Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
File: tkDbwv_PXWNFicBEAV1xdcuv8-0.mft (raw, json)
Hash identifier: FHrJUWfozlLwMjz77CxJ/oB/TdrUdb6n3Y850XA0qgE=
Subject key identifier: 88:32:F2:15:85:EF:C3:33:C4:E6:01:70:F0:A4:2B:DF:B3:B1:85:A4
Authority key identifier: B6:40:DB:C2:FF:CF:5D:63:45:89:C0:44:01:5D:71:75:CB:AF:F3:ED
Certificate issuer: /CN=b640dbc2ffcf5d634589c044015d7175cbaff3ed
Certificate serial: 019A4DAB05692AF96BBF7BDFD5E96FC4253F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
Manifest number: 11AB
Signing time: Tue 04 Nov 2025 07:00:44 +0000
Manifest this update: Tue 04 Nov 2025 07:00:44 +0000
Manifest next update: Wed 05 Nov 2025 07:00:44 +0000
Files and hashes: 1: tkDbwv_PXWNFicBEAV1xdcuv8-0.crl (hash: mfHGuBgw5lm+b0T3WV1AL5LqUIG/5dxoRjutlXUVODg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:ab:05:69:2a:f9:6b:bf:7b:df:d5:e9:6f:c4:25:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b640dbc2ffcf5d634589c044015d7175cbaff3ed
Validity
Not Before: Nov 4 07:00:44 2025 GMT
Not After : Nov 5 07:00:44 2025 GMT
Subject: CN=8832f21585efc333c4e60170f0a42bdfb3b185a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:af:f4:7d:5c:99:07:08:4f:c4:01:cf:05:d6:
6a:8d:82:d6:45:bc:f8:b2:dd:51:d0:89:01:bf:68:
4c:65:72:89:9d:fa:6e:f8:9d:52:c0:ee:b6:85:64:
f9:0a:1a:1e:0f:87:68:2c:c9:65:76:7a:11:46:f5:
79:c0:b0:e6:2d:13:ed:73:c2:9c:29:e0:de:82:a8:
4d:4e:52:29:5e:17:c4:5b:be:b9:9a:a2:8e:18:d1:
bf:cc:b4:d2:93:6b:94:2b:07:a1:11:2b:46:40:02:
e8:89:df:94:b3:bd:4e:3d:81:d6:6c:4b:b1:60:19:
36:1b:a9:67:e5:b2:99:a9:3d:07:91:98:02:36:ff:
9f:74:15:a5:aa:02:2b:4a:5a:e5:c2:ff:78:df:44:
ca:30:61:cb:36:a8:04:09:46:8d:d0:88:66:e8:b4:
9f:1e:31:54:ef:1d:ac:7b:2c:b9:45:90:c2:ed:d9:
10:59:2c:7f:b6:fb:e7:44:ee:3f:31:2f:94:4d:13:
ae:ae:42:62:7c:10:34:90:c7:01:79:26:fa:91:5d:
f7:42:65:8c:3b:7f:a0:59:8e:df:6b:98:63:6d:1d:
69:c9:8f:f7:03:bc:8f:34:ae:6a:86:26:85:a5:c2:
f1:dc:ff:51:1c:51:71:8e:a0:74:9a:ee:1b:c2:0d:
8c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:32:F2:15:85:EF:C3:33:C4:E6:01:70:F0:A4:2B:DF:B3:B1:85:A4
X509v3 Authority Key Identifier:
keyid:B6:40:DB:C2:FF:CF:5D:63:45:89:C0:44:01:5D:71:75:CB:AF:F3:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:83:4b:97:c4:a8:f5:a0:d3:d6:fa:5f:b4:36:d5:27:6d:7b:
87:45:93:7a:37:06:59:a4:76:a8:27:6b:0e:67:5f:48:78:05:
61:41:05:8f:51:af:de:ad:3a:d0:40:f2:af:eb:93:27:bb:ef:
34:14:e9:03:4e:84:5e:64:a8:6f:75:28:62:27:48:6e:1c:d8:
d6:0f:1e:cd:28:6f:78:58:8f:d5:9d:60:29:38:4c:91:2b:26:
d9:e4:99:f9:da:8f:96:45:66:ea:bd:38:7a:32:04:82:e0:95:
87:74:6a:8d:6d:04:4d:94:51:3e:e9:1a:5d:2b:dd:93:b1:df:
26:06:56:6a:b8:45:2d:be:79:ab:68:5f:7a:47:e7:34:ee:e8:
29:13:3a:18:0c:0e:22:be:1d:b8:10:31:16:5b:81:63:5d:cb:
bb:de:79:fb:a1:f0:6b:ea:23:45:50:af:e0:9e:d9:ae:6b:21:
1a:12:9c:fd:a0:4d:7a:90:0a:be:77:ff:04:e8:fe:ff:b5:7f:
58:0f:04:6a:26:c3:98:71:ab:46:47:92:c4:e5:30:ce:0f:45:
7e:07:31:03:d2:00:b8:96:e3:c7:c4:cf:ca:ac:08:4d:25:c0:
10:ee:88:cb:a1:9e:a2:f4:c1:3d:e2:63:a3:ba:f6:76:91:b1:
ed:0a:33:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:51:07 2025 by rpki-client