Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
File: tDJYoYz00SKOXHkHDfpjMRaDIMU.mft (raw, json)
Hash identifier: tYmvKr8D1gu36IhLnGmtilICR2lToQP1psjHyQRIWNk=
Subject key identifier: D8:61:BB:5D:F1:8E:93:EE:CE:BC:AF:23:97:26:93:D5:BF:BB:F9:8D
Authority key identifier: B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
Certificate issuer: /CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Certificate serial: 0197B7459475A3EA178B8690F5A31F4BEE11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
Manifest number: 13F8
Signing time: Sat 28 Jun 2025 16:01:19 +0000
Manifest this update: Sat 28 Jun 2025 16:01:19 +0000
Manifest next update: Sun 29 Jun 2025 16:01:19 +0000
Files and hashes: 1: 28g4Blr7nuSyJeVmwy4cGLK9eb8.roa (hash: Q3uRjW4ymMVkt8l5TduM8mGnhXb4GzyvEHZ5j93is8c=)
2: psNnDsOb3MJQFpyT8HfsVNSnwog.roa (hash: KJkUgz1VxvV5lZj00xJ9seKTuebHbMbR6MJlSYq/h5Q=)
3: tDJYoYz00SKOXHkHDfpjMRaDIMU.crl (hash: LTLbcFWAnj/PFe+2GWYt1aGLr1MHb8gaPYb585tuGNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:94:75:a3:ea:17:8b:86:90:f5:a3:1f:4b:ee:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Validity
Not Before: Jun 28 16:01:19 2025 GMT
Not After : Jun 29 16:01:19 2025 GMT
Subject: CN=d861bb5df18e93eecebcaf23972693d5bfbbf98d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:32:c7:76:3c:1c:41:87:46:30:b5:6b:f3:23:
d1:fe:ce:d8:af:43:06:2d:0a:9f:fb:1f:53:fa:75:
ce:10:f5:9e:45:15:09:4e:89:2a:dc:20:ed:da:f0:
81:65:73:5e:8f:55:ea:1a:21:ab:35:7e:11:76:a4:
f6:d8:f1:f4:36:3c:3a:0f:ee:2d:14:00:5b:f8:0c:
6c:5d:5d:d1:4f:d3:98:cb:b7:17:a3:0f:fb:fb:0e:
f0:7d:6d:0b:03:71:dd:ff:81:0f:e4:d2:7e:2e:8b:
fc:a5:81:e7:6d:c4:e3:f4:6c:59:f9:ff:20:41:57:
1c:0a:b9:f4:c6:16:f0:56:55:07:9e:71:2f:a3:5b:
51:9e:7e:29:ea:68:c4:cc:1a:a4:d2:61:11:0e:6e:
20:83:0b:c3:53:0f:13:84:84:de:76:01:3b:c9:60:
94:47:35:56:83:fa:d0:bf:a0:e4:34:7f:d2:75:e1:
01:7a:eb:21:6e:b8:8a:1c:f6:31:04:25:94:5f:f2:
8e:8f:40:69:d8:65:e0:71:ac:65:7f:5e:0f:95:8a:
2d:10:82:d0:57:e1:ea:6d:4a:ba:0b:77:6c:63:26:
25:11:b5:b2:96:90:34:04:5c:33:ad:20:aa:25:b1:
fe:d8:24:9c:b6:63:df:6e:e4:66:63:93:93:93:4d:
93:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:61:BB:5D:F1:8E:93:EE:CE:BC:AF:23:97:26:93:D5:BF:BB:F9:8D
X509v3 Authority Key Identifier:
keyid:B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:dd:15:6f:22:2c:f8:34:a2:a3:ab:48:90:34:75:55:5b:36:
01:1e:aa:26:73:02:c8:b2:0b:8e:88:e4:cf:6c:65:fc:79:b2:
bf:f6:da:5e:43:cf:c1:cf:e5:04:15:f8:3c:73:c2:6b:01:33:
09:8e:76:bc:7f:58:10:f9:cd:fc:95:a1:b5:62:d5:5f:b7:de:
eb:35:b6:7d:30:24:e6:6d:ee:2b:7b:bb:1e:7c:2b:8a:50:28:
59:66:ff:3c:b0:8d:92:5a:39:53:61:c7:60:8c:e6:06:96:1b:
eb:9d:4a:7f:5c:89:4c:17:b9:3f:ac:49:fe:d2:2b:a5:c5:9d:
62:f3:4a:57:34:c0:2e:83:c6:f3:8e:ea:5c:4d:9b:59:6c:44:
61:a3:88:76:05:16:2b:aa:c4:28:6e:0c:c0:4b:b4:55:5b:41:
c9:34:32:c9:a0:c8:f3:02:d1:e3:da:a2:76:d8:08:26:b3:d0:
5b:e8:51:9f:14:7a:89:7a:63:8c:75:1f:8c:03:86:16:2f:5e:
82:ce:f4:8d:4e:d8:29:20:69:23:da:fc:79:95:b0:c4:9c:1e:
73:29:15:2f:90:8a:08:5b:0e:85:18:e5:a3:ff:0a:63:b7:1a:
3b:50:3c:56:e8:5d:f1:f5:8c:aa:7e:59:24:b5:76:d0:cd:d5:
9d:98:eb:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:56:52 2025 by rpki-client