Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
File: TMC300XPrlNH086YtCQbkA5KnvM.mft (raw, json)
Hash identifier: 9pxs1O643xSdntAEnYgsdsZJrPgeDi1GQL/cVDlEp9g=
Subject key identifier: B0:F9:30:2B:FE:21:7B:C1:26:19:B3:77:23:F8:37:9C:71:19:3B:87
Authority key identifier: 4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
Certificate issuer: /CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Certificate serial: 01993500C7845F981264BFB9E59978BC07B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
Manifest number: 07EE
Signing time: Wed 10 Sep 2025 19:01:07 +0000
Manifest this update: Wed 10 Sep 2025 19:01:07 +0000
Manifest next update: Thu 11 Sep 2025 19:01:07 +0000
Files and hashes: 1: TMC300XPrlNH086YtCQbkA5KnvM.crl (hash: rKf/NDNRSqvlfz4RSn3h4Z3HYPle7YR6iwgQKxing30=)
2: Vh_JUxD0F48NbjyYRcDhXuGyEXI.roa (hash: RX3aXV1jt4pV7znP3Nr6a04cOEHqVMLgDW/kqRB9jNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 19:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:00:c7:84:5f:98:12:64:bf:b9:e5:99:78:bc:07:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Validity
Not Before: Sep 10 19:01:07 2025 GMT
Not After : Sep 11 19:01:07 2025 GMT
Subject: CN=b0f9302bfe217bc12619b37723f8379c71193b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:05:c0:75:a0:79:36:0a:3b:6f:88:fd:28:5b:
df:f4:b6:1b:e4:00:b8:58:a8:1d:61:db:8f:b8:c7:
ee:bf:cf:db:da:44:1b:a1:ee:80:ad:d5:58:58:24:
46:da:67:1c:3f:35:f7:ec:ed:e6:0d:ad:fe:68:6c:
c1:b3:90:93:17:bf:86:5d:a7:c6:bd:22:67:f1:49:
47:13:4e:d9:76:5c:2e:db:6a:a4:73:e7:c3:40:dd:
c0:9a:3a:32:fe:ed:19:cb:40:e7:31:bc:d3:73:d1:
f5:ab:27:3c:cd:56:2a:62:2f:87:63:3d:8f:5b:3e:
d0:d3:67:7f:83:81:c6:63:ab:83:6b:c5:f1:89:d0:
34:98:dd:08:9a:6b:44:82:eb:70:24:41:60:65:34:
b3:7b:5e:ab:66:ec:37:84:38:e9:40:5c:70:ec:51:
a1:f8:86:ad:59:f4:29:a3:97:c5:f2:53:e0:6c:28:
d5:ef:92:38:94:c4:cd:f6:55:73:51:9c:f4:6b:e2:
14:e5:f9:c7:d4:0a:4c:8d:f0:96:4e:74:1e:f3:93:
02:08:de:48:d7:a9:fc:ab:9c:e2:c7:b8:ff:66:f3:
c4:4b:b9:8f:4e:fc:17:b1:c8:7a:98:f6:75:8e:75:
ae:bb:a1:b4:2d:ed:57:46:8a:c7:ab:5c:ae:ca:41:
b7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F9:30:2B:FE:21:7B:C1:26:19:B3:77:23:F8:37:9C:71:19:3B:87
X509v3 Authority Key Identifier:
keyid:4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:56:df:f7:a4:68:6e:23:dd:5e:ea:86:07:cb:0b:53:ea:d1:
96:38:89:5c:d6:99:6b:10:62:ed:9f:7e:93:52:fd:23:79:9c:
2a:61:40:da:7f:5f:8d:0a:81:6d:3a:12:88:50:96:b5:d8:84:
8e:a5:4b:48:d7:67:1d:c3:67:fc:6c:45:ea:71:8c:7f:6b:c7:
b1:6d:66:6a:27:6d:93:a6:dc:08:6a:43:95:c9:95:7e:b6:ee:
06:60:bb:fd:e6:46:10:b3:5c:af:67:83:3b:57:de:da:2b:d7:
66:78:85:ff:c3:5e:14:48:13:1b:2e:8a:84:61:83:52:bd:ca:
d2:d4:e0:50:e4:6d:e2:9c:ca:97:c8:8d:43:23:81:c6:1e:27:
14:47:ef:41:d8:87:08:43:b0:d9:a9:c8:b9:35:91:1a:ca:e5:
9e:f3:ef:c4:3c:29:d8:4c:82:8b:55:00:22:4c:1a:30:6f:e2:
bf:f1:24:e2:65:b3:ea:9d:90:c1:32:c5:10:4a:ca:0d:c8:6a:
e6:d5:bf:f2:8a:9e:b3:22:8c:b9:9a:2a:5b:c4:b8:c9:b9:ed:
1e:49:84:40:57:ff:a0:24:0f:79:c9:b3:63:0e:d3:f8:40:ee:
c4:4c:bb:fd:51:70:15:2f:1e:7b:47:10:07:94:e4:62:6e:2c:
c0:fe:e3:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 23:31:09 2025 by rpki-client