Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
File: TQiJTKQFMefSApQJEojnetEsKXk.mft (raw, json)
Hash identifier: FeEcrldCplPeebLlaB5lV2euwlwPr6XKMeHb1KMBYPI=
Subject key identifier: 10:E6:C2:17:EB:4D:6D:A6:C8:25:AD:DF:19:C4:18:59:94:32:25:0F
Authority key identifier: 4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
Certificate issuer: /CN=4d08894ca40531e7d20294091288e77ad12c2979
Certificate serial: 0197B70E6BAD02804B2BDC36C0431D9260FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
Manifest number: 067C
Signing time: Sat 28 Jun 2025 15:01:04 +0000
Manifest this update: Sat 28 Jun 2025 15:01:04 +0000
Manifest next update: Sun 29 Jun 2025 15:01:04 +0000
Files and hashes: 1: 9vSYuCdAG_e0E6RGGzb6agTE0BM.roa (hash: QacZLKOpB/Eo9Q8tjYWI0KN++SKGpTz/tW+UR9tDqD0=)
2: TQiJTKQFMefSApQJEojnetEsKXk.crl (hash: 8RLnQ3yK4ggqg0M70JCGzYYskUYySMU2/GzOKPpx5mY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:6b:ad:02:80:4b:2b:dc:36:c0:43:1d:92:60:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d08894ca40531e7d20294091288e77ad12c2979
Validity
Not Before: Jun 28 15:01:04 2025 GMT
Not After : Jun 29 15:01:04 2025 GMT
Subject: CN=10e6c217eb4d6da6c825addf19c418599432250f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bc:41:32:6f:38:81:a9:5d:94:35:f1:89:37:
6c:fc:8b:99:68:7f:9b:5d:44:8e:f7:11:49:58:5e:
49:2a:ee:10:10:d0:ec:68:f5:ce:24:09:00:92:02:
46:78:db:13:c8:26:57:bc:3d:79:44:24:72:0a:c1:
3c:dd:9b:08:be:d5:05:54:79:22:00:4c:b5:30:6d:
90:fc:e6:82:59:06:8a:e4:43:f6:a0:fb:bd:36:76:
04:11:de:8b:9f:7f:96:f8:de:e8:a2:cc:1a:de:7e:
05:ec:e5:30:8c:f2:66:d0:c7:c2:b6:aa:03:8d:f0:
84:0c:3b:8e:db:21:d7:e8:7a:16:54:8d:b8:48:9b:
3a:1c:a7:75:f6:f5:99:7a:36:62:5a:94:7c:09:f0:
fa:bc:96:d8:bb:10:df:0f:dc:59:a7:f2:42:05:5f:
6f:08:f1:6d:3d:1c:ad:1c:ee:68:5f:d8:66:a3:ca:
40:2b:10:68:2e:e1:b5:45:4c:74:19:bd:92:e2:50:
f4:f8:53:0f:99:be:ca:05:fa:59:d9:54:c0:82:3e:
3d:e3:22:7d:0f:0c:58:0b:37:71:b0:d5:e9:c4:b3:
1b:c6:b0:f8:d1:00:a8:91:49:c4:f6:ba:dd:d5:e2:
d0:dd:ff:ad:56:b6:80:e9:4e:09:7d:46:0d:7d:88:
ce:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:E6:C2:17:EB:4D:6D:A6:C8:25:AD:DF:19:C4:18:59:94:32:25:0F
X509v3 Authority Key Identifier:
keyid:4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:48:c8:2a:e1:3a:a4:e2:71:0d:86:6b:55:93:15:d6:f0:e7:
80:88:71:89:91:f8:17:d3:2a:6a:a9:53:9b:06:74:38:7f:31:
78:ea:98:cc:93:3f:b9:71:86:79:56:31:59:e0:e9:12:33:54:
a6:ce:bd:b9:cd:f8:61:f0:6e:d5:90:a0:95:eb:33:32:3a:d6:
6f:ba:03:f0:53:c0:45:8a:c6:6c:12:02:43:93:ea:2a:5f:71:
e3:97:e6:75:9b:75:17:3e:e3:bf:7f:eb:67:26:d7:f7:85:6d:
68:3c:81:46:29:88:7b:9d:b4:11:85:84:ed:84:9c:88:05:17:
02:ce:d6:9d:68:99:a9:1b:03:ae:5c:b9:c2:3a:ee:b5:92:88:
2a:5b:32:43:f0:31:76:bb:22:23:b0:f6:e7:01:41:47:ce:f9:
84:c3:e4:69:2d:70:86:47:f0:8f:78:11:80:6a:7b:6a:27:69:
03:85:20:bb:60:ce:54:5e:cd:ca:3f:f1:f6:00:eb:01:f5:1b:
f2:e1:3d:47:ec:d6:a5:4f:28:fe:a2:ca:2f:76:32:ce:0d:ba:
76:15:ec:f7:02:8b:24:fa:97:98:64:fe:dc:d6:59:79:b8:68:
00:43:f4:6b:26:11:88:ad:13:2a:5d:68:97:56:79:76:d8:e6:
a4:77:17:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:27:32 2025 by rpki-client