Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft
File: trcm8FkrUE5yMwX2e6tRR9TqaW0.mft (raw, json)
Hash identifier: 0pZ+VBxH+ci2OeoA6Ukj9vkK+fOuP9AYv6pRYbGmgAs=
Subject key identifier: 26:A1:28:BB:49:BF:97:DC:36:54:A2:29:B5:2C:FD:F5:59:71:01:9D
Authority key identifier: B6:B7:26:F0:59:2B:50:4E:72:33:05:F6:7B:AB:51:47:D4:EA:69:6D
Certificate issuer: /CN=b6b726f0592b504e723305f67bab5147d4ea696d
Certificate serial: 0197B6D7995C43E37EF51BD3B7D13B2834BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft
Manifest number: 08F5
Signing time: Sat 28 Jun 2025 14:01:12 +0000
Manifest this update: Sat 28 Jun 2025 14:01:12 +0000
Manifest next update: Sun 29 Jun 2025 14:01:12 +0000
Files and hashes: 1: _oI-Lkb0IuWy-UHIoAbDqvwfl1s.roa (hash: mRZXCcW1ghBXMTwSw7NYgVRMYeyGjl4gH8juqLCzVks=)
2: trcm8FkrUE5yMwX2e6tRR9TqaW0.crl (hash: 8wI3FpVYm1W+g85TR3l9Umq4hyxwqHOQ8YcS3Sj24UI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:99:5c:43:e3:7e:f5:1b:d3:b7:d1:3b:28:34:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6b726f0592b504e723305f67bab5147d4ea696d
Validity
Not Before: Jun 28 14:01:12 2025 GMT
Not After : Jun 29 14:01:12 2025 GMT
Subject: CN=26a128bb49bf97dc3654a229b52cfdf55971019d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b5:29:00:9e:29:4d:25:50:08:91:5e:cc:45:
33:77:9c:bb:8f:d2:a5:5e:3d:12:20:28:8a:54:a1:
86:2e:7e:ca:f1:92:0c:4b:85:f8:20:d4:ff:4b:97:
bf:ae:ab:74:cb:42:be:67:6f:e5:9f:96:ad:dc:e8:
85:99:af:16:df:15:2b:c5:64:9d:84:87:28:43:5e:
d1:a3:ef:93:e1:2d:73:0e:60:a4:80:4a:3b:55:f6:
04:39:a1:6b:c7:78:f4:aa:a8:ad:68:a7:1d:14:e2:
8b:a0:5d:75:b9:ba:5f:ae:bb:be:92:8e:5c:fe:fa:
d5:e1:7d:88:2f:17:a0:8a:59:10:cd:ba:6c:07:7a:
1a:92:c8:cc:43:91:74:56:78:9e:34:2c:80:16:dd:
04:20:59:7d:cf:e1:15:64:85:1c:44:18:3b:85:8a:
57:bb:1b:08:c7:e4:6f:dc:f3:cf:96:0c:13:ac:c6:
b6:8c:e1:df:d1:cc:39:ca:4e:bf:89:87:01:47:ad:
4d:87:c8:2d:0d:b5:f9:8f:57:ea:06:39:be:dc:66:
b1:a0:2b:2a:36:0c:ed:5f:b1:8c:32:6d:32:fc:72:
c6:68:9c:63:54:93:c2:21:e8:93:a5:69:63:a1:c9:
a3:b0:a4:09:80:5c:18:50:dc:d9:a4:63:46:d8:72:
7f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A1:28:BB:49:BF:97:DC:36:54:A2:29:B5:2C:FD:F5:59:71:01:9D
X509v3 Authority Key Identifier:
keyid:B6:B7:26:F0:59:2B:50:4E:72:33:05:F6:7B:AB:51:47:D4:EA:69:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:9c:64:fd:5c:aa:61:a5:19:f9:3f:3d:ff:8e:10:77:c6:4c:
9d:cd:15:a4:62:42:6d:8c:ef:9f:b3:cc:3b:db:2b:56:eb:61:
da:5c:c3:a1:8d:24:30:b3:48:49:77:4d:c0:a2:d9:f6:43:9d:
b6:23:4a:f5:bd:be:40:a3:1f:20:67:29:93:e5:ae:53:16:57:
01:cf:2d:71:ac:7e:09:46:bd:d8:45:5a:ae:e4:4c:40:6f:d4:
2d:51:1c:50:0d:16:de:ba:c4:64:46:c5:70:cd:4a:96:ff:65:
0c:80:4a:6d:a6:c3:2e:76:53:0c:7b:b1:dd:e2:60:62:2c:99:
05:6b:c5:62:24:5f:0d:08:bc:02:62:0e:60:f6:9f:5b:21:37:
14:86:55:ae:32:64:5a:ae:1f:be:c9:27:75:f8:f8:b9:15:8e:
38:e1:03:c9:cd:e3:a8:38:7f:e0:07:67:fc:50:bc:0f:11:6d:
9b:1f:15:7a:26:0c:80:64:53:1d:42:0e:05:57:f6:b0:23:6e:
00:cf:fa:91:b8:c0:37:6e:51:29:24:0c:30:c1:92:ed:c7:4d:
fd:6b:28:55:b4:e8:d1:c5:a2:d5:c0:05:ae:00:9f:6e:05:d6:
b1:6a:1a:7a:e1:01:b9:be:d2:b4:2d:2e:d4:08:d4:94:e1:8c:
d5:3e:3b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:35:36 2025 by rpki-client