Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json)
Hash identifier: SVH+pKBMwtyGaHwyTtPusjLrvkguDCLrdX6YGk5gQTo=
Subject key identifier: E2:F8:8A:70:AA:5B:46:B1:C6:50:1B:78:E3:EB:89:E1:3D:B1:30:44
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 0197B77CC311304E2601F56840CFAE6C198C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
Manifest number: 0C97
Signing time: Sat 28 Jun 2025 17:01:36 +0000
Manifest this update: Sat 28 Jun 2025 17:01:36 +0000
Manifest next update: Sun 29 Jun 2025 17:01:36 +0000
Files and hashes: 1: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: iU1du3EGc0IKgPKjQInI2fiboS/NkatCCV32LLy6+mU=)
2: ehQIMYmYwJQIMwezxzrnCxQWXrQ.roa (hash: K5j8O7wSUuuth3uj2946HM7L4q3WosF43ObE+K/eL8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:c3:11:30:4e:26:01:f5:68:40:cf:ae:6c:19:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: Jun 28 17:01:36 2025 GMT
Not After : Jun 29 17:01:36 2025 GMT
Subject: CN=e2f88a70aa5b46b1c6501b78e3eb89e13db13044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ec:b6:d1:43:0a:4f:35:54:fb:10:ac:f8:b1:
00:dd:52:64:2d:a7:c0:eb:9b:74:61:f4:5e:98:52:
f1:df:42:f2:62:f5:79:67:7c:c7:7d:1d:db:c7:e6:
83:8b:2a:5a:a4:19:35:b0:1f:c8:2f:6e:18:0d:f3:
a7:df:53:c8:5d:c1:c0:1b:34:bc:cf:ae:fd:c5:3c:
39:83:58:a0:25:5b:88:ac:90:64:e0:ba:c6:5e:c5:
20:ee:e3:b0:d3:75:3b:0c:8d:01:4c:8e:c2:75:53:
b4:8e:3c:e0:3b:d7:1f:59:ad:8c:65:2d:3e:cb:fe:
6a:99:79:d0:8d:b8:e7:13:97:4d:4d:95:19:ac:85:
10:bf:87:5d:ab:8d:1a:34:38:7e:10:f1:51:1c:fd:
b6:9e:85:61:4d:3b:94:b6:ca:c9:43:74:59:8e:fd:
ff:47:2f:ab:a6:81:16:c5:7b:3b:ef:3a:e8:fc:83:
35:8b:37:e9:e7:03:28:e7:c7:02:e9:99:93:d5:b3:
ea:32:c6:22:17:d1:0e:8a:a3:15:b1:44:c2:5f:1b:
1d:dd:a4:91:1d:56:f8:b5:9f:a5:3c:51:d8:5c:e9:
35:d3:6e:29:75:6c:1f:02:b8:4b:c9:52:9d:b8:ee:
21:90:88:c3:c4:e1:53:d5:4f:98:20:94:14:08:8d:
99:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:F8:8A:70:AA:5B:46:B1:C6:50:1B:78:E3:EB:89:E1:3D:B1:30:44
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:80:a8:9e:13:95:68:56:44:b1:0d:45:58:c4:f8:ff:d7:39:
b4:67:99:67:6f:d5:bb:f7:7f:4e:94:40:36:c4:06:3d:d0:9f:
ea:ae:98:a5:76:f5:bb:bc:a6:89:a3:01:75:50:c8:50:49:0c:
01:c8:a7:6f:92:58:36:b2:4b:d0:85:8b:b1:82:bc:0d:7f:ec:
4b:cd:35:15:d0:ae:61:4f:cd:85:cf:6c:ec:02:d5:83:c7:e6:
3b:9c:bf:6e:dd:aa:a3:94:82:b1:f7:15:03:5a:27:9c:ae:9f:
3e:56:80:a0:0e:b0:1d:d3:73:dd:12:1f:7f:8e:d6:8e:aa:10:
3f:74:d6:bf:61:37:cf:ab:9f:07:9c:18:09:f7:17:31:47:fa:
9d:16:58:df:85:44:ed:ab:6d:3b:c1:1a:e0:46:4b:bb:81:9b:
09:45:d2:85:84:80:5e:c0:f0:4c:b3:6d:70:55:5b:4e:6c:00:
21:4c:e7:9a:d6:ae:d4:56:b9:d3:ee:30:27:ed:2f:02:23:57:
a5:ad:3a:85:df:b5:b8:41:6e:8a:8e:ba:df:48:e1:89:38:d1:
7f:ac:69:51:a3:c1:27:af:79:98:4f:33:9d:4b:f4:a9:0e:3c:
11:76:3e:0b:02:f8:1e:b8:9c:f6:cd:f3:82:91:fd:db:3c:fc:
d3:68:5a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:20:27 2025 by rpki-client