Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
File: tKW-MwcSDmXjxBZcnI50jBwSp6I.mft (raw, json)
Hash identifier: KMepiGZw+z/y00211xN1wOTsfPq6TrahgpB+OLmKUuQ=
Subject key identifier: 33:12:5B:02:18:28:B2:47:AE:CF:26:FB:B7:B1:95:E1:00:29:5A:51
Authority key identifier: B4:A5:BE:33:07:12:0E:65:E3:C4:16:5C:9C:8E:74:8C:1C:12:A7:A2
Certificate issuer: /CN=b4a5be3307120e65e3c4165c9c8e748c1c12a7a2
Certificate serial: 0197C426D760DEC06F78D5F624CA72127A50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
Manifest number: 050C
Signing time: Tue 01 Jul 2025 04:02:49 +0000
Manifest this update: Tue 01 Jul 2025 04:02:49 +0000
Manifest next update: Wed 02 Jul 2025 04:02:49 +0000
Files and hashes: 1: pHJ5oRo1kF5oiX8KeKirS42gdJI.roa (hash: pWmX7zoUYI3ChoG1HELYfAkOPLPYyR79PMNSLK6H1B0=)
2: tKW-MwcSDmXjxBZcnI50jBwSp6I.crl (hash: 95snCSYEvNbmCoMFXYNBy2mZlZazBz7K7IgVgAxJtj4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c4:26:d7:60:de:c0:6f:78:d5:f6:24:ca:72:12:7a:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a5be3307120e65e3c4165c9c8e748c1c12a7a2
Validity
Not Before: Jul 1 04:02:49 2025 GMT
Not After : Jul 2 04:02:49 2025 GMT
Subject: CN=33125b021828b247aecf26fbb7b195e100295a51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e6:7f:d8:d8:57:b6:77:6e:e5:3e:2c:a1:64:
e5:b8:b1:b9:50:0d:fa:f1:19:c3:68:59:ce:fb:66:
5c:66:a5:ac:7b:c8:ea:ea:65:18:5d:29:81:38:31:
f1:7f:e1:b9:7b:2e:30:c7:0c:42:29:6d:34:95:09:
ab:fb:d3:cb:6f:13:3e:87:ad:fd:e8:33:c3:c7:fd:
3c:bf:0a:73:25:7e:94:d8:7a:3b:2a:2a:12:3b:a9:
64:48:99:f8:9a:39:59:b7:07:8b:06:9f:cd:b4:38:
18:82:53:4e:a1:3b:2d:62:3e:60:42:2a:6f:20:fc:
25:e8:e2:9d:32:c7:e2:bb:0b:2a:66:76:bf:2c:65:
77:f3:e9:fe:71:b8:7b:2d:4a:d0:b4:bd:b6:38:05:
56:fe:07:ba:0c:61:1d:da:4a:72:ac:4c:98:30:78:
a3:66:17:06:a6:f3:e0:b5:91:71:12:8c:a0:29:25:
15:1b:16:75:9c:24:37:0d:54:58:6a:bb:26:b4:af:
ff:c3:76:8f:ef:0a:b2:95:e7:54:83:54:c6:c9:d4:
d0:fc:82:81:c8:a0:21:b0:d8:bb:6f:fc:21:1f:80:
e1:f9:9c:42:7b:59:6f:4f:e5:3e:26:82:fd:3a:04:
f0:06:2d:f7:e1:dd:85:3d:81:58:8c:1a:17:1a:2e:
54:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:12:5B:02:18:28:B2:47:AE:CF:26:FB:B7:B1:95:E1:00:29:5A:51
X509v3 Authority Key Identifier:
keyid:B4:A5:BE:33:07:12:0E:65:E3:C4:16:5C:9C:8E:74:8C:1C:12:A7:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:b7:ad:4d:b5:f4:df:22:f9:f9:de:3e:0e:49:5a:7d:13:f7:
9a:44:e1:83:be:64:6b:83:da:d0:b1:e3:b8:e6:b9:2c:05:84:
54:86:10:5e:9d:b2:9a:04:fa:75:19:16:58:dc:fd:83:08:be:
49:dd:53:06:77:64:e6:3e:93:32:93:02:ca:1c:89:39:51:b2:
1b:37:e5:49:93:19:26:30:18:c4:50:7b:63:6c:70:59:4a:f8:
cd:cc:8d:49:e8:8a:97:d0:9e:81:d6:05:9f:de:2a:d4:62:b7:
9f:0b:7e:6b:15:54:f6:50:c9:91:25:bc:57:8a:e9:b0:42:7e:
a3:fd:85:b6:5a:3a:6b:1f:94:c7:c6:01:f8:b6:e5:e3:a0:aa:
ec:48:26:2c:95:ec:31:26:a6:07:78:11:3a:fc:a9:b9:0f:01:
83:91:bd:d2:3d:01:53:b9:47:38:a0:e4:11:05:f7:52:bd:79:
fb:97:b4:df:79:6e:eb:1f:06:fb:fc:d9:e6:95:13:0a:81:32:
62:fc:dd:b9:c1:5f:04:85:17:83:25:f7:c7:3c:5e:33:f1:bf:
50:d0:6a:3e:46:55:71:84:c3:7a:99:b9:62:50:fa:2b:4f:7c:
3d:fe:b4:bb:d0:7e:42:aa:4b:36:39:41:e3:89:9d:98:29:5e:
02:83:87:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 08:14:59 2025 by rpki-client