Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft
File: toqZTkLmDaT0pUdbFfXidRbHzxQ.mft (raw, json)
Hash identifier: u8phc65Et1wPXIk8ZkG50yfqvO2azGd1dILIHjw3Twk=
Subject key identifier: 47:C5:C0:94:67:C2:B7:F6:DC:B0:F7:FF:14:ED:EB:42:3A:0F:18:BB
Authority key identifier: B6:8A:99:4E:42:E6:0D:A4:F4:A5:47:5B:15:F5:E2:75:16:C7:CF:14
Certificate issuer: /CN=b68a994e42e60da4f4a5475b15f5e27516c7cf14
Certificate serial: 0197C15B1B5CD2FE6CB03490FCF67591971C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft
Manifest number: 15BA
Signing time: Mon 30 Jun 2025 15:01:02 +0000
Manifest this update: Mon 30 Jun 2025 15:01:02 +0000
Manifest next update: Tue 01 Jul 2025 15:01:02 +0000
Files and hashes: 1: qKf3kSwed1sQ8jIUt0CVeHwDYyo.roa (hash: JvCwYzHwZc3gc1jfWnqqm/e28zS68AlD89E8H1B2hTo=)
2: toqZTkLmDaT0pUdbFfXidRbHzxQ.crl (hash: BxyMupjgtE+nHNmL/ZVmbcddhB/M2d0SKTzyW+aj5lg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 14:23:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c1:5b:1b:5c:d2:fe:6c:b0:34:90:fc:f6:75:91:97:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b68a994e42e60da4f4a5475b15f5e27516c7cf14
Validity
Not Before: Jun 30 15:01:02 2025 GMT
Not After : Jul 1 15:01:02 2025 GMT
Subject: CN=47c5c09467c2b7f6dcb0f7ff14edeb423a0f18bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bd:56:8b:01:72:f0:c3:c7:c0:40:57:0c:4f:
d9:ca:9f:5c:95:58:96:91:17:0c:78:dd:a2:e9:5d:
e6:de:2b:00:19:9c:d4:de:b3:cd:63:f5:f1:a9:fc:
a1:6a:ad:30:25:8c:0f:42:c5:fa:97:25:7c:61:55:
a3:85:a1:d6:d7:74:db:a3:41:fb:ab:8f:2c:91:02:
91:92:4b:d6:87:0d:14:62:bb:75:e2:63:33:09:06:
b6:4b:83:45:77:bb:2f:8e:34:98:45:90:96:41:7b:
87:0d:14:1b:50:1d:8d:92:a7:44:1c:d4:24:90:9c:
03:e1:c7:fd:2f:a2:00:b4:6f:58:4e:0a:6c:41:89:
bc:9d:8f:e5:b8:c7:de:45:55:b7:cb:11:b8:be:5e:
92:16:3f:40:39:5a:73:af:44:01:48:41:27:7c:8b:
91:be:09:f8:ee:1f:3d:6f:58:09:a9:6a:7a:39:a6:
6c:45:7c:9a:55:5b:b5:a2:1e:2e:10:e2:f8:cf:cc:
44:12:ca:62:92:a4:d9:bb:8a:16:1f:70:1c:01:03:
bb:38:4e:64:f5:12:f4:df:4c:ba:d9:52:ab:36:98:
e9:fe:37:86:7e:2d:e9:9f:48:06:9f:38:b3:d8:0f:
80:5e:a7:5d:2d:99:ed:de:8e:b4:8f:72:f6:fe:4f:
f3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:C5:C0:94:67:C2:B7:F6:DC:B0:F7:FF:14:ED:EB:42:3A:0F:18:BB
X509v3 Authority Key Identifier:
keyid:B6:8A:99:4E:42:E6:0D:A4:F4:A5:47:5B:15:F5:E2:75:16:C7:CF:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:3d:11:9c:d1:6e:f3:15:ec:19:f8:24:eb:d7:3c:15:ad:d1:
8b:45:c7:4c:4e:89:14:ad:52:98:03:45:95:cd:1b:8b:dc:2c:
2c:36:fb:eb:33:58:54:f7:6f:21:f2:45:a5:80:34:9d:8d:1c:
ca:be:ec:42:96:65:a2:de:f1:e0:e8:da:bc:3a:f8:7c:17:ba:
ba:74:06:dd:63:d4:c8:c7:94:d8:b1:b4:0a:07:a5:0e:92:db:
02:6a:b3:1e:23:e1:6e:54:05:02:4f:e1:31:31:9f:ba:d5:6b:
c1:f2:c1:a7:15:a1:04:b6:bb:98:c5:ab:4a:a4:9e:89:5e:8f:
6f:97:d9:df:8e:1e:6f:c8:37:5e:b3:5e:57:3f:26:e6:b2:13:
81:63:17:60:7d:99:bd:c3:c1:94:d4:c1:d3:cc:58:6e:97:4d:
dd:66:ed:d4:94:f4:08:37:1f:da:0d:a8:43:44:5d:ae:b5:c2:
2d:f0:f7:87:9f:13:17:7f:33:b9:60:66:6f:61:84:f8:55:ab:
04:aa:01:43:71:34:ee:98:a4:39:7d:ec:94:ad:ad:2a:8d:98:
5a:7a:00:a0:b9:ca:51:91:aa:bd:dd:91:10:14:55:58:90:25:
2e:3a:41:11:2a:70:7f:d0:ae:4d:95:53:b7:18:2e:9a:f0:1c:
32:1a:a8:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 22:31:17 2025 by rpki-client