Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
File: tZXiFxdovJspQknw46U1kBecUu4.mft (raw, json)
Hash identifier: 2be6/u2OTU7xSy5kg1ll7mL4Zv9/xE2uUy+hvBEuXAo=
Subject key identifier: 7D:B1:63:21:76:2D:7B:D5:36:18:22:42:29:C2:1E:B7:64:9B:AA:C1
Authority key identifier: B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
Certificate issuer: /CN=b595e2171768bc9b294249f0e3a53590179c52ee
Certificate serial: 0197C42526E12DDD185E7DCFF603395D8D31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
Manifest number: 15BD
Signing time: Tue 01 Jul 2025 04:00:58 +0000
Manifest this update: Tue 01 Jul 2025 04:00:58 +0000
Manifest next update: Wed 02 Jul 2025 04:00:58 +0000
Files and hashes: 1: tZXiFxdovJspQknw46U1kBecUu4.crl (hash: sD6UwOk+3haWHsoiTmu94XKBAxayFt3xmUPMZT7UEyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 04:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c4:25:26:e1:2d:dd:18:5e:7d:cf:f6:03:39:5d:8d:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b595e2171768bc9b294249f0e3a53590179c52ee
Validity
Not Before: Jul 1 04:00:58 2025 GMT
Not After : Jul 2 04:00:58 2025 GMT
Subject: CN=7db16321762d7bd53618224229c21eb7649baac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:48:a7:78:87:85:c0:26:a4:76:87:98:d3:52:
78:bb:ad:db:b1:57:07:f6:29:97:b4:44:ce:48:ac:
b4:bc:10:59:cf:ad:26:b5:83:99:5d:6b:7f:cf:7d:
bb:c9:cb:7b:71:07:59:2c:10:cd:d7:1f:63:66:95:
8d:46:c0:e2:cc:b0:d0:7e:9a:b6:28:3b:64:e4:73:
05:56:f9:97:4b:75:cc:82:16:bc:a9:98:87:d6:3c:
7a:ee:f1:99:0a:ba:c9:3c:3c:c0:a3:3f:ef:91:ce:
00:b2:68:9a:0c:b0:e3:87:8b:03:a9:1d:ae:3b:56:
a6:fc:65:71:48:3f:d7:75:c1:3b:1a:4c:a3:74:09:
6f:a6:0a:90:24:c2:bb:0e:ea:27:70:87:99:b5:ea:
18:26:74:8b:b7:7a:7b:a1:7a:23:79:7c:ac:8b:45:
26:ce:7c:97:d2:0f:ac:17:2e:a4:1a:ed:64:d1:04:
0e:da:54:39:dc:bd:20:76:2c:2e:12:85:2c:17:44:
dc:d8:3d:c7:fb:e5:ac:75:69:a2:b2:d3:8a:6b:15:
f8:0f:dc:e9:94:e6:83:c5:34:18:2e:de:16:a9:9c:
20:45:89:bd:fa:5f:fd:74:e6:31:e8:4a:c9:b7:f6:
83:06:ff:e6:59:ca:79:b4:a8:f3:fe:33:69:d8:29:
a3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:B1:63:21:76:2D:7B:D5:36:18:22:42:29:C2:1E:B7:64:9B:AA:C1
X509v3 Authority Key Identifier:
keyid:B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:6a:a4:74:06:19:24:c7:ee:1f:e1:c5:60:7f:43:cd:56:0d:
00:90:6f:5b:40:45:a1:09:51:21:1c:18:04:69:c5:fc:3d:3b:
81:f5:21:d7:0a:2d:ac:e0:70:e4:78:0a:e8:db:a7:49:2c:a8:
b3:8c:96:af:a1:37:73:30:b0:ed:22:af:6b:91:d6:0c:8c:79:
2e:aa:89:21:5b:47:98:59:7f:d7:80:55:2c:ca:99:87:40:df:
21:79:f5:6c:ce:db:81:c2:3a:24:e5:a5:25:85:34:32:e9:9e:
2c:80:04:6e:db:cd:e5:f2:e2:e8:9a:ef:09:0d:6d:03:cf:2a:
be:30:27:05:ff:f3:7f:ee:f0:14:81:41:ae:1f:76:e8:f7:f4:
5c:a4:c0:ab:e4:aa:f1:46:86:95:19:fc:3c:4f:dc:d3:45:41:
1b:ff:54:ec:79:25:15:24:a6:cc:3a:cc:6c:6c:1e:e8:31:d6:
29:7a:ce:e6:bb:3d:4b:2b:4f:a7:b7:e1:ca:7c:67:52:fc:cf:
6e:cf:0e:90:ef:a0:ab:e0:be:83:06:ac:5e:cb:7a:ba:a8:97:
1c:ff:5c:2d:02:7e:1e:7b:02:0d:56:2c:50:26:5b:d0:88:28:
30:6d:d1:38:a9:76:d5:ac:7a:5c:cd:2e:8f:cf:5c:9e:80:d3:
e7:87:f6:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 11:06:53 2025 by rpki-client