Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
File: tIoonrst1oBtYLjFrQNseY9mugY.mft (raw, json)
Hash identifier: djPQEyvEE+tj2p7dWW6KiWgOFLmA9yXL9Xx3+Pm7GDo=
Subject key identifier: 4F:6B:B0:76:AB:8D:CB:10:88:B3:BF:D1:EE:AA:26:B0:93:69:61:A3
Authority key identifier: B4:8A:28:9E:BB:2D:D6:80:6D:60:B8:C5:AD:03:6C:79:8F:66:BA:06
Certificate issuer: /CN=b48a289ebb2dd6806d60b8c5ad036c798f66ba06
Certificate serial: 0197C15B1E45DE1B2AFF80AD72673212A76B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
Manifest number: 0475
Signing time: Mon 30 Jun 2025 15:01:03 +0000
Manifest this update: Mon 30 Jun 2025 15:01:03 +0000
Manifest next update: Tue 01 Jul 2025 15:01:03 +0000
Files and hashes: 1: nKxswHwUBE_XIOIyQ1Qpw5XOFvo.roa (hash: xZYcCOMTf00TiuBXWvG+qaD8S6ouJ5YlmrR2oW0i9z0=)
2: tIoonrst1oBtYLjFrQNseY9mugY.crl (hash: PIE//ueKn+//0/5WJDUrRDoA5j3ukXkreznqvCE7Qgc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 14:23:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c1:5b:1e:45:de:1b:2a:ff:80:ad:72:67:32:12:a7:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b48a289ebb2dd6806d60b8c5ad036c798f66ba06
Validity
Not Before: Jun 30 15:01:03 2025 GMT
Not After : Jul 1 15:01:03 2025 GMT
Subject: CN=4f6bb076ab8dcb1088b3bfd1eeaa26b0936961a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:37:10:ce:ce:7e:ef:1d:7a:94:c1:ae:47:04:
ab:20:22:a7:d1:8e:ea:28:2f:d4:78:54:48:ad:e5:
b0:c7:33:37:7b:a2:03:9e:42:9d:fb:eb:25:4f:13:
c9:82:0f:81:bb:dd:59:1a:e9:0a:68:08:7f:37:34:
ba:8f:25:f1:18:66:7a:77:0f:ef:09:88:bb:7c:5e:
04:ce:07:a2:5c:5e:d6:da:56:8d:dc:69:d8:a0:a1:
05:51:aa:2b:ea:03:a3:6a:d8:b7:6d:4f:14:f4:12:
93:01:a3:4f:02:83:e8:2c:73:dc:9f:b6:7e:0d:1d:
39:89:a0:f4:49:71:88:bc:f4:0b:5d:e0:6e:ca:c7:
76:3d:ba:45:b4:f6:42:29:62:b6:8f:10:63:85:a2:
ee:77:82:ef:ba:19:4d:a6:d9:e8:f7:79:67:bd:5f:
de:89:c2:2c:35:29:c1:69:f6:94:59:2e:75:ab:e6:
9e:7d:46:f9:98:6d:e4:11:18:a0:e0:14:43:61:57:
3e:2f:f1:c5:66:f8:86:25:8f:03:e3:01:d7:4b:27:
4d:ee:ff:13:65:38:e8:cc:d8:47:67:75:91:25:d1:
a5:4f:4f:8c:96:d4:7d:f1:26:b4:d6:ff:73:33:90:
ad:16:78:c4:cd:b8:3c:1c:79:50:94:a5:0c:e4:28:
b3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6B:B0:76:AB:8D:CB:10:88:B3:BF:D1:EE:AA:26:B0:93:69:61:A3
X509v3 Authority Key Identifier:
keyid:B4:8A:28:9E:BB:2D:D6:80:6D:60:B8:C5:AD:03:6C:79:8F:66:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:cb:a7:f9:db:72:22:40:20:5a:af:05:43:68:af:08:34:a7:
19:d4:7f:9c:a0:7c:7d:a9:41:b1:14:59:48:b5:30:cc:5b:60:
93:64:2f:6c:b0:cf:3c:09:13:fc:c0:c7:85:da:39:ab:87:ce:
69:eb:7c:6a:f3:88:45:7f:6c:57:93:33:61:b4:43:94:f8:30:
da:e8:ac:52:62:bf:9f:31:b1:63:fb:06:b9:27:cb:df:73:1b:
15:fd:29:87:6d:bf:71:de:60:33:f7:7c:b0:f1:9b:f0:a7:9d:
4c:77:0c:6e:2d:50:0c:47:35:1d:dd:be:23:16:ad:17:60:ab:
58:65:59:59:09:d6:75:e3:0c:2d:39:71:e4:35:2f:e9:38:31:
1c:9d:a7:c7:a9:9f:7c:ae:d4:9b:4d:8d:78:ed:75:c9:4b:cf:
25:fd:d9:f7:db:17:17:2c:b2:af:49:6d:84:47:dc:af:7a:40:
06:97:2f:d2:f1:54:47:be:f0:81:b0:a2:1b:3f:3b:da:4c:33:
5c:8d:29:4f:a1:1e:1a:d3:f9:a3:44:1b:06:21:6f:aa:8f:79:
91:e3:e2:f6:8c:3b:25:2b:e6:10:23:f7:2b:73:e4:ab:b2:d4:
fc:38:59:41:a4:74:39:f1:85:24:15:65:b0:0b:47:eb:4b:85:
eb:9e:54:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 23:46:59 2025 by rpki-client