Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
File: tkDbwv_PXWNFicBEAV1xdcuv8-0.mft (raw, json)
Hash identifier: UctN3PpdJiExlH4pX/IRY4uKUyjJo36G32f0rodrafs=
Subject key identifier: 75:51:4D:7F:AD:F9:92:A7:6F:10:65:2B:03:96:09:CE:0D:ED:94:C0
Authority key identifier: B6:40:DB:C2:FF:CF:5D:63:45:89:C0:44:01:5D:71:75:CB:AF:F3:ED
Certificate issuer: /CN=b640dbc2ffcf5d634589c044015d7175cbaff3ed
Certificate serial: 01987298522D412366F5FCBDC8F32485CE75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
Manifest number: 10B5
Signing time: Mon 04 Aug 2025 01:00:41 +0000
Manifest this update: Mon 04 Aug 2025 01:00:41 +0000
Manifest next update: Tue 05 Aug 2025 01:00:41 +0000
Files and hashes: 1: tkDbwv_PXWNFicBEAV1xdcuv8-0.crl (hash: QselNYCvVZk6RlJE+Rk8VEWupTRU1iGjRFPZX4Prj7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:52:2d:41:23:66:f5:fc:bd:c8:f3:24:85:ce:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b640dbc2ffcf5d634589c044015d7175cbaff3ed
Validity
Not Before: Aug 4 01:00:41 2025 GMT
Not After : Aug 5 01:00:41 2025 GMT
Subject: CN=75514d7fadf992a76f10652b039609ce0ded94c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:68:f6:aa:67:20:e8:58:f0:13:8e:dc:4d:9d:
f0:c8:83:7e:26:7f:f2:bc:9b:27:89:4b:14:c9:29:
1d:f3:ee:2b:01:4c:0d:11:e5:04:57:1b:26:ea:48:
85:81:32:88:7b:e2:00:f5:ae:9e:d3:35:35:3a:16:
c9:9c:f6:9a:da:11:41:06:03:b0:59:13:16:6c:a1:
7b:de:4f:aa:c3:97:b5:20:ea:e9:be:2b:bd:17:e5:
fd:c4:29:a7:c7:db:ce:14:55:67:4a:75:31:9d:8b:
ca:11:ef:aa:14:ac:e8:e8:3f:24:60:3c:5e:fb:34:
c0:b6:72:55:43:3b:0e:48:e6:8e:a8:57:c1:00:e5:
7a:6b:5a:a5:bd:3f:36:63:c9:89:bf:26:ca:db:b5:
48:91:8a:df:3d:4a:19:9a:ee:ba:29:11:0a:01:99:
e5:2c:29:49:61:12:45:e3:9a:56:6c:19:42:7a:03:
83:df:80:d5:07:40:b1:53:ab:03:5d:01:c4:7e:ca:
65:b7:9e:b1:de:b6:7a:2e:aa:ac:18:ca:e9:8e:c8:
48:29:e8:f8:39:1d:98:5a:82:d6:ae:d0:12:b8:0a:
24:1d:23:3c:8a:4c:a5:65:c0:c4:81:1f:b2:46:97:
a3:7e:e5:89:99:72:14:e1:38:bf:cb:c5:b8:1d:f3:
9b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:51:4D:7F:AD:F9:92:A7:6F:10:65:2B:03:96:09:CE:0D:ED:94:C0
X509v3 Authority Key Identifier:
keyid:B6:40:DB:C2:FF:CF:5D:63:45:89:C0:44:01:5D:71:75:CB:AF:F3:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:08:57:a5:ce:b9:5f:6c:7e:56:dc:a7:bb:1a:21:c0:6d:55:
1c:2e:b9:e1:0f:90:79:69:cc:5d:ff:c6:be:f8:c9:01:38:58:
ed:02:0a:b4:9d:0b:8e:9a:b6:fd:5a:8b:c2:86:2a:b4:75:a8:
79:56:90:e3:d3:1c:9d:1b:4c:38:1e:e1:95:1d:fe:05:bd:bc:
6b:b7:b6:c9:35:a7:f8:61:46:91:55:2a:e2:f3:cb:4d:1c:92:
68:03:df:a7:92:17:fa:76:8a:b1:ce:ef:e4:86:97:63:65:a8:
90:ab:6a:4b:8b:01:0a:57:3a:0a:eb:f9:db:15:b6:2b:e2:77:
57:8d:0f:25:a4:cb:8e:0f:d4:fd:97:e1:a8:43:61:5b:d8:cf:
df:dd:77:3b:d6:51:41:be:52:e4:51:a4:63:dc:d3:6a:1e:ea:
9b:60:97:d3:c9:42:23:27:8d:6e:cb:43:47:ef:a9:3a:c7:2b:
57:42:54:9a:a2:51:ff:e1:2b:93:fc:b6:2c:be:b5:d1:9b:19:
9a:ee:8d:8a:ee:04:9f:9f:d4:25:ce:c6:a9:d5:f4:de:d0:cd:
d0:84:4b:4f:8d:3a:ba:f9:12:ba:79:a4:d8:4c:ff:83:92:b4:
4a:f9:72:09:d0:a4:77:30:d3:b6:25:02:c6:99:08:06:b8:ba:
60:27:40:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:26:43 2025 by rpki-client