Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json)
Hash identifier: SR+OyboYh6Gc2tBFBBGexzNeRE6QCbLHHWjjLWdfFMM=
Subject key identifier: 19:84:96:28:82:90:7E:62:4F:B1:28:97:0D:5D:F1:A8:89:01:A6:FE
Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Certificate serial: 0198819DB58F0F81D6C718E1A5D052F52B4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
Manifest number: 162D
Signing time: Wed 06 Aug 2025 23:00:53 +0000
Manifest this update: Wed 06 Aug 2025 23:00:53 +0000
Manifest next update: Thu 07 Aug 2025 23:00:53 +0000
Files and hashes: 1: JYm-31tHmtKX0NnDCQwWZyZvWS4.roa (hash: g4JwaI96sCFvP21t58o8pogqZoudya604Aq5hrOnaTM=)
2: RJXW4LBK4fFR7-qXARrAfcS6HVM.roa (hash: nADRNIhqhtAZRzc6jlM5uns21XppYQB+SgxQZjcIenk=)
3: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: WiuuDm/a7PMY7udboO70y8HIe3KtMtXSYiuybCmtam4=)
4: aVSDFG9S0qVagyGCDyRaZCcj4uM.roa (hash: 10vd3ei8CEhJdvfMHANX2v90tno0+7P3mxjOYtPwbi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:9d:b5:8f:0f:81:d6:c7:18:e1:a5:d0:52:f5:2b:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Validity
Not Before: Aug 6 23:00:53 2025 GMT
Not After : Aug 7 23:00:53 2025 GMT
Subject: CN=1984962882907e624fb128970d5df1a88901a6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:23:8b:c8:1b:83:68:91:61:9b:9f:e3:6b:33:
d9:90:19:1d:39:63:fb:7a:e8:2d:dd:85:d2:1b:8b:
53:9d:ee:5b:ae:c8:52:63:5c:28:0b:5d:bb:fb:b0:
99:c8:6c:e5:30:21:88:ed:75:1a:63:75:fa:00:e0:
e4:f4:c0:a6:09:d9:d4:b7:e5:c7:08:f0:ae:31:9b:
99:37:1f:5b:07:8a:6f:5f:52:e9:64:5a:9b:c2:f2:
ce:c0:fc:e2:d9:ab:56:de:80:04:7b:d2:5d:51:4c:
f4:9b:d5:62:d6:3e:c8:d1:7a:de:49:c0:a2:bb:04:
16:8f:f9:22:38:d3:7a:38:41:76:23:aa:00:d6:a6:
e9:6d:a4:ff:23:3c:bb:b7:03:0d:3c:a1:af:cc:6d:
dc:13:4c:c1:15:8c:2d:10:17:9c:0e:08:cd:41:62:
67:3a:33:17:2f:fa:d2:6c:40:2c:e8:95:50:05:17:
71:5c:dd:ab:a1:ce:71:b5:fe:b8:2e:b8:ea:14:31:
87:4a:41:bb:31:0e:0d:92:3d:b4:74:15:77:19:62:
5c:93:e7:84:49:1a:77:d2:0b:20:86:11:fe:02:f1:
b6:e7:0d:68:8a:3c:63:cf:23:a0:ae:57:f0:ad:d5:
29:3e:3b:28:e8:76:c8:97:7d:a8:d4:93:40:85:a0:
59:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:84:96:28:82:90:7E:62:4F:B1:28:97:0D:5D:F1:A8:89:01:A6:FE
X509v3 Authority Key Identifier:
keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:ee:35:72:c8:a3:0c:83:69:c4:f8:4d:52:d8:af:db:c9:3e:
2e:02:d2:24:2b:08:a8:e4:d7:78:11:5b:8f:8d:d6:11:03:ad:
e5:ed:19:98:b0:fe:5a:25:e6:6e:ab:f2:2b:01:00:9f:4a:49:
76:cc:c5:b5:63:26:03:7d:4b:ae:f5:c7:1b:78:1f:c5:c7:eb:
19:83:e4:f1:fc:dc:dd:25:11:f9:78:66:ed:a0:0d:a7:2c:95:
af:4a:93:4c:8b:a2:85:bd:a4:19:e9:ca:1c:be:af:72:55:a9:
08:e7:d6:b5:b8:ed:49:0a:c4:e9:31:86:a1:27:e6:31:07:91:
56:1c:24:fe:21:4d:fa:50:74:96:af:bd:3c:0e:8c:43:cd:51:
67:99:f9:46:cd:15:a9:ae:bb:01:be:c5:95:29:5f:ce:e5:6a:
91:b7:e4:11:4b:93:4a:1c:fe:ff:f4:0d:1f:00:15:b7:b5:96:
80:2c:93:27:06:d5:8b:0b:9f:d2:ca:b5:df:ac:88:0d:b3:1a:
f0:69:da:22:0f:90:f4:5c:cc:14:6d:b5:73:a2:b2:7d:26:3e:
f6:39:cf:2c:91:50:2d:27:42:4b:58:b1:71:01:89:a7:4b:3b:
55:37:85:79:64:76:cc:31:7f:a8:1f:d2:68:b2:4f:c2:02:2e:
f6:a2:6c:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:07:57 2025 by rpki-client