Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
File: TLbePNkQ87_3_4Xe1FLEMbHopSA.mft (raw, json)
Hash identifier: U0cUoDekKJVMSxQlqeYnIM2neqArE9QaZQcJCfK9gaQ=
Subject key identifier: 53:DE:73:FF:89:7A:0F:73:10:F2:4F:9C:76:CC:4A:90:05:79:76:4E
Authority key identifier: 4C:B6:DE:3C:D9:10:F3:BF:F7:FF:85:DE:D4:52:C4:31:B1:E8:A5:20
Certificate issuer: /CN=4cb6de3cd910f3bff7ff85ded452c431b1e8a520
Certificate serial: 019A4C610A1638D6CEF6A390C75C1669FB52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 01:00:19 +0000
Manifest this update: Tue 04 Nov 2025 01:00:19 +0000
Manifest next update: Wed 05 Nov 2025 01:00:19 +0000
Files and hashes: 1: TLbePNkQ87_3_4Xe1FLEMbHopSA.crl (hash: IfkGwTevfrrKfz1xOMc8beHfwoWyMp6m4pQZw/P8yC8=)
2: kE8LdGAFW614HUcjN1MoZxFokJs.roa (hash: XYMGtkKoA87TX5nzm+UQ3ylduTU9EvUGKlmdAtXqyu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 01:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:61:0a:16:38:d6:ce:f6:a3:90:c7:5c:16:69:fb:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cb6de3cd910f3bff7ff85ded452c431b1e8a520
Validity
Not Before: Nov 4 01:00:19 2025 GMT
Not After : Nov 5 01:00:19 2025 GMT
Subject: CN=53de73ff897a0f7310f24f9c76cc4a900579764e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b8:74:ce:1f:2d:9f:e4:44:36:1d:1f:e8:c9:
52:6e:05:3c:ee:b8:67:ef:de:d6:8c:eb:d1:9d:3e:
69:4f:2f:97:bd:a7:66:aa:ef:eb:42:cd:b4:e9:a4:
c0:dc:6f:17:2f:56:8d:eb:90:d4:f5:b1:d6:0d:09:
59:d9:c0:39:9b:99:6b:da:50:a5:4c:41:43:09:99:
26:a8:ca:53:4a:b6:07:b8:bd:8d:8b:c7:c9:33:e2:
ff:54:f5:07:aa:5a:4e:43:c1:fa:3b:71:4e:11:09:
61:89:5b:75:8a:36:9c:39:f8:17:b6:c6:b5:d3:17:
66:8f:c6:8e:1d:0c:73:49:56:d1:96:fa:84:15:8d:
fe:19:66:0a:e7:0e:88:de:20:d0:a1:96:31:f8:f8:
31:85:d8:c2:c2:06:2c:e7:95:03:1a:fc:fd:18:81:
56:c6:b6:63:9b:37:f7:8a:1d:84:56:94:0e:f6:7f:
e5:dd:4a:e7:f3:5c:ac:6f:86:3f:7e:48:48:09:ff:
cc:b9:ec:3d:a6:0e:c8:6d:60:2a:c4:88:12:d9:b5:
c0:ab:d0:c3:5e:eb:c2:d5:4d:4a:c4:a5:43:3f:48:
36:83:d9:16:16:82:ec:cb:32:13:a3:01:b8:23:e6:
7f:c4:66:62:70:98:ab:d5:38:5e:51:e0:9e:4b:1c:
15:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:DE:73:FF:89:7A:0F:73:10:F2:4F:9C:76:CC:4A:90:05:79:76:4E
X509v3 Authority Key Identifier:
keyid:4C:B6:DE:3C:D9:10:F3:BF:F7:FF:85:DE:D4:52:C4:31:B1:E8:A5:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:58:59:5c:ab:47:18:7d:90:3f:d9:e3:5d:d1:8b:6b:1b:ed:
62:ca:e5:ec:53:0b:7c:9b:34:e2:23:98:a6:22:30:9d:3a:3c:
0d:c7:61:3b:56:ab:a1:2e:5c:a4:67:55:bc:15:a0:60:93:49:
85:33:a2:1d:d1:86:6a:e6:b6:76:63:52:33:8e:c6:f2:23:b3:
a5:e0:44:35:7e:bf:ff:c0:41:60:d1:6a:ff:c1:2a:aa:b8:fb:
fb:ec:d4:f1:5a:a1:f5:72:49:e0:9e:2e:04:01:7d:85:9b:48:
0f:f5:45:2a:9c:d0:45:96:dd:32:82:31:a7:e3:46:e4:98:b5:
39:7f:9c:2e:4d:57:39:72:80:e8:21:2c:cb:49:00:79:d1:a2:
26:d6:cc:ac:c4:25:8e:17:6d:5f:03:e1:7a:98:65:38:19:f4:
9e:44:01:40:4a:51:25:d6:75:ce:0e:0b:99:aa:05:02:ed:48:
10:60:9a:52:b5:b8:85:18:d8:90:60:c1:f2:3a:b6:b9:a8:fb:
fb:b6:e3:2b:01:61:cd:d1:dd:f1:66:00:18:ec:58:a5:5e:65:
31:8d:65:dc:78:96:33:f9:2a:8e:9c:4c:da:d0:85:f0:6e:ca:
1b:c4:2f:1c:ee:b0:d7:63:b8:37:69:1c:d4:60:bb:86:4c:be:
58:e7:ab:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:51:03 2025 by rpki-client