f:50:42:6b:1b:94:23:8b:
0b:9d:5b:1f:32:fb:94:1a:d7:82:f8:4c:4a:20:d4:aa:27:00:
a9:2b:41:a7:cf:5a:aa:dd:d7:3a:39:11:8b:aa:c5:e4:92:fb:
ce:73:1d:4d:fe:c4:68:84:98:a5:a9:88:cb:0c:7c:11:b6:ff:
3a:94:8c:fc:70:32:f9:f2:c6:90:db:4b:cc:45:b2:fb:99:1e:
d1:4f:ef:9a:8e:ca:43:22:ab:c5:3c:7d:f8:67:07:a9:7a:19:
36:66:e1:e5:2f:96:aa:50:99:83:9f:4f:a3:54:49:5c:46:0d:
6e:ee:79:52:38:5a:51:ca:41:71:88:5c:d6:4e:17:e6:60:da:
2f:11:54:39:b2:6e:af:ef:2f:ad:e2:89:2c:5b:d1:fd:ca:5a:
cf:79:ea:8d:23:b9:cd:ee:d1:41:ae:85:43:8a:f5:53:c6:3e:
bc:13:f5:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 10:41:34 2025 by rpki-client