Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json)
Hash identifier: TTCfg8tsR7NTAa3crAIzSEyRjVMcXO8a1yWyTTesJS4=
Subject key identifier: 69:81:F6:72:68:40:DF:A1:3B:05:DC:B9:20:91:FF:6C:20:79:F3:87
Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136
Certificate serial: 0197B77CA76DE186506991DAC58E1A8D7AE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
Manifest number: 0A45
Signing time: Sat 28 Jun 2025 17:01:29 +0000
Manifest this update: Sat 28 Jun 2025 17:01:29 +0000
Manifest next update: Sun 29 Jun 2025 17:01:29 +0000
Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: 0+QkWmJ5LiDa8e/Ma0BkOVP0KUFLyuWfnqsaHhz6WMQ=)
2: ELYZJGHcWhKUiY7ABJ-PY-iSroQ.roa (hash: XKv64QH5ODk1+MXzK56Lue/Lun/NuUmKCWEmKamL9J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:a7:6d:e1:86:50:69:91:da:c5:8e:1a:8d:7a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136
Validity
Not Before: Jun 28 17:01:29 2025 GMT
Not After : Jun 29 17:01:29 2025 GMT
Subject: CN=6981f6726840dfa13b05dcb92091ff6c2079f387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ff:ab:e0:55:de:38:e6:bf:9e:94:1f:8c:9b:
55:89:7c:a6:38:1e:22:e0:0b:8c:10:02:ee:2a:98:
bb:d2:a4:f7:3b:09:02:ea:01:3e:d8:76:c4:b5:10:
71:88:5e:f0:18:76:cb:d0:0b:38:23:b7:4e:19:9e:
ca:1b:ba:82:d0:1e:11:71:ac:7d:1f:f7:88:b0:fd:
80:4d:4e:f9:8f:3c:04:4c:48:a5:13:4b:f9:82:a7:
a3:82:56:dd:84:57:53:79:23:f4:a3:1d:82:7b:09:
36:3f:5f:44:6d:a5:e5:e0:76:af:1f:79:1c:fd:a9:
fa:9d:57:59:08:35:b8:3e:e9:ef:21:c1:1e:63:d0:
20:0b:09:76:e8:94:a3:fd:40:49:26:ce:69:08:6f:
8e:8f:7e:c6:7d:9d:19:3f:ed:98:24:ab:88:35:da:
74:3c:15:2e:a4:de:04:66:a6:42:fb:22:4d:e0:ce:
25:0d:c3:cd:a5:b7:29:ad:00:33:80:eb:dd:22:fc:
bb:de:6d:bc:c2:83:d6:ed:de:67:c2:21:fb:b0:f1:
f4:e6:b4:b9:72:30:95:50:be:07:c4:0e:ce:81:9f:
b8:18:b1:18:c3:40:94:91:3c:1d:24:ae:d9:ff:9f:
70:26:07:5b:92:27:c4:56:51:2c:52:b5:2a:3e:c8:
91:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:81:F6:72:68:40:DF:A1:3B:05:DC:B9:20:91:FF:6C:20:79:F3:87
X509v3 Authority Key Identifier:
keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:3a:f6:20:0c:c4:9c:63:a1:8f:02:cf:10:f3:55:58:9a:d9:
55:4c:9d:12:eb:30:52:62:48:26:c8:41:8d:18:cf:5b:5c:33:
fe:aa:01:5c:f7:e0:eb:6d:72:a4:5d:e0:e8:9d:a8:80:2e:58:
7c:4b:70:49:fc:50:5a:ed:37:46:64:3b:66:5b:fc:67:22:58:
c9:e0:79:80:17:ed:f4:a5:1f:08:e9:69:b0:4b:91:da:65:38:
7f:13:e8:e5:40:e8:78:69:79:e4:48:60:e1:e4:ce:1f:0b:61:
43:8c:6e:97:1b:bf:5b:78:55:5a:df:2e:60:ec:84:b7:4c:b6:
e0:02:2a:8f:c2:46:20:07:03:d8:78:1d:36:1e:7b:06:32:ea:
98:fd:13:1a:8c:dd:c3:18:ad:89:89:0f:af:de:c7:c7:bd:31:
41:af:1c:2d:e0:81:e7:28:7f:ac:89:7d:6a:d3:aa:b4:89:56:
f3:f0:50:65:9a:c1:a7:50:ed:b1:9d:5e:2e:bc:d0:b6:3b:d2:
ed:58:3f:d4:3b:de:db:8e:33:5b:90:f4:06:48:07:c9:80:59:
8a:d0:0e:cf:62:ed:e3:02:d0:0e:9f:b4:40:3d:6d:5d:81:04:
aa:58:2f:6e:fc:53:5e:d1:2c:90:80:ad:b9:c1:9c:4c:d0:12:
bc:ae:1e:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:12:13 2025 by rpki-client