Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
File: TfkmWGAQlO1kmFxkxpUr40FjAc4.mft (raw, json)
Hash identifier: 3cG0VD2vu2Y0MEGkRqPkABK/eyculRhshNscSDvsFoA=
Subject key identifier: 41:A6:E8:6B:BB:B3:9F:C0:7E:2F:FF:6D:5A:35:62:B2:C1:15:E5:F1
Authority key identifier: 4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
Certificate issuer: /CN=4df92658601094ed64985c64c6952be3416301ce
Certificate serial: 019A50E40425ECFF2D1EF5969051E3E6042C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
Manifest number: 0979
Signing time: Tue 04 Nov 2025 22:01:51 +0000
Manifest this update: Tue 04 Nov 2025 22:01:51 +0000
Manifest next update: Wed 05 Nov 2025 22:01:51 +0000
Files and hashes: 1: 42VDtF9LMj3RUZlBTr5Tpxb7XhY.roa (hash: 06Fp4iuAbTOsazThfCr6hEmyN81BPyfi3nXeyKKT6d0=)
2: TfkmWGAQlO1kmFxkxpUr40FjAc4.crl (hash: 7oTbSJ2tjHdvb3BqF+bQHS44X6+3KNJGvM92thTtffM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e4:04:25:ec:ff:2d:1e:f5:96:90:51:e3:e6:04:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4df92658601094ed64985c64c6952be3416301ce
Validity
Not Before: Nov 4 22:01:51 2025 GMT
Not After : Nov 5 22:01:51 2025 GMT
Subject: CN=41a6e86bbbb39fc07e2fff6d5a3562b2c115e5f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3d:b0:4d:32:f8:db:e7:da:bf:5f:c5:bc:d4:
5e:79:36:23:e6:2d:12:2f:07:2e:db:01:91:df:e8:
6d:43:d2:4e:9b:5c:f8:7a:3b:b9:72:97:45:ba:62:
8e:b3:ec:85:3e:37:86:54:b2:56:3c:39:22:03:93:
8c:b8:22:6e:d5:20:68:54:65:a6:57:29:ef:28:f3:
f9:f6:f8:d9:97:9a:68:76:b7:37:1a:b2:9a:5a:da:
38:3e:01:77:2e:42:f5:13:b3:44:22:5e:f8:ac:84:
26:b9:3d:2d:33:1d:47:01:fa:c6:0f:0e:a7:e4:e2:
d5:6f:42:c0:d4:90:1d:d9:ea:5e:6e:34:92:d2:0e:
d9:8f:a6:85:93:f3:b8:e1:6c:d4:a3:57:50:a3:78:
aa:13:7c:3f:ae:06:1e:d4:0a:01:55:45:9f:8f:c2:
fe:59:68:13:33:f1:31:d3:f8:aa:f3:79:bd:38:5e:
d5:fa:09:c7:fa:cb:d2:46:88:83:5c:73:4c:7c:aa:
14:38:9d:67:72:59:d6:db:9e:a1:0f:4c:5d:76:bb:
41:34:75:e7:5b:eb:d4:06:f7:5a:29:93:14:0a:7a:
2b:4d:d8:45:29:7d:0d:44:55:c7:90:52:8e:a5:2c:
53:17:42:40:ed:50:55:87:ca:ec:40:10:25:3e:ea:
13:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:A6:E8:6B:BB:B3:9F:C0:7E:2F:FF:6D:5A:35:62:B2:C1:15:E5:F1
X509v3 Authority Key Identifier:
keyid:4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:3e:44:68:f5:fb:29:57:bd:b8:0b:a9:b2:89:40:48:de:31:
89:45:f0:ed:25:65:be:0f:eb:ac:fc:8d:3d:63:32:72:c0:3f:
1d:e9:cd:01:e5:92:f7:a0:c6:2d:07:c9:6d:a9:22:be:50:50:
96:fb:e2:94:2b:56:7f:c0:c8:9d:d2:6d:c5:c2:cf:57:69:15:
e7:19:3a:44:1c:ba:46:40:97:96:30:38:ec:ce:71:15:c3:3c:
65:21:00:a6:6c:53:9a:93:b9:5d:11:2e:b4:9b:ad:96:0f:30:
a5:1d:e1:1a:3f:83:a9:c1:b4:a6:6c:3c:e3:ec:2c:82:92:46:
90:24:fe:b7:8f:87:5e:8b:20:05:50:cf:89:2b:69:a1:33:c0:
ea:27:1c:1b:31:9c:14:f3:9f:18:6b:95:da:f7:9d:58:47:19:
46:6f:bc:e6:79:88:f7:4a:18:07:28:cc:1e:a6:97:cb:4e:10:
5e:01:db:94:0e:ce:55:06:65:60:14:2d:f6:77:1e:38:ac:25:
4b:0b:0e:1e:25:14:99:a1:15:64:98:49:86:f6:45:7f:6a:c0:
cf:ac:06:fb:28:50:fc:1b:5c:75:01:b9:6b:a8:cc:04:cb:ad:
1f:35:f9:a6:8d:08:54:e5:f5:0b:3b:64:9f:82:d8:55:8b:3b:
37:a3:48:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:00:43 2025 by rpki-client