Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
File: tDlfbOqaAYpMyEgY5qo1INMiIYs.mft (raw, json)
Hash identifier: EiFFsjZnaMVGqbQM8TKTYPHfkXzAluHVIROZdxQadOA=
Subject key identifier: B9:7F:AB:C2:E3:94:25:42:DD:B2:6B:A3:5F:5E:9A:26:7E:89:C5:91
Authority key identifier: B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
Certificate issuer: /CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Certificate serial: 0197B6A0757BEA913C073D7F3A134F939801
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
Manifest number: 0C37
Signing time: Sat 28 Jun 2025 13:00:58 +0000
Manifest this update: Sat 28 Jun 2025 13:00:58 +0000
Manifest next update: Sun 29 Jun 2025 13:00:58 +0000
Files and hashes: 1: UoFhfe1D4fv5504pD16hAMtOHqM.roa (hash: f5OjLqYpJfmM6P+Sc+etueFJmxpiBV6zei8gZZWeXpE=)
2: tDlfbOqaAYpMyEgY5qo1INMiIYs.crl (hash: 9Hkz5umZbg9dqSZ3ND0vY8irNpvcDJFZpr1GEKvYxlc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:75:7b:ea:91:3c:07:3d:7f:3a:13:4f:93:98:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Validity
Not Before: Jun 28 13:00:58 2025 GMT
Not After : Jun 29 13:00:58 2025 GMT
Subject: CN=b97fabc2e3942542ddb26ba35f5e9a267e89c591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c7:9d:f1:6b:cc:bd:44:3f:41:33:61:42:76:
2b:4f:50:94:e3:75:a3:6c:9a:9f:f2:27:ae:f7:d5:
1f:d2:3a:b2:21:91:65:43:11:a3:b3:bf:f0:64:b5:
a4:e7:b7:f3:e7:5b:69:3d:6d:b9:c1:c9:83:8d:82:
67:b8:36:9a:6c:fa:ae:21:9e:88:0e:29:8d:c3:94:
e3:32:6b:42:67:39:c3:c1:68:89:da:0e:8c:20:19:
6b:26:1f:ce:18:9c:b9:62:dc:b7:00:c2:26:d8:50:
27:43:a6:54:1a:b3:00:a8:4d:a4:cf:3b:f1:68:64:
b3:ac:b0:c6:6b:db:47:8d:cc:8c:d4:11:24:cd:9a:
45:01:6e:5b:95:40:dd:f5:65:2b:c8:4d:c5:40:e1:
4d:2a:67:82:e5:ef:7f:fc:de:1e:f4:ad:e1:d4:dd:
33:3d:d9:f2:5a:8a:ec:e6:f7:03:ac:0c:a5:13:60:
0d:0d:be:86:b2:e7:b7:45:92:bd:86:1c:6f:37:42:
5e:ed:6b:ca:3d:c1:4b:c6:69:58:f5:a4:bc:bb:47:
36:7e:86:ec:86:b6:ab:32:17:e3:aa:50:28:0f:92:
96:6b:a2:67:5f:c7:11:fa:e5:55:05:b5:7b:81:ff:
0d:4a:66:f8:03:6a:07:76:0f:ab:b6:3e:43:39:d5:
52:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7F:AB:C2:E3:94:25:42:DD:B2:6B:A3:5F:5E:9A:26:7E:89:C5:91
X509v3 Authority Key Identifier:
keyid:B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:e0:6f:af:e5:e1:7f:d1:6a:4b:a8:87:5b:86:35:9d:37:15:
a1:37:42:94:b4:d2:fa:de:af:96:44:c3:34:99:89:46:ac:53:
6d:a7:f2:ed:33:cd:1d:b7:41:87:9e:e1:f7:e5:51:77:36:7c:
ef:0a:34:17:98:19:00:d7:c1:8e:c0:e0:53:0c:3f:bd:1c:10:
ad:9c:29:b8:ab:9b:06:c0:55:71:27:e2:e9:3a:de:b3:ef:34:
ec:e1:22:cf:50:3a:04:71:6a:e9:39:de:45:96:90:3c:c4:f3:
3f:bf:34:9c:60:49:d2:9f:7a:12:12:f0:c5:bd:55:c5:8e:08:
3b:a6:7f:99:da:f6:2b:c2:94:ca:74:34:bc:f7:11:21:bd:69:
db:3a:77:47:49:c1:f2:77:90:5d:81:3d:aa:24:ce:28:7e:c1:
b4:ad:5a:14:76:87:0e:ad:89:9f:5a:6e:58:56:8e:eb:63:0b:
fe:db:39:80:9a:d5:33:25:37:27:c3:43:a4:23:71:96:07:a1:
e4:cc:15:dc:61:55:87:4c:f2:b9:c8:29:4c:9c:f3:17:a0:e6:
17:0a:24:b0:4a:c8:8b:a2:a1:e3:03:51:51:32:00:3f:d4:a2:
15:6d:b4:db:19:a3:b1:eb:aa:09:0c:f9:81:43:00:89:ef:ae:
a7:7a:18:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:01:51 2025 by rpki-client