Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
File: tRYDJr5-XNw1tcA2RBFjzSWkl00.mft (raw, json)
Hash identifier: PCohl7cucdNgo4s/cu242E/TTbq+4jOxCTuSmH8acfo=
Subject key identifier: ED:D6:09:DB:00:1E:72:C3:99:97:10:3D:23:25:D9:FF:90:AC:CA:1D
Authority key identifier: B5:16:03:26:BE:7E:5C:DC:35:B5:C0:36:44:11:63:CD:25:A4:97:4D
Certificate issuer: /CN=b5160326be7e5cdc35b5c036441163cd25a4974d
Certificate serial: 0197B82112D72212DEF15446DD1BC6BAAE0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 20:01:04 +0000
Manifest this update: Sat 28 Jun 2025 20:01:04 +0000
Manifest next update: Sun 29 Jun 2025 20:01:04 +0000
Files and hashes: 1: 8ia-FfbPiHzFeisz5Ltz_iH4NuE.roa (hash: 2vUluYbn/ZjPa8MjPMnro3n0N0IitO4q9I7893CE2pw=)
2: tRYDJr5-XNw1tcA2RBFjzSWkl00.crl (hash: ddd1yrOOALFAII0bKTiscQUHntX2uq4jczwTThBLmeg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:12:d7:22:12:de:f1:54:46:dd:1b:c6:ba:ae:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5160326be7e5cdc35b5c036441163cd25a4974d
Validity
Not Before: Jun 28 20:01:04 2025 GMT
Not After : Jun 29 20:01:04 2025 GMT
Subject: CN=edd609db001e72c39997103d2325d9ff90acca1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b4:13:5d:ed:ba:69:49:21:62:a8:7d:08:e4:
62:ca:7f:ea:52:20:7f:f1:1b:34:4c:1e:61:59:dd:
fb:ac:ba:41:30:66:53:60:cb:98:0e:bb:89:56:64:
28:74:da:ef:dc:c7:1b:68:d0:87:60:e3:90:65:2f:
37:95:99:f0:e4:86:bb:5f:c1:8d:6c:9e:1c:0a:ab:
65:58:a9:b0:b1:c6:c0:be:ef:1f:52:cb:c3:9a:80:
80:d4:76:cf:55:65:24:ce:8f:13:ab:23:13:08:47:
95:f5:94:49:49:d5:a7:a4:22:0b:44:e9:f7:c7:2c:
17:f4:59:0a:b4:5a:ae:09:f7:50:87:20:83:62:7e:
32:7d:5b:7d:2b:a1:79:77:a4:d0:1e:99:2b:04:42:
39:14:93:b4:80:f5:ae:45:6b:be:3a:9e:f8:fc:03:
96:45:d3:2e:d6:25:6c:76:6e:8f:1e:7b:71:e8:3a:
41:d3:37:ae:07:97:84:2e:d8:69:61:94:45:d7:a4:
2f:bd:08:b4:d6:44:0e:69:ec:db:79:43:5f:39:a7:
e8:bd:a6:62:8b:4b:96:8d:fb:89:8c:69:55:21:f2:
f2:fe:50:27:cf:05:c2:53:26:03:8b:aa:bf:db:e6:
83:da:d8:65:fb:1b:e9:5a:89:d3:88:41:0f:94:cc:
8d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:D6:09:DB:00:1E:72:C3:99:97:10:3D:23:25:D9:FF:90:AC:CA:1D
X509v3 Authority Key Identifier:
keyid:B5:16:03:26:BE:7E:5C:DC:35:B5:C0:36:44:11:63:CD:25:A4:97:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:7f:4e:6d:d6:5d:bb:d9:6b:e9:83:1a:07:d3:3e:8d:0d:a2:
ca:18:c1:c2:ff:ec:2e:95:38:04:3a:5d:43:87:b1:73:12:aa:
38:3a:d2:ef:b1:9e:56:cf:9b:32:5a:4b:4b:62:1c:bd:d2:14:
71:67:a3:63:55:e3:43:86:79:0c:92:63:0e:34:c0:fe:b3:74:
05:32:d5:a7:e1:7d:26:b1:a3:37:11:89:f9:a9:5f:52:2e:b3:
6e:e7:89:50:04:fe:65:0f:c9:26:67:b0:97:5b:13:87:56:49:
dc:d6:dd:7b:98:21:46:eb:37:d6:df:5c:da:32:a3:f3:2b:53:
8c:c7:2e:8e:80:b6:00:87:4c:9c:90:a7:6b:c7:51:85:53:f2:
a6:b6:ce:4f:0e:5f:3e:e0:2c:4f:53:9f:d4:cf:46:5a:1b:e7:
55:54:b4:58:a4:7e:e1:f5:cd:5d:fb:81:85:a0:48:2f:f1:c9:
64:e9:ab:30:89:ed:aa:9f:f2:a1:9e:70:2b:f6:d7:4a:b6:41:
91:57:0c:d2:1c:a6:34:0f:35:33:9b:ba:b4:41:6e:49:b6:e2:
15:6b:a9:bb:35:1e:7b:40:3b:0d:50:33:d8:30:ed:47:49:39:
0e:f4:a9:84:a3:99:34:8a:f7:ff:d7:cd:82:c0:39:36:5f:31:
24:1e:64:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:58:10 2025 by rpki-client