Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
File: TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft (raw, json)
Hash identifier: RfB2//RVq30ROeyOHBtS868GKumms4VzQ6t5OruQC98=
Subject key identifier: D9:EC:77:D7:D2:A7:1A:0F:DA:85:5C:61:2D:8D:02:F3:17:9F:C1:06
Authority key identifier: 4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
Certificate issuer: /CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Certificate serial: 01987298246CBC49B60EE27DD12BA68AEFEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
Manifest number: 15A8
Signing time: Mon 04 Aug 2025 01:00:30 +0000
Manifest this update: Mon 04 Aug 2025 01:00:30 +0000
Manifest next update: Tue 05 Aug 2025 01:00:30 +0000
Files and hashes: 1: TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl (hash: MUQtgk9v4/TsSYShu9MzsxPot1Dr1zA7ATzmAcUmC3A=)
2: ilNe5KDmG0o6LZVjHMLtOGd-0DQ.roa (hash: JkEgQ36ayeHC4m0mo3MRV7E4gABrbKLeaaxVJdDM2eE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:24:6c:bc:49:b6:0e:e2:7d:d1:2b:a6:8a:ef:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Validity
Not Before: Aug 4 01:00:30 2025 GMT
Not After : Aug 5 01:00:30 2025 GMT
Subject: CN=d9ec77d7d2a71a0fda855c612d8d02f3179fc106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:69:9b:8f:99:73:11:11:d2:60:19:81:84:95:
84:2b:f9:10:23:02:b0:c5:91:a2:2a:67:d3:c1:a8:
9e:c5:ca:c4:c6:ea:34:0b:03:9a:88:d0:56:4b:8e:
4e:77:13:87:ea:72:48:f2:0d:a5:75:55:da:a4:09:
a3:d7:eb:dc:8c:63:1d:b7:90:76:3f:a4:d5:6f:0a:
9c:e5:70:56:75:1d:e9:8f:3c:5e:fa:8b:56:dd:2c:
16:6d:29:b7:58:92:04:3c:75:96:72:0c:20:3b:79:
19:a3:6f:c3:f8:d6:20:d2:cb:39:15:87:b4:19:ad:
3c:14:cf:87:f5:23:4a:f3:09:e8:07:fb:92:72:7f:
68:83:77:1f:bb:53:cd:d2:ca:7a:7a:4c:c0:8a:bc:
a3:6e:a3:6e:72:db:ed:3e:c9:98:fb:26:90:15:54:
68:6c:c2:54:85:1e:97:fd:cb:97:18:8a:83:47:6f:
5b:2b:1e:13:63:26:89:7c:41:7a:0e:b9:44:05:69:
f5:0c:cc:b4:55:bd:48:72:44:45:61:d1:5d:d5:38:
41:36:e3:d2:c0:3b:1f:32:20:98:d9:f0:e2:b5:4e:
ca:a9:81:8d:99:63:fa:08:d2:09:e1:ea:67:2a:e6:
4b:60:55:1d:0c:5f:f6:81:18:3a:ac:06:5b:f8:73:
95:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:EC:77:D7:D2:A7:1A:0F:DA:85:5C:61:2D:8D:02:F3:17:9F:C1:06
X509v3 Authority Key Identifier:
keyid:4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:d7:c5:d9:95:ad:c5:44:4a:39:16:d1:48:f8:51:16:de:5b:
aa:a9:5a:35:1e:35:96:ea:a9:39:e3:c9:3d:a0:d4:ff:5a:28:
fd:c9:85:a8:5f:1d:f6:a3:71:b6:d0:0f:a3:20:19:b9:79:c2:
ab:1b:f7:58:4a:f6:7a:b9:ee:ff:06:cf:d8:49:53:bf:2f:56:
45:7e:90:6b:d3:c3:0f:ca:53:6c:d4:7a:be:6c:9d:78:f2:fb:
61:d3:b9:ee:b2:be:a5:28:d6:12:1d:78:9b:1b:e5:65:84:b4:
f4:db:0f:71:7e:a4:c2:87:5f:59:32:d4:17:c0:e6:30:c1:26:
7f:d6:04:bc:0e:c4:4c:8a:c1:e1:1b:11:18:70:76:3d:5d:b6:
7f:61:88:ab:bf:4c:58:b4:3e:76:7c:5c:c6:c7:7c:34:6d:b0:
9c:1e:9d:3b:c7:77:50:66:25:c2:97:82:86:ae:92:1d:06:2a:
9a:43:57:f5:0d:eb:3d:3b:94:31:95:63:26:5d:d1:4e:52:f1:
f7:2b:37:28:d2:aa:28:6d:73:29:87:97:95:e7:6f:fb:e7:6f:
77:ba:3e:05:bc:3d:60:ce:7b:b0:20:d9:22:d6:8e:ae:48:2b:
af:9b:ef:39:55:1d:8f:71:a1:86:80:ba:e0:0c:9b:03:e8:bc:
e1:0a:41:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:08:38 2025 by rpki-client