Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
File: tu2bXLS2SGbDg97kV2v_P_h1JC0.mft (raw, json)
Hash identifier: P4/oy0hNj8zDhOrHGcD3lUOEfwG+4EGH76qm+uLtufk=
Subject key identifier: FF:14:4B:67:1B:01:64:8C:B7:0B:AB:DC:A8:57:4B:75:28:D1:C3:36
Authority key identifier: B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
Certificate issuer: /CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Certificate serial: 0197B77C160FBFFA2E9D9D48E05458D0C85E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
Manifest number: 0D2D
Signing time: Sat 28 Jun 2025 17:00:51 +0000
Manifest this update: Sat 28 Jun 2025 17:00:51 +0000
Manifest next update: Sun 29 Jun 2025 17:00:51 +0000
Files and hashes: 1: Cr7WIZXJqqSxx1MgWk3fJvY56gA.roa (hash: W0p2Ng/L4A+CUhGlPSgje47dkJ8+aMEjdUAnh4zo9Rc=)
2: tu2bXLS2SGbDg97kV2v_P_h1JC0.crl (hash: dr4QbHHVIQzdIkdbYyRdClWnyEJiyk1D94jKNRLnD70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:16:0f:bf:fa:2e:9d:9d:48:e0:54:58:d0:c8:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Validity
Not Before: Jun 28 17:00:51 2025 GMT
Not After : Jun 29 17:00:51 2025 GMT
Subject: CN=ff144b671b01648cb70babdca8574b7528d1c336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ca:73:86:df:f2:f6:8d:9d:19:c0:e9:ce:56:
45:2f:18:fb:9b:64:cf:5d:7f:e2:91:c0:08:28:6f:
91:99:b5:57:27:27:77:38:7b:30:85:aa:db:7c:8c:
a7:5e:39:1f:d5:46:92:01:22:d4:c7:92:c8:cd:84:
0e:be:15:5b:d3:bf:9a:17:bf:91:0c:9a:b8:f3:5f:
13:ce:da:97:ed:07:40:d8:df:26:cc:54:cd:8c:17:
66:48:c8:56:de:89:af:7c:13:0b:b1:8b:b9:86:18:
30:de:9a:6d:57:6d:6a:89:1f:1d:04:40:5c:47:cf:
13:d5:97:af:c3:7f:c7:ed:38:66:ff:4a:81:fb:5b:
2b:2e:8b:57:0d:d7:43:f0:f0:ae:4a:36:f3:e5:50:
3c:4e:d5:3e:fa:e7:3d:bd:47:f4:e6:d3:d8:9e:f1:
2b:cd:63:5d:aa:f2:43:b9:7e:7b:58:9b:cd:0d:7b:
50:b1:a3:e8:78:14:cc:99:cd:e4:e7:84:57:74:4f:
2d:4a:77:60:2e:e9:96:8a:aa:10:38:1a:55:8f:f5:
b5:24:d6:e3:72:ab:37:9a:f0:21:99:bf:5e:57:1e:
21:4d:c9:fb:87:ad:1c:9f:28:61:9f:00:92:13:8b:
c4:ba:91:c2:90:8d:82:b8:dd:6a:c2:fc:4c:cd:cc:
06:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:14:4B:67:1B:01:64:8C:B7:0B:AB:DC:A8:57:4B:75:28:D1:C3:36
X509v3 Authority Key Identifier:
keyid:B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:b4:63:93:d6:79:ef:33:b4:71:4f:be:71:6e:39:68:54:67:
05:dd:bf:c5:86:77:0a:6a:0e:08:ba:cb:bd:24:bc:1d:3d:3a:
ab:96:fb:82:9e:bf:b6:c9:73:c9:d0:c9:57:4d:90:0c:af:cd:
b3:a7:8b:08:60:9f:78:bf:1a:b9:2b:c1:a1:f2:70:65:e7:3f:
b7:c3:ec:9c:a0:56:bd:97:25:f6:b7:68:8d:18:04:d6:44:40:
f4:03:75:7b:10:8e:44:ae:3a:a5:9c:41:04:3d:36:8c:1e:6a:
9c:3e:61:87:29:47:a3:51:b1:5c:af:3d:51:27:78:9b:f1:6a:
62:d2:e3:0c:1e:39:9b:31:54:a5:c4:3f:c3:de:81:e2:de:f4:
a8:f8:b8:e3:dd:76:9a:be:9c:39:42:0d:6f:0e:fd:c5:fd:d0:
2d:5f:78:91:b1:56:79:be:c2:6b:21:e0:88:8e:f0:55:b2:07:
94:b4:27:99:69:96:69:91:b3:81:14:b0:fe:bb:68:32:de:0b:
81:70:eb:83:6e:bb:8a:a6:68:1c:ee:c7:91:51:b5:30:4e:db:
99:36:22:4b:d5:8c:07:56:17:89:9c:bf:1e:b5:cb:85:0d:39:
17:2e:c0:78:e1:fd:22:90:02:a3:da:48:6e:e1:21:bc:04:74:
72:29:c6:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:00:05 2025 by rpki-client