Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: lkyOSzDa3boqEfj98ndtXpdTFwFmm8HlGYzG57HhxZY=
Subject key identifier: 88:5E:2D:90:C5:3C:0F:2B:BB:FC:2C:71:78:9E:59:D8:1F:84:27:06
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 0198820B7DC09BF81A593997D325FDC7DD48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 161C
Signing time: Thu 07 Aug 2025 01:00:47 +0000
Manifest this update: Thu 07 Aug 2025 01:00:47 +0000
Manifest next update: Fri 08 Aug 2025 01:00:47 +0000
Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: F4YZ/wkNpo0DuPfvCdme5iemJqm4UCpmNPHobdzznQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 01:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:0b:7d:c0:9b:f8:1a:59:39:97:d3:25:fd:c7:dd:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Aug 7 01:00:47 2025 GMT
Not After : Aug 8 01:00:47 2025 GMT
Subject: CN=885e2d90c53c0f2bbbfc2c71789e59d81f842706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:68:10:59:13:90:5e:5a:4e:4d:af:9e:a8:9d:
e2:ce:36:7c:45:6c:e2:ba:e0:8d:ed:e3:fa:06:5b:
1b:55:df:d2:b2:2a:d2:3d:51:bf:27:38:fa:e8:a9:
a9:fa:d0:7e:39:24:c3:62:1a:46:bd:92:e0:f1:81:
53:8d:43:48:46:82:e9:b0:1d:bd:6a:32:64:3e:21:
62:68:ad:56:33:3a:35:9b:2b:93:ef:5b:79:94:e7:
0e:db:7d:61:b5:59:20:a5:db:d8:a6:e8:9f:56:da:
1f:c7:a2:e1:8e:be:d1:f4:24:f2:e7:ec:bc:8f:3d:
c9:42:93:7d:76:a1:b8:ea:3c:0c:7e:85:5f:22:02:
4a:f4:54:21:e8:d7:a6:ce:7f:26:43:f2:22:c2:d5:
8c:69:b1:bc:39:1d:9f:e9:5c:39:c5:66:21:34:06:
97:1f:b9:8a:c6:5d:db:38:06:15:9b:42:72:0a:f9:
91:45:7a:ee:bb:36:8f:f9:d0:59:32:02:ee:e8:71:
21:9d:40:28:82:25:f9:a6:26:9b:55:65:c0:f4:7a:
d6:c3:8d:e5:8a:96:1f:3d:67:40:15:10:9d:b8:47:
92:4b:d6:a3:17:9b:89:bf:4d:58:66:5b:7a:69:83:
da:d0:43:87:4e:a8:ce:2c:fa:0c:91:98:dc:56:7f:
44:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:5E:2D:90:C5:3C:0F:2B:BB:FC:2C:71:78:9E:59:D8:1F:84:27:06
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:29:3d:29:29:0a:86:c4:53:1d:49:a6:b3:d1:15:66:8d:f2:
55:c6:70:3e:ea:70:d8:22:9a:9b:13:00:91:05:5b:40:40:89:
43:17:8d:31:f0:a1:79:bf:d9:0b:34:5a:01:16:1d:2f:ba:c9:
99:a5:f8:a4:d1:8b:2a:d7:f5:cd:d9:f4:b6:ba:e2:55:93:c4:
db:af:a3:c6:31:59:1c:f1:84:d1:e5:1a:ce:f2:9e:33:47:9c:
6c:ba:6d:45:90:a4:73:ee:99:fa:17:dd:88:2c:22:d8:d1:f6:
12:22:08:37:3a:a2:ee:74:18:02:a1:4c:03:55:00:90:ad:e9:
24:69:f2:1d:bf:a9:be:13:e0:0a:37:ed:6a:07:82:68:29:71:
e8:07:6b:81:75:e2:8a:6f:2c:13:ff:f0:96:11:bb:d1:11:f0:
4d:cc:7c:6d:64:a4:8d:00:6c:78:1c:f8:f0:ca:5b:8d:b5:cc:
dd:5a:65:e3:f8:0c:1b:4d:e3:5d:b5:6b:d1:11:35:4b:a6:5a:
76:7f:a2:78:f3:70:bc:c9:6c:59:91:8a:1a:ae:1f:0c:ab:a2:
ab:25:ee:0e:e3:25:5c:6e:96:6a:02:82:20:b8:57:8c:97:30:
5d:cc:90:a3:1a:ac:fb:83:1f:92:5f:cb:47:78:1a:99:4b:81:
19:29:16:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiCC33Am/gaWTmX0yX9x91IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0YTdkMDU0ODJiODRkM2JiNjA0ZjA5OWJjYWY5ZTdlZDM0
Njg4OWEwHhcNMjUwODA3MDEwMDQ3WhcNMjUwODA4MDEwMDQ3WjAzMTEwLwYDVQQD
Eyg4ODVlMmQ5MGM1M2MwZjJiYmJmYzJjNzE3ODllNTlkODFmODQyNzA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8WgQWROQXlpOTa+eqJ3izjZ8RWzi
uuCN7eP6BlsbVd/SsirSPVG/Jzj66Kmp+tB+OSTDYhpGvZLg8YFTjUNIRoLpsB29
ajJkPiFiaK1WMzo1myuT71t5lOcO231htVkgpdvYpuifVtofx6Lhjr7R9CTy5+y8
jz3JQpN9dqG46jwMfoVfIgJK9FQh6Nemzn8mQ/IiwtWMabG8OR2f6Vw5xWYhNAaX
H7mKxl3bOAYVm0JyCvmRRXruuzaP+dBZMgLu6HEhnUAogiX5piabVWXA9HrWw43l
ipYfPWdAFRCduEeSS9ajF5uJv01YZlt6aYPa0EOHTqjOLPoMkZjcVn9ERwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIheLZDFPA8ru/wscXieWdgfhCcGMB8GA1UdIwQY
MBaAFLSn0FSCuE07tgTwmbyvnn7TRoiaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAt
YzUzMjE5NWVlZjQ5LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAtYzUzMjE5NWVlZjQ5
LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACSk9KSkK
hsRTHUmms9EVZo3yVcZwPupw2CKamxMAkQVbQECJQxeNMfCheb/ZCzRaARYdL7rJ
maX4pNGLKtf1zdn0trriVZPE26+jxjFZHPGE0eUazvKeM0ecbLptRZCkc+6Z+hfd
iCwi2NH2EiIINzqi7nQYAqFMA1UAkK3pJGnyHb+pvhPgCjftageCaClx6AdrgXXi
im8sE//wlhG70RHwTcx8bWSkjQBseBz48MpbjbXM3Vpl4/gMG03jXbVr0RE1S6Za
dn+iePNwvMlsWZGKGq4fDKuiqyXuDuMlXG6WagKCILhXjJcwXcyQoxqs+4Mfkl/L
R3gamUuBGSkWoQ==
-----END CERTIFICATE-----
Generated at Thu Aug 7 11:26:42 2025 by rpki-client