Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
File: Tom7FOgJr_PsljCL2a6GUafndio.mft (raw, json)
Hash identifier: 8VJzdEEmW1TH7W8l4IJxBugBbE1CmnXv48I5GtTl1po=
Subject key identifier: D2:1E:B9:52:02:F2:89:4A:F9:0F:6A:83:69:AC:C1:4C:44:98:C0:E3
Authority key identifier: 4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
Certificate issuer: /CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Certificate serial: 0197B8FCEE45AEB0BBA2B74655EE63A8F8E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
Manifest number: 15B6
Signing time: Sun 29 Jun 2025 00:01:13 +0000
Manifest this update: Sun 29 Jun 2025 00:01:13 +0000
Manifest next update: Mon 30 Jun 2025 00:01:13 +0000
Files and hashes: 1: Tom7FOgJr_PsljCL2a6GUafndio.crl (hash: zjrpB9Q6+x0OaksYnD2qhGUzchusmOwoffX7d2ac1F8=)
2: fxuqWXx_O_zewgAff6HXjyvgKp0.roa (hash: cm4JBhg0Zq8hHGX0z/7BWc/vnIZVK86NCDFtwq+RrhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fc:ee:45:ae:b0:bb:a2:b7:46:55:ee:63:a8:f8:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Validity
Not Before: Jun 29 00:01:13 2025 GMT
Not After : Jun 30 00:01:13 2025 GMT
Subject: CN=d21eb95202f2894af90f6a8369acc14c4498c0e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:65:63:68:e6:e7:5d:3b:c7:16:2a:78:33:59:
9e:75:2b:b8:5e:e4:aa:54:cd:94:31:cf:45:78:05:
13:d5:5e:c6:89:57:4a:19:b3:46:86:4f:98:48:06:
e1:b8:19:d8:b8:16:4b:d8:05:1f:bb:96:63:e6:83:
db:13:1d:e0:5d:a8:c0:6a:7c:1f:73:b6:21:33:a7:
b5:0a:f9:90:4d:19:84:c0:eb:e3:94:c1:39:3a:b6:
74:4e:8d:49:a6:ef:ab:f7:b6:c1:c8:e0:e7:67:b5:
d4:47:4f:77:73:36:16:cd:65:56:70:16:6c:b3:03:
eb:e2:4c:99:35:a1:45:eb:69:63:08:2a:75:92:65:
c1:e8:c7:50:20:eb:6c:73:14:bd:0b:08:ab:33:1c:
b4:b3:39:6e:dd:68:ca:8c:e5:11:7f:3f:3a:7c:ea:
0f:59:25:35:79:88:12:1f:5d:52:f6:a4:e6:d1:f7:
f1:ed:bf:92:6c:79:89:46:44:9d:13:a5:c1:2c:ac:
42:7f:5a:a7:32:69:c6:4d:a1:c7:38:db:91:9e:30:
d4:42:10:b6:e9:0e:58:d0:10:fa:f9:50:22:78:fe:
31:73:8d:fa:88:8f:36:92:fb:5a:3f:53:36:5e:0b:
29:dd:79:9e:d7:08:c7:f7:61:ed:17:85:cc:f7:7e:
d2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:1E:B9:52:02:F2:89:4A:F9:0F:6A:83:69:AC:C1:4C:44:98:C0:E3
X509v3 Authority Key Identifier:
keyid:4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:3a:f9:e7:9a:a8:c1:0f:97:e7:66:3e:d7:4c:e5:b7:e3:3c:
a5:78:6a:7b:8c:dc:6e:0a:95:d9:59:20:5a:a5:f3:c0:76:20:
18:c6:70:96:7f:c5:7d:49:cd:af:ab:c9:15:23:09:b7:03:c4:
87:30:12:0c:24:c0:14:20:e0:7d:2f:71:e5:48:0e:b2:f8:c5:
ac:30:74:6d:4a:19:89:00:62:da:14:15:65:ca:fa:97:7a:31:
69:19:b7:59:53:79:2f:96:9e:a4:ed:4d:04:7a:9c:27:ca:55:
f4:ed:f8:c6:a7:6c:7a:52:e5:7a:b1:84:96:3f:5f:6e:13:8e:
1b:68:dc:3e:f5:42:94:2a:38:e2:ca:88:37:12:72:d8:06:71:
df:96:14:90:66:da:bd:e5:3d:74:7f:a4:e8:ca:83:93:96:4d:
57:17:51:cd:cd:32:d9:70:8c:bf:83:48:3a:60:2f:52:74:f1:
fa:ca:14:a5:55:fc:b1:02:c9:b3:3f:87:e2:2b:a0:93:f2:b8:
b0:d7:e8:20:02:35:16:c2:5e:e3:82:92:f6:7c:40:bb:88:6e:
ff:98:84:e4:d4:1c:4e:2e:f2:f8:98:3b:20:54:f4:cd:c0:8a:
e6:93:07:32:87:f3:5b:a3:a1:6d:1b:6e:9c:5b:26:57:6b:0c:
d6:51:ff:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4/O5FrrC7ordGVe5jqPjkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlODliYjE0ZTgwOWFmZjNlYzk2MzA4YmQ5YWU4NjUxYTdl
Nzc2MmEwHhcNMjUwNjI5MDAwMTEzWhcNMjUwNjMwMDAwMTEzWjAzMTEwLwYDVQQD
EyhkMjFlYjk1MjAyZjI4OTRhZjkwZjZhODM2OWFjYzE0YzQ0OThjMGUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmVjaObnXTvHFip4M1medSu4XuSq
VM2UMc9FeAUT1V7GiVdKGbNGhk+YSAbhuBnYuBZL2AUfu5Zj5oPbEx3gXajAanwf
c7YhM6e1CvmQTRmEwOvjlME5OrZ0To1Jpu+r97bByODnZ7XUR093czYWzWVWcBZs
swPr4kyZNaFF62ljCCp1kmXB6MdQIOtscxS9CwirMxy0szlu3WjKjOURfz86fOoP
WSU1eYgSH11S9qTm0ffx7b+SbHmJRkSdE6XBLKxCf1qnMmnGTaHHONuRnjDUQhC2
6Q5Y0BD6+VAieP4xc436iI82kvtaP1M2Xgsp3Xme1wjH92HtF4XM937SWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNIeuVIC8olK+Q9qg2mswUxEmMDjMB8GA1UdIwQY
MBaAFE6JuxToCa/z7JYwi9muhlGn53YqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVG9tN0ZPZ0pyX1BzbGpDTDJhNkdVYWZuZGlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9hZTNjYzgtY2U3NC00ZDU3LTgxOWEt
OWZhMDJjYzI0OGU1LzEvVG9tN0ZPZ0pyX1BzbGpDTDJhNkdVYWZuZGlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni9hZTNjYzgtY2U3NC00ZDU3LTgxOWEtOWZhMDJjYzI0OGU1
LzEvVG9tN0ZPZ0pyX1BzbGpDTDJhNkdVYWZuZGlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHjr555qo
wQ+X52Y+10zlt+M8pXhqe4zcbgqV2VkgWqXzwHYgGMZwln/FfUnNr6vJFSMJtwPE
hzASDCTAFCDgfS9x5UgOsvjFrDB0bUoZiQBi2hQVZcr6l3oxaRm3WVN5L5aepO1N
BHqcJ8pV9O34xqdselLlerGElj9fbhOOG2jcPvVClCo44sqINxJy2AZx35YUkGba
veU9dH+k6MqDk5ZNVxdRzc0y2XCMv4NIOmAvUnTx+soUpVX8sQLJsz+H4iugk/K4
sNfoIAI1FsJe44KS9nxAu4hu/5iE5NQcTi7y+Jg7IFT0zcCK5pMHMofzW6OhbRtu
nFsmV2sM1lH/vg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 01:36:41 2025 by rpki-client