Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: aUmgdAh5PNKHMeyeS4+Xbe5LRFWxmAH9oXQKOPM6Riw=
Subject key identifier: FC:91:28:65:0B:F2:99:6F:44:BB:4B:9E:4A:92:78:ED:99:EC:2F:21
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 0197B7452FD47D6479397C554F3CE934240C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 16:00:54 +0000
Manifest this update: Sat 28 Jun 2025 16:00:54 +0000
Manifest next update: Sun 29 Jun 2025 16:00:54 +0000
Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: t4dU+U9nAMUZPVH822/3W4a1GugkKNiRalhqFumky30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:2f:d4:7d:64:79:39:7c:55:4f:3c:e9:34:24:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Jun 28 16:00:54 2025 GMT
Not After : Jun 29 16:00:54 2025 GMT
Subject: CN=fc9128650bf2996f44bb4b9e4a9278ed99ec2f21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:71:d3:33:96:63:cd:67:76:5a:93:ca:22:ca:
8b:b3:ae:7b:e7:0a:28:33:b9:8f:0b:54:a8:57:7c:
3d:e7:eb:21:a5:ee:f5:22:9f:c7:8f:76:82:e6:c8:
0f:93:fb:39:79:f4:57:58:c4:19:5b:fa:fe:70:5b:
63:71:38:b9:ff:84:fe:d4:ec:4f:ec:e1:3e:15:ea:
be:7b:66:47:d9:c4:ce:fc:76:5a:11:65:f0:0f:e6:
a1:af:2b:85:9b:62:7b:52:94:80:2b:13:19:43:42:
bc:ff:9b:93:2c:13:4b:7f:a7:7b:be:22:fa:5f:d1:
c1:4f:9f:38:5d:3e:e8:12:34:fb:b9:a8:79:a7:d2:
e1:73:09:64:c0:61:8e:59:85:c5:64:a3:26:0f:e6:
df:19:da:c0:92:9e:bc:e1:be:d3:92:89:38:b3:91:
e9:38:72:36:e2:f9:3e:5d:86:2a:c3:72:3c:20:30:
1c:4c:5f:54:6e:92:7d:c1:99:21:20:51:f6:38:80:
ec:36:de:7a:6b:72:65:bc:91:8e:46:2e:22:2a:77:
88:e9:bf:ad:04:b2:ca:d0:0f:3f:13:3c:21:65:29:
99:7f:77:a6:98:6e:57:08:25:1e:96:d3:19:5d:24:
8d:38:41:4c:9e:02:dd:b9:fa:9a:fe:3e:6f:60:50:
c0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:91:28:65:0B:F2:99:6F:44:BB:4B:9E:4A:92:78:ED:99:EC:2F:21
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:2a:ba:e9:24:a3:58:f9:a6:f5:a0:15:4f:f2:f0:c5:df:35:
38:52:78:ea:dc:b9:ec:88:fd:52:1b:c0:b4:cd:82:d6:db:f4:
5f:64:9d:5f:d7:87:bb:64:7c:4e:cb:40:a6:ee:51:da:61:e5:
84:a6:57:2c:cf:63:87:48:42:6a:80:a5:20:ac:aa:7f:60:0a:
a5:c4:51:b6:2a:70:65:e0:ba:a2:3e:67:0e:c2:9a:61:80:2c:
70:4f:60:bf:03:64:0b:e9:a5:03:87:8a:79:79:02:a4:0d:77:
8b:27:88:58:87:a4:46:ce:be:30:a5:e0:22:8a:78:17:ba:6c:
0f:aa:b5:89:d0:09:e2:65:76:15:48:ba:63:95:f7:bd:a8:67:
6e:a0:18:e1:f0:15:98:02:37:e4:93:50:df:cb:39:9f:21:b2:
ee:35:73:98:ab:02:c4:ab:ba:7d:ed:31:51:13:0f:eb:03:ac:
90:f3:28:ed:9a:b7:f7:0f:25:ce:6d:d4:f5:60:bd:21:70:d4:
28:9f:da:b9:22:6c:a0:b9:fa:7a:f4:59:c2:29:68:1f:db:2b:
70:af:c0:12:27:ea:78:77:e3:9e:30:a4:62:92:65:d6:de:2b:
d9:12:1a:fb:5f:ed:b3:bb:0a:4f:7d:d6:70:bf:15:2c:31:12:
f0:d4:20:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:49:27 2025 by rpki-client