Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
File: tYUi2sa83oxIEzNZkTKhYgDmpb4.mft (raw, json)
Hash identifier: DhGBI5+BI+EyP9SHLeWWM8JlHPCnrMCQRpE4S8BL63o=
Subject key identifier: 13:C0:5D:C3:F7:B7:99:E9:C1:FA:2C:1D:38:4D:52:EE:76:19:DC:1E
Authority key identifier: B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
Certificate issuer: /CN=b58522dac6bcde8c481333599132a16200e6a5be
Certificate serial: 0197BA7EE9CDDC90D18BE7D9BF46F6C44856
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
Manifest number: 0911
Signing time: Sun 29 Jun 2025 07:02:48 +0000
Manifest this update: Sun 29 Jun 2025 07:02:48 +0000
Manifest next update: Mon 30 Jun 2025 07:02:48 +0000
Files and hashes: 1: 5moGvKAoN95-3rdirRXOwCahhvs.roa (hash: SkhAzMm5Jb5vcIiM14h4SYz3DQTRyqaR2eF+qq4Rdl0=)
2: RuuQV8FVAOprAh_8jcQjyKszeBc.roa (hash: kX89cdA0JPKtfSqgIarOumMCZ1cTxgD0uR8aSG1ObUs=)
3: tYUi2sa83oxIEzNZkTKhYgDmpb4.crl (hash: uoky4yg1AGVte+h+h4k89+MG6APn9iRpp+Oa7vlERR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 07:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7e:e9:cd:dc:90:d1:8b:e7:d9:bf:46:f6:c4:48:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58522dac6bcde8c481333599132a16200e6a5be
Validity
Not Before: Jun 29 07:02:48 2025 GMT
Not After : Jun 30 07:02:48 2025 GMT
Subject: CN=13c05dc3f7b799e9c1fa2c1d384d52ee7619dc1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7e:b6:fd:eb:a2:e1:10:74:b9:07:81:06:7e:
f6:bd:ac:21:0d:b4:26:e0:60:8a:26:3d:cc:41:77:
3b:15:73:5d:3f:1f:8e:4e:52:e2:c0:9b:01:35:7d:
38:09:37:ac:fa:e1:b4:ae:68:87:82:f0:c5:c1:1e:
a6:a8:e0:f0:cb:89:e6:e2:8a:c8:8e:6e:89:7f:fc:
34:bc:09:10:df:b7:51:13:20:8c:17:f7:7c:ee:dd:
d6:f7:de:1e:49:79:bc:60:f8:1b:e8:86:28:5c:99:
38:26:31:da:4f:d5:c2:1a:9a:f8:f9:34:c1:13:57:
87:aa:47:57:1a:94:65:3c:24:b7:03:8b:b5:43:f5:
94:df:98:f9:f7:75:53:c4:7f:23:26:6b:f1:74:34:
87:85:3a:f3:30:54:95:35:d7:d7:49:f1:3a:33:b0:
13:7c:08:0e:ea:bc:2b:24:0a:10:04:03:bd:5f:af:
ca:7e:8e:fd:7a:56:49:d8:e7:26:19:1f:cc:cb:0d:
8e:ad:ea:69:60:f6:8f:15:0d:6c:ee:b0:78:1b:ac:
28:37:c2:83:8d:a9:54:34:be:c5:c9:8c:79:c0:15:
40:d5:9a:a7:cb:c7:f5:f4:f4:4f:06:63:76:30:a7:
f4:bd:28:f1:ee:86:4e:f0:85:aa:b8:86:4c:45:1f:
18:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C0:5D:C3:F7:B7:99:E9:C1:FA:2C:1D:38:4D:52:EE:76:19:DC:1E
X509v3 Authority Key Identifier:
keyid:B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:a1:ef:33:3e:5d:fe:3d:e6:1e:33:46:54:e2:0c:08:87:58:
2f:64:e9:40:c0:a1:46:54:c2:45:7d:a5:e7:21:b8:92:bc:d5:
03:02:e5:77:72:50:6a:f6:89:3c:e2:68:76:90:96:87:d2:04:
73:bc:68:fb:e6:73:91:29:48:9b:ec:35:37:7e:bf:f5:d8:50:
18:3c:e5:b8:f0:e1:ac:b4:e0:35:0d:fd:2f:e2:35:7c:7b:3a:
ae:98:a8:06:9a:97:ae:58:e5:8d:5a:72:60:b1:d3:b7:61:46:
8a:e2:97:ac:cf:96:40:10:3c:9c:14:5b:e8:8c:90:e1:6a:b5:
64:f2:86:7f:24:0f:ce:bd:3d:d6:aa:40:91:73:37:4e:00:62:
8e:93:43:3f:05:e2:ea:06:8f:95:d3:32:04:21:db:17:8d:75:
4a:11:20:bc:2f:6d:19:20:db:9b:5a:d3:cd:14:39:e1:24:b3:
9a:36:2d:e8:a5:83:fb:de:99:a1:f6:9f:58:b1:fa:ee:10:85:
8f:08:da:26:64:7a:e8:7d:ff:77:c3:7b:bd:c9:44:10:67:a5:
88:73:2d:a2:e1:00:e0:ac:c2:a2:8f:9f:94:da:97:56:74:ab:
f0:d6:ac:f1:a6:57:48:e7:00:c8:85:d9:64:90:36:f1:22:94:
d3:d2:32:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 16:47:26 2025 by rpki-client