Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft
File: TRCb5Q1A4ys9UW_B63LqsyxeC84.mft (raw, json)
Hash identifier: nuPIiaFAfYRUprt0YU6AUVcii8745dsXFaeGxKS/Vpk=
Subject key identifier: 63:12:07:40:1C:E1:AD:4A:F8:8B:59:0C:E5:0F:2B:40:F4:BD:F0:34
Authority key identifier: 4D:10:9B:E5:0D:40:E3:2B:3D:51:6F:C1:EB:72:EA:B3:2C:5E:0B:CE
Certificate issuer: /CN=4d109be50d40e32b3d516fc1eb72eab32c5e0bce
Certificate serial: 0197B6D790F73F7FC3780B8CC292D279D7DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRCb5Q1A4ys9UW_B63LqsyxeC84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft
Manifest number: AA
Signing time: Sat 28 Jun 2025 14:01:10 +0000
Manifest this update: Sat 28 Jun 2025 14:01:10 +0000
Manifest next update: Sun 29 Jun 2025 14:01:10 +0000
Files and hashes: 1: TRCb5Q1A4ys9UW_B63LqsyxeC84.crl (hash: CHycJ+w/ZUBtFj+ovdQY4Tntf0xDdpXWam2/De3NBK4=)
2: _ysqE-Sv0fTgw_gy8qUtBvX43Zw.roa (hash: XDdFm9ijjrDqLsWMBsXWF0Txzhfv7gyIMnkn7RG7zb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRCb5Q1A4ys9UW_B63LqsyxeC84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:90:f7:3f:7f:c3:78:0b:8c:c2:92:d2:79:d7:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d109be50d40e32b3d516fc1eb72eab32c5e0bce
Validity
Not Before: Jun 28 14:01:10 2025 GMT
Not After : Jun 29 14:01:10 2025 GMT
Subject: CN=631207401ce1ad4af88b590ce50f2b40f4bdf034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c8:ef:d4:85:25:18:df:47:9d:60:51:80:5a:
3b:1e:f2:0d:ac:da:4c:83:9d:8f:9f:1f:e6:fb:7b:
bc:f8:ec:82:4b:58:32:65:81:5e:04:a5:5d:27:63:
21:54:87:68:3f:fd:b5:2e:3e:b1:d3:45:f0:46:54:
1a:b5:7a:bc:c7:65:80:cf:6d:62:71:5d:42:ca:92:
4a:79:20:b6:e3:9b:50:62:1a:44:82:19:75:39:d9:
89:17:96:e8:74:74:31:ff:14:f1:62:27:2d:0e:ae:
73:23:be:d3:fd:c6:6c:de:ea:76:47:79:f1:5c:2c:
ee:c0:88:a0:5b:22:8e:a9:4f:60:63:97:4b:25:62:
60:b9:07:28:1c:aa:70:60:5f:4d:51:e5:04:07:50:
bb:a6:ac:7b:f1:dd:51:b6:37:eb:e1:2e:dd:f6:32:
e6:05:6b:9b:08:98:d1:4e:b8:8f:3f:bf:3b:ac:de:
71:25:da:0d:06:c8:c0:9d:b7:6d:bf:64:9b:65:90:
8b:53:9f:b0:08:5d:fb:87:14:b3:9b:7f:c5:6d:f2:
cb:3a:f6:79:d3:45:4c:24:2e:11:61:01:6f:69:78:
47:c7:16:4d:4e:9c:68:e9:87:76:e3:e4:8b:3b:fc:
a2:14:ac:8c:5c:c7:0c:19:7f:f5:b3:a8:29:6b:92:
da:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:12:07:40:1C:E1:AD:4A:F8:8B:59:0C:E5:0F:2B:40:F4:BD:F0:34
X509v3 Authority Key Identifier:
keyid:4D:10:9B:E5:0D:40:E3:2B:3D:51:6F:C1:EB:72:EA:B3:2C:5E:0B:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRCb5Q1A4ys9UW_B63LqsyxeC84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:d5:b5:77:50:ef:33:3f:62:c2:14:d5:7f:e4:ee:29:e4:1e:
72:88:7e:d6:90:3d:c8:fa:a2:45:be:72:f4:9e:3f:f3:db:2a:
d7:50:96:cb:ad:8a:c0:5e:d5:f1:09:cd:56:e3:61:c8:1d:14:
6d:6a:5a:9e:85:90:b6:2e:69:c1:1d:88:e0:18:f6:93:51:f5:
27:fd:0d:88:d1:ea:96:ec:9c:e7:5f:e2:24:6c:59:2b:b4:e3:
67:31:6e:e8:41:df:ab:16:02:fc:ae:a9:34:13:1e:66:4f:94:
c1:de:98:db:b3:0a:3b:c8:c5:f5:a3:bd:aa:f1:29:5c:0d:40:
5b:96:f4:2b:1e:e2:e1:3c:cf:85:09:ab:7a:d6:ff:24:35:82:
c4:ed:25:4c:1a:00:a4:ff:38:38:61:1e:48:42:40:91:99:8b:
f4:57:f7:f2:e4:8a:2e:d0:d1:91:9e:f2:4a:dd:fe:1d:e5:5c:
67:dc:b7:fc:d4:d4:e4:d4:84:c0:24:3e:c5:49:56:5f:cc:d3:
92:9e:5b:85:0f:66:20:30:6c:61:40:c7:e6:c8:02:46:dc:c3:
a1:e9:53:9b:26:de:20:6b:00:7c:6c:c5:a5:f0:c7:33:52:c3:
4b:cb:d9:1a:02:4c:e0:2d:1e:87:7b:1c:61:80:0e:01:19:77:
ba:57:67:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:42 2025 by rpki-client