Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft
File: TtMkzMCQuDGCmReur3ODTwg0Ss4.mft (raw, json)
Hash identifier: HiBm2ksxli2fQ4zb26ZeZKI+kMyqKYLSLb9Cbo3bLKc=
Subject key identifier: 21:3B:3E:1E:15:86:EE:D4:85:F0:31:2E:25:76:AE:43:43:0C:88:4A
Authority key identifier: 4E:D3:24:CC:C0:90:B8:31:82:99:17:AE:AF:73:83:4F:08:34:4A:CE
Certificate issuer: /CN=4ed324ccc090b831829917aeaf73834f08344ace
Certificate serial: 019A2AE82A8D489B31287AEFEB3738CA541C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft
Manifest number: 020A
Signing time: Tue 28 Oct 2025 13:00:49 +0000
Manifest this update: Tue 28 Oct 2025 13:00:49 +0000
Manifest next update: Wed 29 Oct 2025 13:00:49 +0000
Files and hashes: 1: LpPDa_hMKwPOheYcHrNv5BDTWog.roa (hash: 2CoZfLFeobkKqc9qZWTYrYW94wPP5u5Zmz2xUC1WQvs=)
2: TtMkzMCQuDGCmReur3ODTwg0Ss4.crl (hash: /hQGqTEmnTrBDA4OKvL+T8RKsVUSEPKhi8jYGuzEFBk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2a:e8:2a:8d:48:9b:31:28:7a:ef:eb:37:38:ca:54:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ed324ccc090b831829917aeaf73834f08344ace
Validity
Not Before: Oct 28 13:00:49 2025 GMT
Not After : Oct 29 13:00:49 2025 GMT
Subject: CN=213b3e1e1586eed485f0312e2576ae43430c884a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e7:f1:fe:98:85:8e:60:46:c1:d2:58:97:a7:
a1:3d:be:c1:2e:64:d3:4d:c1:19:d8:78:98:3f:14:
92:b2:77:7b:1e:b4:cd:60:64:ce:be:56:04:14:06:
67:f5:58:86:81:6f:52:44:c5:b8:98:ca:c8:b4:49:
0f:2c:fc:ae:d5:c8:da:f7:b6:18:11:f8:70:a2:9f:
23:7f:79:9b:e3:3c:f1:bc:6c:c8:f0:69:14:f5:a5:
f0:75:e5:d7:2b:7f:fc:91:e3:80:b7:df:98:e5:41:
6d:68:f9:74:27:0e:54:3b:94:5d:48:9e:c1:c1:e7:
71:dc:b1:aa:9b:ba:44:91:8a:e5:f1:5c:f9:6f:d2:
c2:d0:4d:bc:26:8c:96:83:ee:ce:0e:e9:56:cf:34:
21:bc:18:21:8f:5e:3e:5f:71:a1:69:01:cd:08:ef:
ee:86:c1:a1:7b:4d:e4:c2:70:62:87:23:47:59:6b:
38:85:60:50:15:47:68:af:b5:57:72:7a:c9:20:d0:
bc:2a:b0:4e:17:cc:02:3f:eb:e6:57:0f:a0:ac:d0:
ff:ac:49:bc:02:f3:b4:2a:d6:f4:6c:f2:99:3d:7e:
84:f0:8f:65:96:c2:82:36:d2:54:01:7f:33:26:91:
49:b3:ea:5b:1a:8f:c3:0a:41:c7:01:02:3c:7a:e3:
92:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:3B:3E:1E:15:86:EE:D4:85:F0:31:2E:25:76:AE:43:43:0C:88:4A
X509v3 Authority Key Identifier:
keyid:4E:D3:24:CC:C0:90:B8:31:82:99:17:AE:AF:73:83:4F:08:34:4A:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:0e:75:8c:29:6a:33:24:08:6c:d9:ea:b2:e4:7c:d8:cc:90:
12:3b:f5:46:47:95:bd:5e:c6:20:4b:0c:de:ed:8f:b1:bc:fe:
5a:16:3c:ee:ec:22:23:a8:6b:3a:79:04:89:a5:9e:23:75:18:
20:15:f5:40:d9:8c:e0:ec:67:be:f1:10:73:f9:1c:70:27:bc:
41:24:c2:3d:72:7c:c7:4f:4a:50:28:a7:05:99:4a:b1:b7:1b:
03:05:3b:73:aa:4a:55:19:0b:47:6a:0a:1a:01:13:f0:d1:7a:
d7:d7:ec:0c:ab:77:f0:fd:0f:d9:fd:3c:9d:4a:97:2f:0a:e4:
c3:ce:bb:1f:a6:1b:9c:f8:bd:10:98:d8:b5:e0:0b:a9:f5:f2:
a1:b3:fa:a1:7f:8e:ae:a4:77:63:fb:84:6d:59:2d:44:7e:79:
6e:4e:1e:70:43:42:56:92:db:9c:25:18:06:1c:82:11:42:da:
cb:15:7d:4f:ad:5a:9e:00:af:22:ca:c2:d6:f2:29:15:27:e6:
b7:36:ee:4c:28:b5:ae:af:0e:78:6f:99:69:31:18:79:88:8c:
6b:bf:1b:6e:57:bb:4c:d2:ea:70:96:ba:63:1c:81:e9:78:b0:
9a:95:2d:cb:62:be:70:88:71:13:ed:95:a0:e8:04:2d:ee:a1:
90:2d:ff:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 16:20:18 2025 by rpki-client