Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
File: TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft (raw, json)
Hash identifier: A5cOBS30OkuVsPjHry4WTAYpBrWaIBfbLuAHEyXkgvw=
Subject key identifier: 74:2E:F6:7C:52:EB:E3:9D:FC:56:09:C9:18:B2:08:FE:84:9B:F8:CD
Authority key identifier: 4E:91:16:2B:B0:D9:B5:51:BF:5F:7B:1C:15:EE:31:5A:51:A6:77:F4
Certificate issuer: /CN=4e91162bb0d9b551bf5f7b1c15ee315a51a677f4
Certificate serial: 019A7293B61DBD57196EC5225A6A42960ABE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
Manifest number: 0C92
Signing time: Tue 11 Nov 2025 11:01:14 +0000
Manifest this update: Tue 11 Nov 2025 11:01:14 +0000
Manifest next update: Wed 12 Nov 2025 11:01:14 +0000
Files and hashes: 1: TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl (hash: Zoy64CbDtXaeOa6I3oyRJA66f/5M7DjbrLuh+oUROLE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:b6:1d:bd:57:19:6e:c5:22:5a:6a:42:96:0a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e91162bb0d9b551bf5f7b1c15ee315a51a677f4
Validity
Not Before: Nov 11 11:01:14 2025 GMT
Not After : Nov 12 11:01:14 2025 GMT
Subject: CN=742ef67c52ebe39dfc5609c918b208fe849bf8cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9e:cd:61:85:b2:8a:7b:2c:cf:d5:93:0f:ac:
db:68:c4:87:d4:37:8f:51:ce:63:cc:c9:51:d2:50:
17:88:2d:93:c3:f4:d5:ae:75:5c:cf:ad:6b:ca:9e:
d2:93:18:98:b9:f2:6f:14:b2:a5:35:de:b5:ad:df:
f5:92:ae:8e:ab:f3:17:b6:e5:b9:6a:53:a1:22:8b:
b4:2f:2a:9a:b8:11:c5:05:1e:35:3d:63:35:c9:66:
cc:0d:9d:c0:54:f7:0d:dd:60:95:c2:64:16:aa:2a:
4c:c9:de:7e:92:98:b3:51:36:6a:9f:98:68:0b:0e:
e9:e1:10:ff:ec:e5:8a:59:34:4e:13:65:5f:ae:e8:
36:d7:15:44:e2:38:5f:d2:89:12:93:38:a6:00:b3:
2f:09:86:c7:a8:3f:c7:32:da:56:10:5b:c7:59:c6:
60:b8:5c:8d:af:8b:d5:0a:a3:0e:0c:dc:20:e7:e1:
73:24:1e:43:c8:ff:89:41:68:b8:7c:47:20:e5:25:
1b:f2:cc:bd:a9:54:f0:3b:28:85:f3:17:62:cf:1d:
a1:91:8c:ae:9b:ba:55:12:88:65:16:ac:ad:f5:a6:
ee:41:fb:32:61:26:2b:29:29:ec:0d:2e:25:6d:98:
95:aa:de:89:d6:07:f8:21:65:ef:fa:03:93:96:8b:
e5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2E:F6:7C:52:EB:E3:9D:FC:56:09:C9:18:B2:08:FE:84:9B:F8:CD
X509v3 Authority Key Identifier:
keyid:4E:91:16:2B:B0:D9:B5:51:BF:5F:7B:1C:15:EE:31:5A:51:A6:77:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:9f:9e:e4:5a:73:fc:87:dc:ab:7a:c4:05:15:c9:7a:b7:76:
84:9b:36:7f:93:04:da:6b:df:24:3a:c5:55:fe:d3:f8:aa:c7:
79:56:fe:bc:a4:0d:48:01:b5:8b:7d:c9:17:1c:01:b6:9b:fb:
c3:6a:bf:5c:f7:f6:be:f0:c8:b5:63:21:b3:ae:e4:dc:3a:eb:
58:b1:7b:cf:12:d8:27:6e:1f:9f:84:02:0e:dd:0e:21:02:66:
17:1b:f7:26:f4:8f:4e:d7:be:ca:64:33:15:d7:b8:e7:6c:24:
7c:43:94:57:5d:8f:12:82:6a:af:91:4e:7c:b0:7a:b9:fb:1c:
1f:f6:e9:3e:dc:30:f8:bf:7a:b3:ff:24:0d:99:05:97:19:5a:
cb:94:28:94:c6:e3:77:10:c8:bc:eb:b5:31:7d:1c:7b:c1:b6:
5a:7a:ad:5e:13:1a:86:1c:7d:92:96:fb:de:64:1a:66:e7:b9:
e6:6d:62:79:cf:b6:27:8c:89:c2:f3:3a:99:5b:27:d2:ac:60:
7e:94:d0:ce:7f:b3:11:6b:f2:0c:f4:29:c6:98:29:4c:8a:76:
c9:4b:93:e1:99:d5:71:5a:bd:9d:66:dd:9a:49:76:e0:5b:bf:
26:5a:57:a8:74:cc:50:99:67:c9:84:b1:71:07:74:52:7f:a4:
dd:df:e5:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:42:03 2025 by rpki-client