Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
File: TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft (raw, json)
Hash identifier: an8FE5t0daJ/OsmHbmmOWuYVBJr+Pc1g996dSOuso/U=
Subject key identifier: 53:E6:68:E9:A2:44:D8:31:7D:F8:E2:45:54:E7:FA:51:36:F8:4D:40
Authority key identifier: 4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
Certificate issuer: /CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Certificate serial: 019A4DAACB7D56C508DDE4890024B29997B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
Manifest number: 169E
Signing time: Tue 04 Nov 2025 07:00:29 +0000
Manifest this update: Tue 04 Nov 2025 07:00:29 +0000
Manifest next update: Wed 05 Nov 2025 07:00:29 +0000
Files and hashes: 1: TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl (hash: FhctUfWCo6TVEvJvOfLC8tluDCNSLT6gWYFFkszBLu0=)
2: ilNe5KDmG0o6LZVjHMLtOGd-0DQ.roa (hash: JkEgQ36ayeHC4m0mo3MRV7E4gABrbKLeaaxVJdDM2eE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:aa:cb:7d:56:c5:08:dd:e4:89:00:24:b2:99:97:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Validity
Not Before: Nov 4 07:00:29 2025 GMT
Not After : Nov 5 07:00:29 2025 GMT
Subject: CN=53e668e9a244d8317df8e24554e7fa5136f84d40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1c:24:c0:fb:e1:d0:25:f6:09:99:d6:b6:8b:
1d:ee:00:66:d8:1e:42:66:4b:d7:51:68:cb:48:a4:
a4:b6:62:69:18:62:da:ab:72:14:1d:69:61:04:c2:
a3:87:ae:c0:9b:22:91:8a:51:05:8c:1e:66:58:7e:
e8:6d:08:f8:bc:66:14:60:70:d5:5c:75:42:51:37:
bc:e1:6f:75:75:fb:f1:c8:c5:ae:7c:5c:73:70:84:
01:ea:dd:68:e8:67:47:56:6b:aa:be:e0:ac:fe:4e:
82:92:19:0c:b7:ed:c5:ae:c5:65:12:09:37:e0:93:
3b:39:07:1d:e6:93:72:39:fb:04:a8:b0:22:f2:e4:
c9:7f:ff:a1:89:4f:c2:70:b2:d4:b4:8e:12:4a:1f:
5c:12:5e:fa:3c:b6:73:0e:e7:3b:ae:be:8d:5c:0b:
a2:6a:60:f6:e8:84:76:34:ba:53:f9:0e:43:56:df:
63:e6:30:25:ce:83:79:54:0d:8f:8f:25:6c:5e:39:
7a:3e:3e:fc:ce:17:f7:36:fd:b8:de:17:53:14:cc:
0e:09:8e:68:eb:9e:00:e0:42:62:cc:75:0e:2d:77:
82:e1:0e:c0:1f:31:58:50:87:06:65:b0:7a:96:04:
38:2c:77:56:9c:4f:5b:18:6a:89:60:87:b5:94:6a:
c3:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E6:68:E9:A2:44:D8:31:7D:F8:E2:45:54:E7:FA:51:36:F8:4D:40
X509v3 Authority Key Identifier:
keyid:4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:5f:e0:e8:ef:7b:17:b1:be:f9:e7:70:b2:a4:82:24:73:3c:
b5:bb:6a:fa:67:a5:3e:14:49:1b:30:e2:2b:21:3b:f1:a6:ca:
80:bf:60:e7:50:74:a1:34:d9:73:a1:ec:b0:ee:ab:a0:4a:65:
1e:e1:16:0b:99:24:5a:3e:75:68:1d:bb:94:e3:70:2e:36:18:
cf:f2:2f:77:c7:9b:e4:db:64:eb:2d:32:c1:73:e2:59:14:a1:
81:d8:9d:d9:21:84:64:3e:98:47:38:92:fa:99:d4:84:7d:06:
9f:f5:c1:96:7c:cb:5a:6d:5d:f9:50:19:d7:9f:6c:eb:2a:04:
bd:c8:61:2a:0a:bb:d9:de:c6:a1:e7:77:37:07:33:0e:73:72:
47:d8:1c:ea:76:9f:6c:b3:77:d6:4e:88:4d:69:86:6b:7a:25:
1d:e0:08:e8:f8:05:67:b7:4b:b1:49:0b:2d:5f:74:f3:19:09:
10:d0:45:71:8f:71:86:76:d7:6e:bf:31:30:c5:33:fb:4f:fa:
48:7e:f5:4c:45:d1:04:db:8e:96:a8:42:a3:93:0a:94:0c:86:
60:a1:b5:3e:e2:e5:12:c9:c9:46:d6:c3:6a:7e:72:d0:b2:98:
61:5c:45:d8:50:94:20:64:45:d9:da:ac:5d:94:54:d0:58:33:
d7:83:d7:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNqst9VsUI3eSJACSymZe2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYTUwOWIzNTAxMWVkNzE2NjM5NTJiYTBlMGMzYzM4NDU3
ZjlkMDcwHhcNMjUxMTA0MDcwMDI5WhcNMjUxMTA1MDcwMDI5WjAzMTEwLwYDVQQD
Eyg1M2U2NjhlOWEyNDRkODMxN2RmOGUyNDU1NGU3ZmE1MTM2Zjg0ZDQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAixwkwPvh0CX2CZnWtosd7gBm2B5C
ZkvXUWjLSKSktmJpGGLaq3IUHWlhBMKjh67AmyKRilEFjB5mWH7obQj4vGYUYHDV
XHVCUTe84W91dfvxyMWufFxzcIQB6t1o6GdHVmuqvuCs/k6CkhkMt+3FrsVlEgk3
4JM7OQcd5pNyOfsEqLAi8uTJf/+hiU/CcLLUtI4SSh9cEl76PLZzDuc7rr6NXAui
amD26IR2NLpT+Q5DVt9j5jAlzoN5VA2PjyVsXjl6Pj78zhf3Nv243hdTFMwOCY5o
654A4EJizHUOLXeC4Q7AHzFYUIcGZbB6lgQ4LHdWnE9bGGqJYIe1lGrDLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFPmaOmiRNgxffjiRVTn+lE2+E1AMB8GA1UdIwQY
MBaAFEylCbNQEe1xZjlSug4MPDhFf50HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEtVSnMxQVI3WEZtT1ZLNkRndzhPRVZfblFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8wYTEzMWUtMzdjNi00NWNiLTk2ODIt
MGIwYzEyYjIyYmY5LzEvVEtVSnMxQVI3WEZtT1ZLNkRndzhPRVZfblFjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8wYTEzMWUtMzdjNi00NWNiLTk2ODItMGIwYzEyYjIyYmY5
LzEvVEtVSnMxQVI3WEZtT1ZLNkRndzhPRVZfblFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiF/g6O97
F7G++edwsqSCJHM8tbtq+melPhRJGzDiKyE78abKgL9g51B0oTTZc6HssO6roEpl
HuEWC5kkWj51aB27lONwLjYYz/Ivd8eb5Ntk6y0ywXPiWRShgdid2SGEZD6YRziS
+pnUhH0Gn/XBlnzLWm1d+VAZ159s6yoEvchhKgq72d7Goed3NwczDnNyR9gc6naf
bLN31k6ITWmGa3olHeAI6PgFZ7dLsUkLLV908xkJENBFcY9xhnbXbr8xMMUz+0/6
SH71TEXRBNuOlqhCo5MKlAyGYKG1PuLlEsnJRtbDan5y0LKYYVxF2FCUIGRF2dqs
XZRU0Fgz14PXvA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:53:43 2025 by rpki-client