Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
File: tRQMX448e8JKGtTIQGQVJj62ur8.mft (raw, json)
Hash identifier: zDBCGSn68IWMXbch6fF01sw6Z6wK5vKOP+c3OeCDcWk=
Subject key identifier: F4:9A:3C:E2:3A:8A:31:45:48:D1:BE:8A:19:5B:FF:41:E4:5E:3F:91
Authority key identifier: B5:14:0C:5F:8E:3C:7B:C2:4A:1A:D4:C8:40:64:15:26:3E:B6:BA:BF
Certificate issuer: /CN=b5140c5f8e3c7bc24a1ad4c8406415263eb6babf
Certificate serial: 0197BF6CCABBB37E155448A612EEBA298572
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
Manifest number: 1375
Signing time: Mon 30 Jun 2025 06:01:07 +0000
Manifest this update: Mon 30 Jun 2025 06:01:07 +0000
Manifest next update: Tue 01 Jul 2025 06:01:07 +0000
Files and hashes: 1: tRQMX448e8JKGtTIQGQVJj62ur8.crl (hash: N3U5dS2R096JP3R+0xtta9wqi+sk334rRaxqi8o3tZ8=)
2: vBSjooCv1VbYtFGvr_WsQil5zco.roa (hash: 9TpEuhk1/IC2lzmVZHygO3k9GcTIx0s6uCEc0lzgzlU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 06:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bf:6c:ca:bb:b3:7e:15:54:48:a6:12:ee:ba:29:85:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5140c5f8e3c7bc24a1ad4c8406415263eb6babf
Validity
Not Before: Jun 30 06:01:07 2025 GMT
Not After : Jul 1 06:01:07 2025 GMT
Subject: CN=f49a3ce23a8a314548d1be8a195bff41e45e3f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e8:59:c9:c0:8c:d0:47:fe:fa:dd:d6:6e:fd:
9e:06:82:8b:61:e3:31:0b:5a:db:27:d5:31:1d:73:
08:b0:87:d6:e2:9f:5f:40:c8:9c:19:48:c2:7f:fa:
b6:79:7c:82:1b:67:a9:66:04:73:b7:dc:3e:ec:57:
a6:bd:b5:34:6f:9d:31:ff:f7:fc:fd:fc:48:87:e0:
4e:12:99:b5:58:99:41:93:a2:2b:b1:4e:b3:f3:d9:
8c:2b:d3:b2:ae:2a:78:5e:49:31:c0:08:4d:e3:b5:
ba:39:0b:af:8b:d1:bf:36:7f:3d:82:2b:bf:a9:3a:
33:16:86:b3:dd:88:e4:0a:58:11:67:65:93:3a:21:
ea:6c:4b:62:99:ca:18:ca:0f:83:50:91:df:80:b7:
67:04:7d:90:ff:b6:f9:87:17:05:fd:80:f6:0f:75:
b4:1c:cd:f0:0c:7a:9f:c8:80:37:8a:1c:43:c8:e8:
9f:2d:43:0a:2d:5c:6c:d9:fe:7e:ac:17:f6:7a:c5:
aa:99:14:a8:cc:df:db:6e:db:a4:4d:08:b3:64:c7:
ad:ac:29:d2:39:18:9b:50:30:51:61:c6:d1:e5:cd:
09:02:14:25:f1:cc:db:c8:95:8f:8f:d5:46:c5:bb:
c9:dd:6d:a6:22:17:e9:22:a0:7e:07:8e:f7:8d:67:
76:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:9A:3C:E2:3A:8A:31:45:48:D1:BE:8A:19:5B:FF:41:E4:5E:3F:91
X509v3 Authority Key Identifier:
keyid:B5:14:0C:5F:8E:3C:7B:C2:4A:1A:D4:C8:40:64:15:26:3E:B6:BA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:51:39:84:b0:8c:48:38:ef:56:16:c1:f3:32:72:82:67:06:
ad:38:9c:ed:07:2f:8f:ef:00:06:46:69:26:ec:b6:dd:22:4c:
d8:ab:b6:09:fa:06:8e:a6:4e:0c:4b:25:1e:85:f3:7e:b6:3f:
d5:c6:3d:49:5a:da:e0:76:cd:31:98:32:c1:95:5f:75:50:c7:
e2:a2:87:c2:25:f5:7e:50:9b:2e:5b:d4:7a:98:8f:d9:ae:ad:
6f:f9:fe:05:98:70:a0:84:af:ac:cd:e6:2b:2f:bd:91:48:e0:
b1:f9:e7:0f:6e:17:28:04:25:85:5a:0a:5c:c1:f3:5c:80:3f:
9b:a7:1f:0e:ee:8b:02:99:11:0d:86:a0:78:3c:f1:46:da:e1:
06:ee:b9:3d:68:d6:0c:5d:e2:38:4d:a0:a7:3a:ee:0e:56:fa:
5c:d2:8d:8c:82:44:77:74:53:0a:f1:39:e8:fc:86:81:47:f1:
3d:3c:ac:f4:8d:11:d0:1b:8f:3e:ad:f7:45:98:30:fa:8f:ea:
a7:69:c0:a6:f6:01:2f:36:a0:1f:30:84:c0:61:75:83:7f:ce:
d8:fa:2f:0b:01:56:4a:29:6f:91:0b:41:93:3e:07:73:f2:a3:
82:21:86:79:27:ca:c6:3c:d7:15:2f:04:bc:1a:9c:ec:dc:8e:
34:3a:e0:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 15:13:04 2025 by rpki-client