Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
File: TfkmWGAQlO1kmFxkxpUr40FjAc4.mft (raw, json)
Hash identifier: pOMHrnD00zPCdE28A8MztoYuqp/YZqgoEr2LIo3Hqdc=
Subject key identifier: 55:B4:5C:C8:CE:7A:90:10:CB:6E:DC:89:00:78:E2:C8:EF:40:92:9B
Authority key identifier: 4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
Certificate issuer: /CN=4df92658601094ed64985c64c6952be3416301ce
Certificate serial: 01987D8BC214FC79A13BA5C28B35AF5644A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
Manifest number: 0887
Signing time: Wed 06 Aug 2025 04:02:47 +0000
Manifest this update: Wed 06 Aug 2025 04:02:47 +0000
Manifest next update: Thu 07 Aug 2025 04:02:47 +0000
Files and hashes: 1: 42VDtF9LMj3RUZlBTr5Tpxb7XhY.roa (hash: 06Fp4iuAbTOsazThfCr6hEmyN81BPyfi3nXeyKKT6d0=)
2: TfkmWGAQlO1kmFxkxpUr40FjAc4.crl (hash: 2fstHQ3q9ibDNKY8bTA7PEg8jYYCgIo8TpeKvRpdkSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 04:02:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8b:c2:14:fc:79:a1:3b:a5:c2:8b:35:af:56:44:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4df92658601094ed64985c64c6952be3416301ce
Validity
Not Before: Aug 6 04:02:47 2025 GMT
Not After : Aug 7 04:02:47 2025 GMT
Subject: CN=55b45cc8ce7a9010cb6edc890078e2c8ef40929b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9f:76:32:b8:d1:53:49:0b:59:d4:4b:1e:55:
dd:96:d9:11:c0:01:d9:0c:89:02:de:a3:67:75:59:
7e:0d:fc:31:29:6a:bb:29:e5:34:93:1b:c9:63:93:
8f:57:c1:2f:b7:88:b8:6e:54:95:a7:ca:e7:2b:4b:
d3:a8:70:cd:7e:f7:5a:1f:7a:45:39:7f:76:30:60:
f6:2a:af:59:f2:6a:fd:aa:09:28:2c:cc:2a:68:f6:
94:3a:dd:c5:44:05:32:e4:47:88:1d:76:36:3a:e1:
fc:5f:f2:01:06:a7:64:ef:54:07:94:1c:e1:04:94:
44:f7:2a:be:a7:af:97:5c:97:16:b0:d2:fe:c8:fb:
89:ca:ee:bf:04:03:1c:73:14:38:6d:e7:14:0f:7d:
46:ec:67:19:f4:22:c5:87:22:6a:d1:80:7f:22:0e:
f0:38:7d:8f:29:f2:89:37:62:99:bf:cf:b6:ee:0b:
f6:25:97:32:40:66:ae:44:09:5f:8b:09:d8:e3:91:
75:ff:9b:e0:83:bd:69:6d:f6:ec:50:bf:24:d7:98:
c4:a1:08:ed:f8:5f:40:76:fe:bf:ac:14:2b:4f:de:
33:21:aa:48:2d:5c:3e:2c:f3:0b:2f:9d:87:70:25:
8c:2b:f0:f6:22:40:e0:03:d5:c7:2f:b2:f0:1f:8e:
4b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:B4:5C:C8:CE:7A:90:10:CB:6E:DC:89:00:78:E2:C8:EF:40:92:9B
X509v3 Authority Key Identifier:
keyid:4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:57:b6:31:bd:b5:e9:cd:54:37:95:d0:98:a0:05:6f:75:c9:
2a:52:a4:8a:e4:1f:2d:4e:97:69:02:87:7b:58:f3:84:29:4d:
0e:bf:d0:73:36:ac:3c:b7:42:c9:37:89:bb:5d:10:84:3f:f9:
5d:e1:0c:11:66:30:9b:fb:14:f8:b6:7b:44:5e:22:fa:44:4a:
5e:ef:21:55:22:33:43:ff:c4:0a:0f:54:3a:5e:0b:ce:eb:d5:
c2:f0:14:f3:19:61:7d:5f:4e:d0:a4:43:b2:2e:df:45:c6:55:
cd:02:32:44:15:b3:f5:31:04:cd:57:5b:48:4d:3f:9d:42:07:
cd:22:1f:61:c0:79:8d:ce:f3:6f:e4:9f:11:18:51:9e:39:90:
48:d5:a6:02:b1:38:90:e3:c7:24:40:98:5a:ff:e7:0d:7b:a3:
5e:85:1c:dd:f2:23:12:27:86:e3:5c:1e:c2:76:a3:ef:2b:35:
9d:33:e5:2f:10:af:13:3c:b7:6b:50:9d:dc:64:29:72:6b:f4:
87:8c:ae:50:f0:b6:40:a4:52:8f:8f:62:32:36:2d:25:0b:a1:
df:69:8f:00:15:17:24:65:89:83:b8:e9:7d:49:4b:58:2f:90:
71:ee:aa:e0:6f:0c:36:67:92:97:b5:ce:19:cd:11:05:bf:bd:
67:04:f5:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:09:33 2025 by rpki-client