Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
File: TZRvTfIjdJGmjfpAe-QfroS72mY.mft (raw, json)
Hash identifier: rtQyp5+BIT7YrKlweJAet4ejZVlWF0X7td7p2+QGjDw=
Subject key identifier: CC:B7:DD:FB:8C:C9:CC:17:80:E9:67:E5:AB:B1:14:6A:34:F0:AF:85
Authority key identifier: 4D:94:6F:4D:F2:23:74:91:A6:8D:FA:40:7B:E4:1F:AE:84:BB:DA:66
Certificate issuer: /CN=4d946f4df2237491a68dfa407be41fae84bbda66
Certificate serial: 0197B6D72CB92ADB720E52423D5EE8FD8582
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
Manifest number: 0F17
Signing time: Sat 28 Jun 2025 14:00:44 +0000
Manifest this update: Sat 28 Jun 2025 14:00:44 +0000
Manifest next update: Sun 29 Jun 2025 14:00:44 +0000
Files and hashes: 1: C8PR4XXWsjpP8PHYuoN78zoE9nY.roa (hash: uu2Jn3Slz9u+yGZ22j4LqOkp9lCOWyyfMINckydLJ3E=)
2: TZRvTfIjdJGmjfpAe-QfroS72mY.crl (hash: AhODkpG9wDMiQzPvf5zFmu01wgyYNanpfIxSwj+w96Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:2c:b9:2a:db:72:0e:52:42:3d:5e:e8:fd:85:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d946f4df2237491a68dfa407be41fae84bbda66
Validity
Not Before: Jun 28 14:00:44 2025 GMT
Not After : Jun 29 14:00:44 2025 GMT
Subject: CN=ccb7ddfb8cc9cc1780e967e5abb1146a34f0af85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:bc:b1:02:f9:3c:59:69:b0:54:b7:1b:c8:bb:
8c:b9:9c:bb:08:da:b8:01:d0:6e:55:de:3c:0e:c0:
e8:d4:c2:eb:b2:a1:ba:90:44:05:92:21:5b:9e:8d:
a3:3f:ad:25:e7:de:73:55:5d:33:7a:90:d3:8b:a0:
7d:9b:38:8b:cd:c4:73:22:30:e3:82:5f:2f:4d:bc:
30:3a:ed:b3:61:cd:c0:5d:0d:2c:49:7a:d0:21:a8:
92:9e:c1:1f:90:3e:11:64:68:34:3b:08:31:d6:e3:
ef:dc:23:99:eb:2d:cf:f1:a9:f2:27:cd:bc:49:e1:
31:0f:2a:bc:5e:4f:f4:b0:26:cb:98:aa:2c:94:d6:
86:78:bd:81:44:17:8f:86:a9:e2:74:15:fd:06:94:
bd:14:dd:04:9e:9e:b1:3c:7c:5a:ba:0f:15:fa:62:
cc:73:dc:f0:99:45:c1:70:0c:c7:18:dd:a7:9e:36:
22:64:fa:74:ee:1f:70:29:c6:30:ed:47:f5:e2:f9:
67:17:c9:b6:03:e3:ed:86:ac:f8:13:b3:aa:ca:c9:
11:0b:97:18:f5:bc:47:ee:3f:fb:6b:d1:4b:9d:0f:
df:b3:0d:29:54:08:31:63:19:f0:88:dd:5f:d1:5c:
c9:45:ba:d7:d1:14:8b:b8:60:1b:5f:3f:99:4f:ac:
95:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:B7:DD:FB:8C:C9:CC:17:80:E9:67:E5:AB:B1:14:6A:34:F0:AF:85
X509v3 Authority Key Identifier:
keyid:4D:94:6F:4D:F2:23:74:91:A6:8D:FA:40:7B:E4:1F:AE:84:BB:DA:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:25:17:e3:fd:8b:53:43:e8:99:ad:bf:25:85:f8:e2:c1:1b:
d4:18:49:17:5b:f2:9e:bc:22:bc:76:67:5c:b0:ec:9e:5a:11:
88:06:19:79:fc:2a:58:aa:cc:9a:e4:d6:eb:3d:fc:21:88:9f:
c2:53:a2:1e:dc:e9:f4:48:23:83:76:f2:45:94:2a:c6:5e:15:
f3:d4:e8:cb:95:41:5a:e6:a8:d2:f4:c2:94:2a:d2:c8:53:00:
c1:22:8a:eb:ac:11:a7:b4:df:ce:e3:9d:84:4c:83:e5:10:45:
e2:77:4b:94:6d:9e:fd:d5:bc:36:5b:43:39:b8:93:e9:3f:81:
92:b2:48:62:cc:76:16:c8:19:a1:f2:75:6c:01:1d:c0:6f:09:
fe:c5:53:85:70:88:81:ec:cc:e6:90:18:1e:e0:fc:dd:5c:76:
3d:b2:f9:38:6f:87:1d:f9:8b:8f:6b:7e:48:5f:1b:81:8e:e1:
da:e3:1c:ee:48:78:d9:df:e0:c9:b0:d6:4e:15:ca:42:44:e8:
07:93:ae:c4:22:80:35:d9:f0:19:5a:36:3d:b5:e1:9f:b5:42:
11:63:e3:5e:5d:79:f4:55:4b:16:82:80:8a:46:23:15:d9:3e:
b8:3c:b3:29:ed:cb:da:ed:37:6c:a5:40:41:80:e6:88:08:d8:
72:db:13:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:31:38 2025 by rpki-client