Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
File: 1-TmwPxKU69NaOxXWldfpH4y0H6A.mft (raw, json)
Hash identifier: FV4YEU+l6x4s+Ah5zfFnb5Jt3mZInOpVqqbUAiibfLA=
Subject key identifier: 51:3C:03:6A:29:3A:4C:BA:40:A7:7E:FC:AD:6E:5B:CB:0A:5E:32:9A
Authority key identifier: F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0
Certificate issuer: /CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0
Certificate serial: 0197B6326C78B8A59E44642B5E69E26B3DB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
Manifest number: 1200
Signing time: Sat 28 Jun 2025 11:00:47 +0000
Manifest this update: Sat 28 Jun 2025 11:00:47 +0000
Manifest next update: Sun 29 Jun 2025 11:00:47 +0000
Files and hashes: 1: 1-TmwPxKU69NaOxXWldfpH4y0H6A.crl (hash: Wbkllgj1eLiii8PzC2l/iqwTsC6fcyzbME/kzCr/TYQ=)
2: S1K-LNOfEdqMwJPR6JwjXy3twNM.roa (hash: 6+dgtQWWnCxkd6rViHnDLK3NWbLzGQNeNx6DA6f+PL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:6c:78:b8:a5:9e:44:64:2b:5e:69:e2:6b:3d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0
Validity
Not Before: Jun 28 11:00:47 2025 GMT
Not After : Jun 29 11:00:47 2025 GMT
Subject: CN=513c036a293a4cba40a77efcad6e5bcb0a5e329a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cc:51:2d:ba:74:2c:4b:40:3a:c3:b3:db:49:
41:9a:45:02:8e:fa:d8:b8:bd:cb:9c:af:7f:b7:4f:
c8:50:50:9a:2b:34:3c:d9:7a:56:b0:f3:5f:6c:27:
a5:83:f3:7d:80:3e:f0:26:78:7c:86:3e:e3:2d:de:
ae:22:a1:ea:f7:47:ae:81:5b:72:06:36:d7:26:e4:
76:74:7b:74:61:61:44:ab:41:a1:a8:04:3f:fa:0e:
b8:48:5b:29:19:7e:a6:89:d1:73:59:35:c9:3d:24:
5c:2e:43:99:61:58:d2:12:5d:4e:33:49:a7:fb:22:
bf:83:a7:4b:d8:be:2f:65:24:84:98:96:3c:91:a1:
7e:d2:3b:4b:79:85:70:22:18:01:23:05:96:f7:bd:
ac:a9:59:22:04:6f:85:3d:a7:f4:87:37:d6:16:ad:
ac:e2:e4:89:2e:94:08:f6:2a:b7:44:f5:d3:68:0b:
38:97:24:43:47:6c:6d:a9:3f:d8:c3:26:d0:1c:fe:
08:b1:b2:ca:7a:3d:60:ba:7d:5b:ed:f6:7e:cf:54:
ea:06:5a:2a:f5:40:54:2a:16:20:4d:b8:4f:77:9c:
cc:06:e9:60:a9:83:84:0e:85:de:0d:4b:28:e2:b6:
94:26:4c:9b:f2:8a:d4:79:b9:76:e2:1d:8b:78:80:
0f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:3C:03:6A:29:3A:4C:BA:40:A7:7E:FC:AD:6E:5B:CB:0A:5E:32:9A
X509v3 Authority Key Identifier:
keyid:F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:15:53:6f:41:a6:06:f1:af:56:58:23:e8:f7:a6:47:69:f4:
73:2d:e4:80:b2:43:9a:12:aa:f7:1a:b1:ed:d1:c8:09:db:65:
cb:64:42:0a:98:2b:cf:a7:5b:37:30:7e:11:d0:af:64:63:27:
88:8a:94:bb:d8:40:05:6a:b1:37:59:91:f4:58:55:38:51:ee:
d7:4f:8f:4a:d3:ec:4e:6c:b4:9d:9c:3c:ac:51:2c:f1:9b:3a:
b7:ad:bf:1c:9d:2f:ee:3a:10:bc:ba:f9:23:e5:fc:75:db:e1:
4a:e3:58:94:29:03:f3:9b:9d:42:55:dc:ee:d3:84:c2:f5:22:
4c:eb:d4:41:56:1a:12:25:e7:3a:70:c2:9d:f1:cd:0e:fc:9a:
bb:3d:b3:e2:93:e9:e2:d2:4c:0b:2a:a3:65:a4:aa:c4:40:a0:
2a:14:1d:89:03:92:89:ba:a7:fb:f8:d8:08:98:09:92:46:9c:
4a:5d:73:d9:d6:44:ca:05:54:36:b5:24:1a:0d:f4:f4:ab:09:
5a:d3:60:df:2f:51:dd:a2:c0:e4:ef:32:bd:05:53:cf:47:2e:
39:c2:33:56:af:4e:04:c2:87:2e:1b:65:60:ac:2f:a3:18:51:
5b:1d:eb:c7:1b:f6:ce:5d:32:20:ab:a8:30:87:66:89:60:db:
04:90:5e:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:43:57 2025 by rpki-client