Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
File: rwlQP8rAF2lRWhny3CZX2S_TUN8.mft (raw, json)
Hash identifier: 5dTGQa7hjaYEL+JegEef4Cv3YnrpSeqsUtwgCah3Nxc=
Subject key identifier: 6F:15:41:A5:5D:D5:26:0A:95:B8:A5:FB:FC:11:78:B8:A2:80:4E:FF
Authority key identifier: AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
Certificate issuer: /CN=af09503fcac01769515a19f2dc2657d92fd350df
Certificate serial: 0197B9337DA6A2B3408C2C20A50EF4A5DB2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
Manifest number: 1549
Signing time: Sun 29 Jun 2025 01:00:48 +0000
Manifest this update: Sun 29 Jun 2025 01:00:48 +0000
Manifest next update: Mon 30 Jun 2025 01:00:48 +0000
Files and hashes: 1: bI5hqVT8m0qS2JmySaAVyieiKDc.roa (hash: Ur47592mLsTtDVQWZDc8e3eMtHnqyDHoxs3kpjL/ez4=)
2: rwlQP8rAF2lRWhny3CZX2S_TUN8.crl (hash: 4uRuq6WTNhZFRshygMSXvreMD+GQPVlKVapAMDSChik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 01:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:33:7d:a6:a2:b3:40:8c:2c:20:a5:0e:f4:a5:db:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09503fcac01769515a19f2dc2657d92fd350df
Validity
Not Before: Jun 29 01:00:48 2025 GMT
Not After : Jun 30 01:00:48 2025 GMT
Subject: CN=6f1541a55dd5260a95b8a5fbfc1178b8a2804eff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e0:4c:6f:53:ea:b3:42:51:e7:56:42:c4:e5:
8d:c4:a0:f3:58:99:71:ea:c8:25:c7:83:0a:fe:07:
f6:5c:82:3b:89:22:6f:e4:af:cc:79:fe:97:f6:90:
c7:71:d4:30:05:f6:1e:04:de:5c:82:3a:3b:a2:b7:
06:7a:c5:c6:ac:38:10:33:6d:33:bc:ae:13:d3:95:
8d:a5:69:c4:05:dc:a9:f3:f7:32:7f:66:bd:2a:b0:
e0:58:9c:32:c2:f1:21:57:97:1a:53:2b:6b:0c:f0:
d9:b5:ea:4e:f3:c9:92:b1:ac:ba:94:d0:ec:2c:d1:
07:93:2e:b9:c6:e2:d0:f8:79:dd:06:b1:63:80:41:
fd:e1:d8:90:eb:a3:96:32:e0:fe:fb:f7:43:da:a4:
6b:ce:aa:02:5c:b1:ea:46:1d:b4:9a:18:5e:b2:3b:
c6:b9:f9:f5:a7:5a:bb:58:5a:f3:19:49:c4:04:ed:
b4:fb:3b:37:5f:bf:67:f8:0b:f6:a3:22:9c:44:61:
a8:80:df:e3:64:e3:43:cf:98:d3:d8:8c:50:cb:53:
dc:13:d1:1e:fc:2b:50:0e:5e:4e:f1:47:2e:41:2d:
ae:0c:dc:73:cb:81:af:40:de:be:79:de:5e:05:ba:
53:e8:27:72:39:98:7b:bb:20:19:2e:fb:26:39:13:
71:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:15:41:A5:5D:D5:26:0A:95:B8:A5:FB:FC:11:78:B8:A2:80:4E:FF
X509v3 Authority Key Identifier:
keyid:AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:5e:6a:72:f2:ed:f8:89:fe:a2:19:8e:d1:26:a6:1c:92:24:
89:92:4f:61:cd:1a:a4:65:12:0e:81:06:18:51:81:f8:1b:5c:
73:9f:b2:83:e8:f9:77:23:6c:dd:f5:bb:6a:47:ac:09:db:91:
be:58:df:63:32:36:5d:05:07:ee:4a:a2:e6:82:06:ef:3f:87:
c2:a6:f8:6e:3c:f2:97:b8:c2:e9:f9:5e:23:9d:8f:80:08:30:
b0:ce:b2:d2:c6:95:79:93:ad:77:6b:c7:29:6b:5c:1f:ac:02:
6e:8e:22:af:3d:ca:11:80:54:bc:9f:46:7a:34:f0:85:ab:b2:
38:b3:86:f4:27:89:f3:c4:84:74:53:41:a3:d7:52:f4:74:b5:
09:0c:6d:ce:ec:7d:b0:0c:c9:11:c2:e1:8d:e4:c2:9f:ee:5f:
71:46:33:83:eb:fc:6f:48:fe:9f:61:a4:03:42:ed:d7:74:b6:
78:9f:83:ee:3e:5d:af:ab:a6:05:a7:76:3c:ac:bc:91:f5:d8:
12:04:12:b9:e2:90:4d:93:fa:62:e9:9e:b3:d4:0d:81:20:cc:
dd:a0:98:62:19:1a:57:30:dd:1c:e1:56:a8:47:b5:fe:06:9f:
33:6d:32:d2:d5:c9:5e:cf:57:7a:f2:74:a0:48:58:b4:e8:c1:
8f:80:e3:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 11:05:14 2025 by rpki-client