Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: 1DxvZ9z1Jdz75vIPF2GVUvKdJixAvXdLiqaLsjS8JJU=
Subject key identifier: DA:EC:CE:70:02:9A:5C:25:6F:00:A4:E5:73:75:71:B7:16:3C:5D:05
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 0197C537A9D9C9461D0F07F80D46C57DC787
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 15BD
Signing time: Tue 01 Jul 2025 09:00:48 +0000
Manifest this update: Tue 01 Jul 2025 09:00:48 +0000
Manifest next update: Wed 02 Jul 2025 09:00:48 +0000
Files and hashes: 1: DvRXNlTCR35yGxJPggKI6LQ1TXY.roa (hash: uCs5edSvBBj2KY6s6HL8wAMD7pMX49G3e3NvxavAQGo=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: CiLJDrFyF/DwyJgtljQj+ZxmOHZtnnSEnOoa1aH3VBw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c5:37:a9:d9:c9:46:1d:0f:07:f8:0d:46:c5:7d:c7:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: Jul 1 09:00:48 2025 GMT
Not After : Jul 2 09:00:48 2025 GMT
Subject: CN=daecce70029a5c256f00a4e5737571b7163c5d05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cb:32:2e:ec:71:32:26:f7:d8:52:94:5f:a1:
34:cf:14:04:06:24:a7:85:ca:e3:4e:c8:f6:bd:bb:
30:09:a0:7f:2f:7c:aa:7e:86:40:d3:c7:5d:3d:b1:
01:8e:38:00:39:a6:ca:85:f9:2b:5b:03:1b:8a:1b:
03:50:02:9f:96:aa:39:f0:50:6d:00:c2:5d:db:45:
82:6f:7a:14:33:24:40:71:33:c4:54:fd:e3:b3:2b:
8d:20:68:e3:06:d3:1a:6a:be:86:74:0a:81:74:67:
68:37:9b:20:95:14:2f:58:0b:6a:3a:91:7c:b5:74:
e6:90:1c:56:52:df:c9:24:40:25:91:27:4f:fc:3f:
e0:cb:ea:a5:54:3a:8c:aa:1e:d9:3d:05:86:21:34:
d5:43:e3:57:48:3d:a7:5f:2b:a0:5a:53:e4:34:5e:
a7:94:e3:20:76:62:02:d3:4d:aa:4a:85:c9:c9:92:
e2:41:f1:ad:e9:90:65:72:75:eb:f8:92:73:bf:b2:
1b:53:21:ac:e4:8d:cb:dc:f4:12:bd:9b:d0:ae:7d:
7a:43:57:f0:33:72:af:68:8c:65:9e:c9:1e:e4:31:
0c:d7:61:ca:64:81:be:b3:53:7d:84:96:7e:a0:3b:
15:98:5e:4d:a5:e1:62:e0:17:7e:9e:5d:bd:db:7c:
ac:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:EC:CE:70:02:9A:5C:25:6F:00:A4:E5:73:75:71:B7:16:3C:5D:05
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:12:4d:64:f9:9d:7e:5e:0a:c1:a8:52:07:48:ed:bb:5a:2f:
3b:c5:7b:f3:53:f1:7f:0e:76:d6:96:36:d5:bb:9d:33:62:8b:
3f:a2:a9:c0:8f:02:9f:d4:9a:87:7f:fc:0f:05:c4:42:1a:34:
df:3e:a1:bb:10:9b:e0:0d:cf:bc:f8:f8:00:1e:79:81:a8:82:
59:1e:0b:87:d8:19:6f:65:1c:72:1e:47:7c:14:68:70:9a:2a:
32:27:d1:64:e8:72:9e:d9:67:01:3b:94:29:9f:36:5f:22:3b:
ad:17:9e:9a:96:ca:ff:e6:44:b3:bb:6b:55:a4:7d:e3:e7:ac:
79:07:1e:3c:6a:33:15:73:46:7a:ad:6c:43:bd:b2:eb:b7:03:
67:49:34:af:98:ce:c8:9e:f1:46:88:0a:b8:31:5a:6f:3f:e7:
8a:e2:e2:d9:99:70:31:a2:f5:38:b7:c3:9d:5c:b4:95:f1:e0:
4f:4c:c6:55:f7:e5:39:d5:9f:ce:ef:0f:0b:43:0e:f9:ea:36:
1e:38:ed:ab:75:d6:9c:0a:ab:f9:64:0c:90:0f:bf:e0:22:e0:
e4:67:35:d2:99:dc:4b:9a:39:e3:2c:77:90:49:23:0e:4f:95:
12:18:cd:ed:95:18:9d:f8:18:bc:2e:d7:36:44:d6:b1:cb:fc:
b3:ea:38:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 15:20:06 2025 by rpki-client