Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
File: TyKDTEeXR7CovQphKfn-ZfgwJtA.mft (raw, json)
Hash identifier: xDp7bMX9LP/yeoJAhLvIj0xwssO8LL92/gbzCdEmC40=
Subject key identifier: E1:9E:02:0D:8D:3B:FE:3C:F1:8E:40:6A:5C:AD:CF:C9:DA:24:39:4E
Authority key identifier: 4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
Certificate issuer: /CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Certificate serial: 0197DF2F81CB31BD15F915455A63DD9457D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
Manifest number: 03B5
Signing time: Sun 06 Jul 2025 10:02:01 +0000
Manifest this update: Sun 06 Jul 2025 10:02:01 +0000
Manifest next update: Mon 07 Jul 2025 10:02:01 +0000
Files and hashes: 1: 5_qRdcU_zBI67bUjjCeGmUT4bso.roa (hash: S33Bj4i6cQIjVG+I+Gmo76E+1aI2U06ldTXtc0u4sXQ=)
2: TyKDTEeXR7CovQphKfn-ZfgwJtA.crl (hash: X7LtqPszmApERh8jLd3fS7KWRxu2gLSwwc5swupOcYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Jul 2025 10:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:df:2f:81:cb:31:bd:15:f9:15:45:5a:63:dd:94:57:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Validity
Not Before: Jul 6 10:02:01 2025 GMT
Not After : Jul 7 10:02:01 2025 GMT
Subject: CN=e19e020d8d3bfe3cf18e406a5cadcfc9da24394e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:fe:7b:fc:04:a7:04:45:fa:5d:da:44:68:1e:
4c:45:d8:c6:1b:8c:87:aa:76:e3:99:1b:87:47:b9:
b4:04:63:84:f8:59:58:7e:41:59:5f:a7:a4:66:e4:
95:72:14:0c:9f:6e:1b:09:f2:02:56:9a:02:96:1a:
ca:50:49:ae:26:ab:17:47:4a:ab:a1:3f:54:96:07:
a7:d6:ee:1b:25:c5:dd:6a:22:75:4d:3c:9a:eb:af:
5c:94:55:2b:68:09:57:39:3b:71:cd:c5:8b:35:12:
69:c5:21:6e:f5:94:3e:16:c2:05:6c:0f:92:70:4d:
f5:b1:5e:8a:7a:2e:f1:d1:50:37:6f:f4:84:d9:4d:
b1:aa:17:a8:f0:ee:97:8e:cd:73:d0:98:f2:37:c7:
5a:a5:57:ae:d6:59:92:b1:f9:48:c9:59:98:64:df:
d8:57:9c:51:8b:67:41:d6:36:9c:03:c0:ad:cc:4c:
f9:f7:bf:00:c9:c6:21:4a:2b:6a:c9:ac:ed:17:40:
04:17:d5:30:f3:c3:11:ae:14:04:81:91:2f:e5:49:
48:4c:85:1c:f1:e1:37:44:0b:2a:17:79:b5:da:75:
28:bf:d4:fc:9c:18:8b:80:27:a0:97:b2:d1:8b:24:
f7:ad:a4:97:df:8f:58:76:cc:1c:cf:3d:4c:27:17:
ac:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:9E:02:0D:8D:3B:FE:3C:F1:8E:40:6A:5C:AD:CF:C9:DA:24:39:4E
X509v3 Authority Key Identifier:
keyid:4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:7d:40:b5:d4:c7:37:9b:9e:a1:38:48:c1:91:45:0c:68:67:
76:d2:6d:5f:e7:23:a7:3b:be:94:d3:96:fc:8b:fa:2a:2a:53:
64:28:0b:fe:a9:6d:7c:c5:c6:9e:6e:40:bf:25:f6:40:af:10:
e8:8f:13:d3:6a:30:cd:56:c3:fe:5a:7e:02:ed:1b:bb:23:02:
26:4f:3e:91:1e:74:0b:d2:d5:d0:e9:f0:9d:c5:c7:85:46:b4:
18:2a:eb:03:0a:b1:ef:5a:fb:4f:e7:cc:75:09:6f:89:fe:62:
2d:00:5c:3c:5f:64:d5:49:80:16:1c:bd:d0:8e:bc:c0:e4:65:
e8:3c:85:de:20:c2:42:38:35:ce:c1:fa:19:67:6b:c1:47:f2:
cc:21:76:32:6e:51:96:3d:bf:21:4a:2e:7a:b4:c3:37:65:f8:
cc:3e:13:fb:c7:26:32:bb:7e:dc:60:f5:36:a9:98:91:cd:5d:
3c:2c:ff:4c:a7:9d:d4:9d:28:1f:21:bd:d7:ad:db:f9:d6:16:
7b:18:9e:55:8a:03:e3:b1:b1:73:19:ad:9b:48:c8:5f:f8:e3:
e9:b1:46:21:13:53:87:4c:04:ca:b7:47:f5:97:82:ce:3b:f6:
94:be:f4:7d:25:ab:16:bc:57:a8:ca:4a:8f:2d:51:45:c6:34:
b4:0a:3e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 6 17:22:35 2025 by rpki-client