Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
File: TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft (raw, json)
Hash identifier: iT0ux1NkWFPLIz6kX/7FVIfpPNDrddOejzwwA+aKrG0=
Subject key identifier: 07:80:26:BA:53:25:23:47:7D:14:22:6B:2C:C8:30:28:40:69:FD:9C
Authority key identifier: 4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
Certificate issuer: /CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Certificate serial: 0197B82101F9C43C6D23D6013E7A6F079B6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
Manifest number: 025E
Signing time: Sat 28 Jun 2025 20:01:00 +0000
Manifest this update: Sat 28 Jun 2025 20:01:00 +0000
Manifest next update: Sun 29 Jun 2025 20:01:00 +0000
Files and hashes: 1: 1-QbsigNOAsIOrzATvCDKf5YVw3s.roa (hash: gWNRwRZG0Ifn0uSFb+Au9uZSZqHds/SqKOwbteITnow=)
2: TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl (hash: XcxbzznTNFmu4keisnnmB/3V6kNpi1XojuWpanuCdqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:01:f9:c4:3c:6d:23:d6:01:3e:7a:6f:07:9b:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Validity
Not Before: Jun 28 20:01:00 2025 GMT
Not After : Jun 29 20:01:00 2025 GMT
Subject: CN=078026ba532523477d14226b2cc830284069fd9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e3:15:be:19:85:d9:16:43:66:dd:76:5b:62:
78:05:e1:dd:46:66:5b:0e:57:5f:e8:1c:ce:e8:45:
7f:81:8b:93:36:3f:8f:1b:40:23:b0:15:c8:7d:cf:
ee:52:16:b8:ed:03:f6:d8:0e:8d:2f:26:1e:34:f3:
18:96:c8:c0:7d:6d:eb:ec:e0:81:c6:cc:81:d5:f2:
23:83:cf:cd:e2:63:96:04:d9:ed:b4:03:18:a4:e0:
20:8e:60:c6:2c:ea:3d:35:66:96:5c:6d:20:c5:1c:
f7:e5:cf:93:0a:de:27:6c:5e:df:fd:5e:c0:59:90:
3a:84:87:0d:33:cd:4a:94:0f:dc:59:c8:ff:17:49:
56:97:6e:48:6a:10:e2:3b:01:44:6b:e7:5d:78:be:
8b:8f:d2:1d:6b:e6:88:a4:c9:b2:25:e4:19:eb:df:
12:e9:fa:f3:12:69:21:da:60:79:cb:0c:e2:6b:cf:
9c:83:a5:4f:e3:e8:08:fc:32:72:15:5f:3a:81:11:
a6:40:1a:ff:71:ac:e8:8c:ba:dd:34:9b:24:02:e5:
f0:e2:c1:3c:d2:9e:6d:25:73:4e:37:27:f8:b1:56:
3e:93:5d:83:74:68:85:ee:b4:94:9d:45:db:d1:a7:
9e:90:ba:92:25:f2:30:f8:41:2b:e6:83:42:1d:22:
5a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:80:26:BA:53:25:23:47:7D:14:22:6B:2C:C8:30:28:40:69:FD:9C
X509v3 Authority Key Identifier:
keyid:4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:bb:ab:23:9b:76:5c:9c:08:d0:e7:fe:75:b1:2a:88:16:d8:
25:99:f1:98:4b:83:cc:c9:bb:40:68:76:40:e0:f4:cb:64:cc:
49:87:b5:d1:71:8b:a4:7f:6d:09:29:d7:07:15:6d:6d:62:f3:
52:fd:35:4a:c5:5c:1c:47:91:59:39:47:1d:7f:74:ea:a6:2f:
b1:5e:42:9f:ff:ef:c2:13:78:2b:6a:29:95:df:6b:36:12:93:
47:5c:f7:aa:a0:29:fd:47:1a:91:67:6e:15:8c:4a:76:a0:95:
94:74:cf:72:c7:4f:21:fc:d1:8d:ce:71:3a:5f:1d:3e:40:2f:
14:83:80:66:0c:77:21:28:10:54:72:b9:59:64:4e:f0:b2:dc:
ff:21:6e:a9:eb:56:30:ff:cb:4e:f5:c5:59:04:cb:5f:c3:c5:
da:f8:d0:dc:6b:74:72:be:93:9c:8f:62:27:dc:fb:68:6b:75:
31:5c:57:09:5b:18:d0:e4:df:4b:47:3d:2d:27:5e:7e:3b:57:
c3:4e:c0:b0:cb:95:80:b4:62:8e:40:45:af:a9:c8:7a:80:f0:
eb:5b:09:b6:67:36:ff:d7:8c:22:cc:b7:a3:6d:c2:ae:9f:06:
51:04:b3:d0:f2:e5:26:ae:39:3d:a2:a2:19:8e:30:00:6c:d4:
4a:bd:c7:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:22:36 2025 by rpki-client