Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
File: TK0YVBTBauXSKaiqK_oV_vxxoiI.mft (raw, json)
Hash identifier: tdl9lX8QUVCjV4u1vTpuWiyvyRaSWXwyAFCW/Jjw3Tg=
Subject key identifier: BA:D1:C6:E8:97:74:89:A0:0C:59:B2:72:46:3E:E8:F4:80:10:C4:3F
Authority key identifier: 4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
Certificate issuer: /CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Certificate serial: 01987CAE483FF0DB9E96769B8A2D0F3A6F32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
Manifest number: 15AF
Signing time: Wed 06 Aug 2025 00:00:53 +0000
Manifest this update: Wed 06 Aug 2025 00:00:53 +0000
Manifest next update: Thu 07 Aug 2025 00:00:53 +0000
Files and hashes: 1: TK0YVBTBauXSKaiqK_oV_vxxoiI.crl (hash: T0fXqmedPiIue05/x1c1GFcdY3N9j9FZ2KaCrJKQOro=)
2: dxfaqcbOBYRpYzoiD3a-nfzNgyI.roa (hash: 9S4UtPoorxm2Y5jeo5Ht7EgjOkb+pCS05uOlyENLKPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:ae:48:3f:f0:db:9e:96:76:9b:8a:2d:0f:3a:6f:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Validity
Not Before: Aug 6 00:00:53 2025 GMT
Not After : Aug 7 00:00:53 2025 GMT
Subject: CN=bad1c6e8977489a00c59b272463ee8f48010c43f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c2:7f:41:77:0d:9c:aa:f1:51:fd:45:45:4c:
bb:5f:d5:ba:13:6f:3a:68:97:28:2e:5f:e6:28:92:
f2:09:ed:fd:8c:44:22:02:df:f8:f9:49:9c:aa:39:
87:c9:ab:28:79:ed:53:13:3b:bc:87:35:fa:5a:c4:
d7:f1:5a:d6:3a:a2:b7:8f:cc:41:11:4f:b7:54:50:
6d:e0:8a:fe:19:10:7d:5f:35:65:ff:f9:35:8c:6c:
95:26:65:15:60:02:ac:35:64:e7:ca:51:3c:87:c2:
74:66:32:be:32:fa:6e:50:f0:88:64:af:25:53:cc:
d9:a7:6c:c9:ef:a7:8c:00:a6:69:0a:e2:2e:62:ad:
78:2d:66:6d:62:0a:50:b4:50:b9:9a:b9:23:da:c0:
2a:f1:4f:7c:6c:ec:e5:c9:8b:f3:e7:ae:2e:be:c5:
43:23:70:30:92:1d:a2:4f:32:14:0f:46:19:9c:42:
ed:2f:1e:2f:7a:d6:1f:87:61:43:13:66:6b:c9:bf:
d3:31:4e:1d:5e:22:9e:cd:e8:ea:eb:b6:e7:7b:a0:
7b:00:98:ec:0c:d2:df:b9:e3:7d:76:d8:9c:db:aa:
a4:e8:68:4f:41:da:59:b1:b0:0d:0f:63:b0:d6:ab:
58:9f:72:a3:0a:86:b7:e7:cd:bf:63:53:29:09:ec:
ee:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:D1:C6:E8:97:74:89:A0:0C:59:B2:72:46:3E:E8:F4:80:10:C4:3F
X509v3 Authority Key Identifier:
keyid:4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:dc:68:cb:0b:4a:a3:d2:65:bb:2a:a2:90:17:cf:12:9d:9c:
0d:3a:9f:33:5b:ad:7d:7e:14:8e:e1:c2:66:06:39:6b:78:b5:
a4:5b:bb:ef:94:ca:b0:5b:a3:5a:f6:63:b5:53:b9:a2:69:7a:
03:62:ce:be:5f:8d:f7:6b:c2:14:5f:34:f6:6b:9a:c4:0a:81:
11:33:71:94:0e:63:de:5e:08:c2:bf:b4:27:70:d3:ef:1d:05:
57:68:a7:05:86:30:11:d6:0c:58:0a:f2:2b:c0:32:fb:be:ea:
d5:65:1a:28:09:34:d6:c8:58:73:ea:56:7c:8c:50:37:78:71:
71:fc:a8:ff:36:35:b6:ce:e7:65:78:21:3b:b5:03:86:10:b4:
1d:ec:3f:0a:8f:64:86:f3:21:38:c2:4c:1b:a4:e9:d0:8f:cc:
7b:f3:18:f6:a1:a5:f2:c5:c8:97:1b:91:a5:77:ce:3b:25:79:
65:12:51:52:19:69:54:56:54:40:57:5c:ef:33:dd:f6:7a:86:
c7:c7:b0:3c:ff:ef:bd:c8:eb:2b:38:1c:66:29:11:1d:79:42:
1f:50:2a:b9:b8:02:f7:e1:db:e5:f6:78:54:5b:d4:db:c6:53:
d3:81:ac:75:4b:b3:b9:7f:cd:b2:91:35:99:13:bf:1a:e2:bd:
a0:ed:8a:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:54:42 2025 by rpki-client