Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json)
Hash identifier: wvsX4GGwabNx4xJvnxJ2+472xXRMCRr1Xd1BJt/gakQ=
Subject key identifier: 06:76:1A:C4:E9:C8:56:EA:46:25:1A:66:76:87:98:D1:FA:F0:C2:94
Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Certificate serial: 019A4F628EE667E644402D852549EA5153D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
Manifest number: 1729
Signing time: Tue 04 Nov 2025 15:00:50 +0000
Manifest this update: Tue 04 Nov 2025 15:00:50 +0000
Manifest next update: Wed 05 Nov 2025 15:00:50 +0000
Files and hashes: 1: 15pjcL48pkWZSvyXnDWjH3srMzQ.roa (hash: dmd97hcLtSzZy7Qz5O/ccY1dtF/UXlYHWlHQGTz9cV0=)
2: 3m24X-EciRhk0jIJsdLBkFHw4Vc.roa (hash: 4191ER+HI71G/WcSYBdVlGxJt+on8LpGReotMNSci7U=)
3: OW3nOicLkrmXZdp3r5orx47eGJQ.roa (hash: 5EmIochVR6v8ogsSzgwpakcQSlqncNbG0N7JC4GvEpY=)
4: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: f46jlsxlpxHjuCm1C2VbLwaXs7Xg6K5QuBhSl3XSyOg=)
5: XRjqskDJfCb5PURI6gE2z-7afCI.roa (hash: lC6CdL71ZqZQFEg499ebGpokdZd/v2A2IJbWINe+nqc=)
6: aVSDFG9S0qVagyGCDyRaZCcj4uM.roa (hash: 10vd3ei8CEhJdvfMHANX2v90tno0+7P3mxjOYtPwbi4=)
7: yCdRlY1dy91_yoXt5TFoEdJrw-o.roa (hash: KareyGqAsZ0sDsSq6dTpkWiy0kkcW1Zx+0QaG17jqGs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:8e:e6:67:e6:44:40:2d:85:25:49:ea:51:53:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Validity
Not Before: Nov 4 15:00:50 2025 GMT
Not After : Nov 5 15:00:50 2025 GMT
Subject: CN=06761ac4e9c856ea46251a66768798d1faf0c294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:82:d4:3a:0e:9b:d1:25:6d:04:56:70:a0:3e:
36:dd:1b:6a:86:dd:b1:de:5a:42:2d:bb:99:01:9a:
bb:7e:70:9d:be:29:73:76:22:a6:b5:eb:d7:28:12:
ae:3f:e1:d0:ea:27:c2:eb:47:2f:97:e3:94:cc:3e:
c3:37:db:b8:a2:23:53:06:c2:c3:13:6f:8a:9e:7b:
b4:dc:b8:30:13:15:83:e0:8f:5d:84:ce:6e:89:47:
ac:c5:3d:05:89:69:99:78:f8:01:61:70:38:18:cf:
68:7f:53:36:10:c1:2f:c6:2c:b5:0c:88:41:2c:8a:
cc:a9:3d:cf:00:d4:c3:1d:dd:1d:ec:23:d0:91:2b:
8c:a1:eb:06:1e:0e:9e:7c:a2:e9:ed:e2:92:09:3a:
36:fe:3f:e7:cf:87:a8:a7:d7:d7:08:d0:e8:59:f7:
86:12:63:1f:84:db:fb:6c:ec:ae:5f:9a:b3:19:e0:
ba:73:1b:51:dc:d3:d1:4c:7b:fe:f8:e8:2d:75:ce:
28:88:ac:21:83:49:f1:73:11:2b:64:8b:a0:6e:f3:
b9:bf:c3:69:0a:22:12:67:67:1d:7e:8f:bf:ed:05:
4e:fc:38:f4:d3:ed:0e:6a:17:01:91:2d:ce:db:ed:
fb:20:74:b5:fd:7b:35:09:35:c2:2e:ba:52:72:5d:
fa:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:76:1A:C4:E9:C8:56:EA:46:25:1A:66:76:87:98:D1:FA:F0:C2:94
X509v3 Authority Key Identifier:
keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:21:cf:e8:aa:86:01:97:9e:fb:29:12:76:45:2f:6e:bb:ea:
eb:50:3c:80:3c:f2:76:42:9f:9a:7a:3f:ab:12:7f:d5:df:be:
95:66:9b:8a:f5:a1:9e:00:0d:81:bf:8a:95:e3:1f:3e:a1:8e:
44:d4:fd:30:aa:e6:ca:71:fc:b5:07:67:41:ff:71:22:08:3e:
65:98:e0:b2:02:98:8a:f5:5c:24:63:16:07:f4:ae:b4:50:00:
47:1f:27:9e:42:8b:c1:e4:96:13:ca:c5:e2:ad:3c:3c:4c:8e:
b3:3e:0a:e4:76:53:e5:55:c5:ed:c0:86:24:de:b4:29:01:60:
09:2d:81:30:e6:c8:ad:52:70:b3:f2:3e:f3:f8:2b:39:c8:f2:
fe:0e:1c:6a:6c:2b:05:10:ca:8c:61:50:e2:6c:dc:cd:ae:3c:
4c:78:bb:6b:de:f4:97:92:a1:de:25:30:ce:16:4e:19:1c:d4:
8d:a6:1a:e8:b6:76:c7:8d:4a:80:d2:93:4d:82:4c:b8:55:46:
96:9d:6e:6d:62:d7:7f:72:9d:d3:6c:b0:b5:b1:7e:91:5e:5c:
66:8a:0d:71:6b:fd:4a:32:ec:95:0e:92:57:3a:69:49:88:1e:
3d:45:b8:8c:3b:fd:6a:df:d1:5b:1b:22:a5:63:63:60:92:c0:
e7:96:bd:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:54:31 2025 by rpki-client