Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft
File: TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft (raw, json)
Hash identifier: ygNxTqjRCQotZXWwBnc3o2+h8Gh7aDE1xlkpdNBzTII=
Subject key identifier: 29:55:B2:9E:81:78:E8:C2:88:9E:ED:BA:AE:FF:87:00:A2:C2:7F:F8
Authority key identifier: 4C:E9:03:79:BD:8D:04:37:4B:3A:DE:F0:60:D5:1A:E2:15:71:09:35
Certificate issuer: /CN=4ce90379bd8d04374b3adef060d51ae215710935
Certificate serial: 019A50E338FB5331F298154498C7EE2668EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOkDeb2NBDdLOt7wYNUa4hVxCTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft
Manifest number: F6
Signing time: Tue 04 Nov 2025 22:00:59 +0000
Manifest this update: Tue 04 Nov 2025 22:00:59 +0000
Manifest next update: Wed 05 Nov 2025 22:00:59 +0000
Files and hashes: 1: 1-78e97Jrk9Uh_jE37kqFne1h0ac.roa (hash: z20HWJG9MeJX/qHD5qtfUrm0n+lWcEMp1qD7mshzZJo=)
2: 1zKIP7xP-3mviAaLxu-Q9kO8TDw.roa (hash: i+hbxTxfZVrUKiiV4ml6H+EfTXIaAVLa/rzpycnZQE0=)
3: TOkDeb2NBDdLOt7wYNUa4hVxCTU.crl (hash: 6Yh57ELXfjm9PIGcT9WxvYAaQL9L+Mg+FE7Y+EnPJAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TOkDeb2NBDdLOt7wYNUa4hVxCTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:38:fb:53:31:f2:98:15:44:98:c7:ee:26:68:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ce90379bd8d04374b3adef060d51ae215710935
Validity
Not Before: Nov 4 22:00:59 2025 GMT
Not After : Nov 5 22:00:59 2025 GMT
Subject: CN=2955b29e8178e8c2889eedbaaeff8700a2c27ff8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a1:a7:5e:00:04:09:3e:83:56:9c:28:d7:18:
08:d3:8c:04:1e:a8:9b:13:d1:07:a1:54:1d:8c:95:
af:45:2c:41:52:f8:84:74:42:cb:36:e8:a2:ba:95:
8f:b6:ed:46:fa:e8:b6:1d:08:11:71:7a:3b:52:7b:
41:86:e5:6a:74:7b:70:89:90:b2:e6:7b:28:95:6b:
56:48:20:9a:d3:6f:5b:c4:f7:b6:90:da:2c:52:63:
05:65:b6:ce:2d:c0:4b:41:cf:88:40:95:42:e6:79:
83:f2:c4:18:71:72:1e:e0:df:e6:e8:3f:7d:29:83:
68:df:05:be:95:88:14:9b:f6:16:64:77:53:03:f3:
f1:66:29:71:f5:e2:ea:92:70:00:ec:22:30:cb:ed:
d9:46:2e:ba:0c:78:18:f8:f4:b7:69:53:b5:64:31:
2d:09:92:30:94:ce:1a:6e:87:52:77:d5:07:4c:e8:
ad:79:9e:b6:cf:4c:06:b1:ae:19:b8:ea:4d:24:0a:
a9:51:74:4d:21:f2:00:7a:35:47:de:6f:48:d9:67:
af:6c:c0:94:4c:1b:fc:f8:59:f7:e9:67:48:8a:cd:
32:14:fc:94:f7:7d:85:84:1b:ac:73:1d:ae:fd:24:
4d:18:00:b3:13:21:ad:ef:b6:9e:d8:d1:46:c8:29:
62:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:55:B2:9E:81:78:E8:C2:88:9E:ED:BA:AE:FF:87:00:A2:C2:7F:F8
X509v3 Authority Key Identifier:
keyid:4C:E9:03:79:BD:8D:04:37:4B:3A:DE:F0:60:D5:1A:E2:15:71:09:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOkDeb2NBDdLOt7wYNUa4hVxCTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:52:67:66:82:6a:6f:3b:b1:af:80:74:63:66:61:e2:be:64:
6e:58:ef:d5:e5:c8:04:9d:cf:ec:09:d7:80:39:1f:d5:92:c4:
5c:77:a5:2e:0a:02:44:04:57:e8:46:2d:08:0d:e0:13:52:4c:
eb:40:2b:b7:81:94:b3:0c:5a:ae:4f:cf:54:9a:2c:32:ad:c4:
e1:3c:e1:00:ab:94:f9:82:9e:1f:01:5e:7a:aa:0f:e1:98:48:
43:5f:71:cc:e8:45:c1:19:48:7d:4c:2b:d5:63:ac:3b:84:6a:
40:e5:9d:04:b2:cd:f8:79:cf:99:c7:b2:b7:e1:10:29:64:86:
0e:ee:5d:2a:fc:40:69:4d:fb:da:e6:8f:6a:f7:89:89:ba:61:
17:88:96:fb:94:2d:e4:8f:c3:f5:4e:ed:23:b9:9e:d1:37:fa:
30:b0:db:e6:2a:79:96:4c:97:13:07:d0:ee:23:be:ba:88:3a:
27:cc:e0:19:63:bc:c1:d0:9e:89:26:37:ef:ee:a5:13:62:d8:
5d:95:a2:e8:54:3e:73:ec:fc:dc:74:ed:49:20:87:f4:19:4e:
93:87:3e:2b:b4:57:b3:a8:46:ca:24:ac:4b:15:fd:a4:34:5a:
e8:9f:79:8a:1d:67:7e:b4:fe:4a:c7:1f:07:84:ba:4e:13:2f:
d0:1a:60:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:37:49 2025 by rpki-client