Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
File: TjQBh8D85f_wN87ZplCCQ-QE2nE.mft (raw, json)
Hash identifier: O/9Ph/RkYChdORK7tjCxEHyaTbpxakUqmZXT0IMBbIE=
Subject key identifier: 23:25:6F:F6:1B:92:05:73:E7:55:03:A4:C9:C8:FC:A1:0E:94:8E:7E
Authority key identifier: 4E:34:01:87:C0:FC:E5:FF:F0:37:CE:D9:A6:50:82:43:E4:04:DA:71
Certificate issuer: /CN=4e340187c0fce5fff037ced9a6508243e404da71
Certificate serial: 0197B70E907E8B18F92C1305A584ECA58EBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TjQBh8D85f_wN87ZplCCQ-QE2nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
Manifest number: 08E1
Signing time: Sat 28 Jun 2025 15:01:14 +0000
Manifest this update: Sat 28 Jun 2025 15:01:14 +0000
Manifest next update: Sun 29 Jun 2025 15:01:14 +0000
Files and hashes: 1: CpuMVh4uJ1tcoj_OkQygaUN_hh8.roa (hash: yhnMpFW3oI3a8/KGPX3tjlLUQZvGsHrg1LJyUrjeFm8=)
2: TjQBh8D85f_wN87ZplCCQ-QE2nE.crl (hash: L7LI8OYswCswxul4XLp+A//SZliLHftxZAfmDy1Nbig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TjQBh8D85f_wN87ZplCCQ-QE2nE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:90:7e:8b:18:f9:2c:13:05:a5:84:ec:a5:8e:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e340187c0fce5fff037ced9a6508243e404da71
Validity
Not Before: Jun 28 15:01:14 2025 GMT
Not After : Jun 29 15:01:14 2025 GMT
Subject: CN=23256ff61b920573e75503a4c9c8fca10e948e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:83:38:b2:94:fb:56:cb:7d:2d:2e:70:0f:af:
9b:6c:22:ef:0b:b5:90:3a:88:ce:9e:74:59:7b:c8:
04:44:30:d3:50:eb:d8:40:81:c1:b1:63:e9:04:9a:
bb:15:62:bf:53:ef:e2:55:10:96:f2:d5:bc:da:8c:
a1:8f:6f:50:ba:f1:41:e5:88:2f:63:ca:40:96:e1:
e0:0a:c2:08:42:27:a9:26:5a:a2:b6:7b:99:86:88:
8d:07:af:b0:04:06:f5:09:f0:6c:09:cd:9b:9d:6e:
d6:03:de:c0:ca:02:23:ba:4b:c7:51:ef:81:2e:ba:
7e:08:47:3a:d4:d1:48:48:d9:33:0e:2d:08:48:b6:
a5:b4:32:d6:70:30:68:a6:10:d1:a5:e0:5a:c2:4c:
f1:a5:b3:ef:d4:31:fc:8d:a5:04:8f:ae:2a:0e:d2:
58:d0:d4:98:17:34:19:59:43:e3:32:9f:a5:a6:25:
3b:fd:2a:6f:9b:fd:58:79:6f:2d:a7:8f:48:3e:03:
49:63:fa:32:a5:3a:ec:ea:92:37:82:1a:9d:89:e2:
cb:6a:7c:4e:31:c9:92:10:5f:1a:62:e6:13:38:ef:
7f:7b:44:a1:b1:6c:f6:87:01:c5:82:52:dd:00:95:
65:45:10:a1:04:4f:19:44:df:24:4b:bc:2c:03:10:
6d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:25:6F:F6:1B:92:05:73:E7:55:03:A4:C9:C8:FC:A1:0E:94:8E:7E
X509v3 Authority Key Identifier:
keyid:4E:34:01:87:C0:FC:E5:FF:F0:37:CE:D9:A6:50:82:43:E4:04:DA:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TjQBh8D85f_wN87ZplCCQ-QE2nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:63:e4:4c:8b:b8:4b:2b:ee:a3:93:7a:00:ea:e2:74:e8:07:
42:2c:d0:c6:07:20:4a:13:d4:e6:e1:5f:04:df:f6:9f:bc:1e:
ce:41:de:e5:60:d9:2e:23:33:b8:ac:42:f5:20:23:65:06:b3:
62:ba:5d:41:8c:a6:b6:8b:70:3e:80:92:f4:56:7e:f1:71:dc:
1e:4b:f9:01:7e:a0:14:24:b4:d7:42:5c:b1:18:53:a6:1c:45:
bf:ee:dd:d6:77:a7:f4:15:66:c5:4b:f2:a0:43:e9:b9:43:4a:
6f:58:86:f9:1e:18:24:0b:b1:df:86:92:c3:ca:40:bb:4c:9d:
8b:bb:e6:d5:27:71:ef:0c:7d:5b:25:95:ff:3c:36:90:e7:46:
2e:ca:45:61:92:a7:ea:2e:a6:5f:9f:1b:8a:5d:42:62:c8:33:
96:5d:67:2b:8c:c5:50:dc:38:79:a4:ce:a0:67:e9:9d:61:7f:
70:31:61:a9:ba:20:01:e3:aa:af:bb:e0:68:07:21:ce:3c:55:
52:25:d6:c5:0e:e8:6f:6e:d4:7f:13:90:fc:69:d8:54:8a:51:
fc:8f:f9:17:61:e1:1b:e7:1e:41:de:91:a0:82:eb:de:d9:4b:
04:9f:16:3c:00:61:2f:4f:8b:b0:1e:1d:91:78:2b:0f:36:74:
db:30:67:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:34:55 2025 by rpki-client