Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft
File: Tle6dst9bSrsBSA89BuOZxbufqA.mft (raw, json)
Hash identifier: Xi0Vez4zwqgYvrupyr4u2K3T15mhy0lcz31dO0g31b0=
Subject key identifier: 7A:8F:DF:28:B1:30:B6:BC:65:6B:D9:2E:A2:D9:CE:5B:91:1F:B0:55
Authority key identifier: 4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0
Certificate issuer: /CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0
Certificate serial: 0197B6A15BAA0CFD95DBE5CFEABE4D51FD00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft
Manifest number: 0EDA
Signing time: Sat 28 Jun 2025 13:01:57 +0000
Manifest this update: Sat 28 Jun 2025 13:01:57 +0000
Manifest next update: Sun 29 Jun 2025 13:01:57 +0000
Files and hashes: 1: Tle6dst9bSrsBSA89BuOZxbufqA.crl (hash: PTy3M0NHOkOiCSNY/rSREWnx+robH5JC4rZ8GWHj/QM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:5b:aa:0c:fd:95:db:e5:cf:ea:be:4d:51:fd:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0
Validity
Not Before: Jun 28 13:01:57 2025 GMT
Not After : Jun 29 13:01:57 2025 GMT
Subject: CN=7a8fdf28b130b6bc656bd92ea2d9ce5b911fb055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e9:1d:d7:bb:4d:92:4a:7b:a1:6d:a0:eb:1b:
b3:fb:1a:b0:58:b2:10:bb:32:1a:ae:38:36:c5:e6:
22:a8:89:2a:7a:84:6e:3d:1e:c1:75:72:e2:dd:29:
30:e7:e9:fb:ab:41:f1:aa:29:4d:a1:47:14:e6:f2:
d4:1f:66:d0:ca:28:6c:87:89:52:a8:09:5b:0e:78:
71:b9:50:8a:dd:f5:46:df:0b:c9:aa:df:82:ac:5d:
4c:8b:66:69:85:c9:e5:e1:d5:7c:ad:11:79:1d:0d:
57:6f:5b:97:6e:60:a8:cc:98:93:d7:dd:2a:d5:7e:
9a:5d:39:d5:67:29:80:3d:2b:e1:92:ca:b3:ae:85:
ba:17:f2:f0:30:82:82:fd:b3:96:b1:91:11:48:4f:
ba:7c:ea:be:6d:31:79:67:c9:13:52:48:a5:0a:08:
5e:fd:4f:f7:f8:78:94:b2:d6:ec:69:24:d8:05:58:
56:7e:49:fa:ed:06:9a:80:9d:65:03:26:ac:9c:2c:
c1:05:00:84:24:90:02:31:01:3f:57:63:d2:48:51:
d3:d0:11:34:b5:7d:fc:6b:f6:9c:ff:95:99:fe:9c:
69:9d:e4:e2:e5:90:9a:91:5f:9f:f8:83:d1:7e:95:
1f:0d:6a:c5:68:4f:31:59:42:3f:cb:ac:f7:0a:9e:
ef:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:8F:DF:28:B1:30:B6:BC:65:6B:D9:2E:A2:D9:CE:5B:91:1F:B0:55
X509v3 Authority Key Identifier:
keyid:4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:20:45:6c:a7:e4:d6:85:2f:f7:45:fb:43:f4:8e:74:89:ef:
67:3a:f0:f2:ea:34:80:66:cc:9a:06:8d:01:41:db:f4:00:61:
75:9c:b9:bc:71:10:08:16:fa:af:99:f2:aa:7e:98:df:02:c3:
3f:3f:6a:53:c6:6a:65:0a:21:fe:3c:b1:8c:db:5d:fd:1c:c9:
99:99:91:c6:88:c6:98:1a:a3:38:6c:20:11:73:6d:5b:87:84:
95:18:92:0d:2f:5d:cf:92:ae:09:f7:e6:d8:56:35:5c:e1:fe:
c0:b4:c4:e7:da:77:47:86:d7:1a:23:4d:e1:ac:e9:fe:a7:c3:
67:f1:4a:b0:98:da:86:69:e7:31:17:11:2a:fe:5f:d1:ad:08:
cd:8f:2c:d0:9a:a9:91:e9:93:16:35:30:d2:d1:8d:b3:65:29:
81:fd:a3:26:7f:9b:4a:f6:2f:04:d6:5e:9c:55:15:13:e6:cd:
cf:15:02:71:d1:0a:02:93:f9:ed:ea:0c:3b:a2:f0:af:55:7b:
2e:07:ab:06:35:eb:9e:23:d9:55:ad:2b:9a:1f:9c:74:88:b9:
79:d1:5f:06:21:4d:8e:c8:0f:c0:f8:3a:39:02:09:41:ad:4b:
97:f6:63:a8:9d:fa:fd:b9:de:ab:72:83:4c:04:8b:4d:04:23:
ea:f6:4f:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:11:01 2025 by rpki-client