Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
File: Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft (raw, json)
Hash identifier: 9TASukv4TknbopFb7k980PNs/l0A6KhXMaAmsTz0zwo=
Subject key identifier: A3:94:09:D4:FD:34:9C:43:35:0A:BC:1A:5D:BF:10:88:0B:DC:B5:3E
Authority key identifier: 4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
Certificate issuer: /CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Certificate serial: 0197B7B33F091C643845BAB83602BF63F64B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
Manifest number: 01A0
Signing time: Sat 28 Jun 2025 18:01:06 +0000
Manifest this update: Sat 28 Jun 2025 18:01:06 +0000
Manifest next update: Sun 29 Jun 2025 18:01:06 +0000
Files and hashes: 1: 2YHBxyZ_z4Fcrt68TQqMf0wkwmM.roa (hash: KMD/ALL2N2LqU8y7+1f9YpFqy5OsmhRXi+hfcZ2aIxY=)
2: Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl (hash: kzL6fZFnxvde4TcCZbr8xHcBnYHr7iUcH167mtZou/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:3f:09:1c:64:38:45:ba:b8:36:02:bf:63:f6:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Validity
Not Before: Jun 28 18:01:06 2025 GMT
Not After : Jun 29 18:01:06 2025 GMT
Subject: CN=a39409d4fd349c43350abc1a5dbf10880bdcb53e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:4c:55:57:ac:31:c9:3c:b4:f6:fe:24:d0:8e:
5d:e4:4d:2c:7a:89:bc:3a:8a:c2:99:b1:10:35:ea:
03:94:c8:a3:b1:28:75:d0:4b:21:97:96:d3:76:46:
d2:59:61:98:b0:69:59:06:77:48:cf:fd:be:2e:9b:
6c:09:cb:74:bd:0d:6a:7f:94:44:dd:b6:43:56:23:
0d:a0:41:d0:9e:cc:b7:a1:87:c5:26:d0:9d:56:69:
b7:50:e9:b3:26:4c:8a:12:6c:d0:aa:01:e7:18:3d:
0e:ef:23:c4:f8:c0:a7:67:bc:d6:55:09:15:65:06:
dd:23:9c:bf:88:0a:08:82:99:9d:4b:26:04:db:f4:
a6:48:2f:f9:47:6e:8f:e0:69:2c:bc:87:13:61:85:
4b:5c:c8:75:04:da:f7:e1:0b:ae:c8:5c:21:ba:aa:
3a:88:ba:8f:43:5f:e4:83:89:be:61:a3:34:9a:de:
4d:01:b6:bd:b6:48:ae:30:c3:ca:b3:1e:47:a3:c9:
a9:c3:40:ae:41:b7:c0:3a:6f:ed:53:62:5e:52:53:
ec:6f:a7:b1:94:70:aa:7f:57:2b:2e:18:51:28:5b:
98:d6:16:a0:59:f9:92:cb:57:e6:51:f9:95:d6:ad:
7e:81:0a:65:d3:60:76:cf:04:15:da:13:8e:d9:77:
4f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:94:09:D4:FD:34:9C:43:35:0A:BC:1A:5D:BF:10:88:0B:DC:B5:3E
X509v3 Authority Key Identifier:
keyid:4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:b8:b7:02:59:81:10:21:5b:4a:bd:ee:c2:e8:fd:d8:81:46:
ee:d5:ef:ef:a2:a6:ed:d4:34:19:d7:af:25:67:24:21:fe:0a:
0a:be:67:e2:a1:f7:77:8b:1f:be:75:cc:af:9a:35:11:ae:1d:
6c:53:05:d3:76:a6:45:8e:e2:86:2a:78:bb:f9:5d:7c:0f:53:
d6:df:75:00:e8:1a:18:ad:88:7b:cd:f3:8e:f5:e2:d7:46:bb:
b0:26:5e:42:ea:c6:58:45:b3:4f:ab:6a:53:84:58:01:17:ee:
dd:37:53:61:c0:58:6f:c9:86:6d:38:4a:4d:ec:9d:f5:b3:a3:
a3:6f:26:48:66:21:4e:af:5b:a0:c7:b9:65:59:b5:64:99:45:
c8:10:fb:bd:b4:75:ca:4c:9d:1c:f1:69:94:41:7d:46:8f:1b:
c8:75:b2:af:50:d1:8c:62:c9:70:4c:f7:2a:25:c6:21:56:d5:
1d:57:81:8a:0d:c1:b9:2e:25:8f:cb:02:a1:c4:e7:6a:b1:00:
04:87:09:30:59:61:90:df:a4:2b:b4:18:32:16:96:a2:05:08:
ff:62:02:af:2b:9d:43:78:44:12:0d:31:9e:11:05:e4:5f:6f:
81:fb:21:d3:2e:d3:4e:37:97:f5:bc:bc:39:85:1b:0b:c1:10:
99:3b:d5:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:13:31 2025 by rpki-client