Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
File: TK0YVBTBauXSKaiqK_oV_vxxoiI.mft (raw, json)
Hash identifier: bggZE2KVrJkGaufFDjDwscFFxKsOcvVBz1dmdn/F5ZM=
Subject key identifier: BF:C7:AB:03:20:70:05:14:B3:FC:25:8E:F1:41:5C:7E:56:87:5A:E1
Authority key identifier: 4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
Certificate issuer: /CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Certificate serial: 019A51F549BBEF42395D87C85D90981704FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
Manifest number: 16A2
Signing time: Wed 05 Nov 2025 03:00:20 +0000
Manifest this update: Wed 05 Nov 2025 03:00:20 +0000
Manifest next update: Thu 06 Nov 2025 03:00:20 +0000
Files and hashes: 1: TK0YVBTBauXSKaiqK_oV_vxxoiI.crl (hash: D/ygSyzvNYTcICwl3xRn3jePa0FAEyohPU3G+hUOqzU=)
2: dxfaqcbOBYRpYzoiD3a-nfzNgyI.roa (hash: 9S4UtPoorxm2Y5jeo5Ht7EgjOkb+pCS05uOlyENLKPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:f5:49:bb:ef:42:39:5d:87:c8:5d:90:98:17:04:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Validity
Not Before: Nov 5 03:00:20 2025 GMT
Not After : Nov 6 03:00:20 2025 GMT
Subject: CN=bfc7ab0320700514b3fc258ef1415c7e56875ae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d2:62:2f:87:c1:ee:fb:81:10:b7:45:5c:9a:
e2:01:1b:37:83:cc:10:36:c9:cb:c5:e9:7c:96:8a:
96:4a:6b:bc:67:89:7f:b0:3c:8d:27:14:99:77:59:
9b:72:55:ff:09:80:39:a3:b7:e6:f3:8f:b5:bc:9c:
3f:a1:86:a2:01:07:8e:77:ad:b5:fa:86:2b:df:59:
93:de:2e:18:5d:d0:12:49:0f:4d:bd:b0:08:83:25:
5f:ba:1f:69:b6:c8:0a:51:37:35:43:35:b0:d4:73:
96:36:c4:28:21:e3:37:28:ca:d5:e2:0d:27:b6:80:
f6:e9:1e:27:65:c1:77:f5:8c:6e:13:47:40:ad:42:
52:5b:62:9a:e7:01:b3:48:05:15:87:7e:ad:15:96:
49:9c:14:b9:46:51:30:8a:4b:ca:1b:02:b7:79:23:
a1:d5:43:c5:5c:bd:40:25:57:55:cc:fc:5f:f9:37:
2a:78:48:b4:e6:ad:c2:6b:be:84:d2:c3:ef:a4:ef:
e7:b6:a7:0b:7e:97:bf:2e:52:68:45:88:9e:c2:fc:
18:83:86:cd:6d:4e:31:f0:17:e8:cb:96:58:f7:ea:
08:24:17:5b:15:d9:30:dc:49:a7:30:ac:7b:3e:51:
24:03:df:d9:cd:f8:a9:d3:c5:6d:c4:c9:1c:43:45:
cd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C7:AB:03:20:70:05:14:B3:FC:25:8E:F1:41:5C:7E:56:87:5A:E1
X509v3 Authority Key Identifier:
keyid:4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ff:c3:ca:4d:4e:4e:c2:0a:aa:28:df:f7:88:51:8e:ba:9b:
44:71:e1:a1:36:6e:37:36:48:ae:2f:9b:14:ea:2b:50:0c:a0:
68:6e:ec:5e:cf:9f:d3:d4:31:01:17:36:ac:a9:6a:e7:55:a3:
b1:63:04:29:e0:24:10:d0:55:a3:30:43:c2:7f:93:fb:7d:22:
5b:83:fe:d9:65:cb:e7:0f:8c:67:bc:e5:3b:35:fa:a9:08:94:
52:f9:49:eb:fc:e9:61:cc:2a:78:8b:50:cc:76:97:5f:bc:41:
23:7c:48:25:13:49:a6:dc:30:99:cd:e2:bf:d3:e7:82:d9:9c:
f9:4e:38:eb:55:b9:9d:52:49:77:b4:2b:d7:9d:a7:22:c4:14:
32:7f:77:a5:db:92:89:90:14:59:c1:9e:6f:7a:bf:af:db:e9:
e1:b4:fc:a1:66:a9:7b:0f:dc:9a:25:b9:ef:f2:3f:6d:a3:d8:
a4:6c:6e:f0:a3:42:70:fd:9b:60:e4:29:25:60:41:36:ca:e4:
81:87:d4:44:37:91:5c:ba:d0:d4:fc:fc:f7:3f:b3:9a:d1:02:
88:6e:a1:22:43:e3:d1:52:c5:7a:14:07:85:b5:aa:cd:2a:46:
7c:29:67:48:85:35:86:41:6f:35:3b:57:f6:4f:db:67:3d:f4:
e2:f4:75:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:28:49 2025 by rpki-client