Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft
File: TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft (raw, json)
Hash identifier: q1xzxAbH3qw4bzO2dc4IYSVC3mJNNc99EgvixR1o3Q4=
Subject key identifier: 7C:E6:85:45:33:AC:11:43:3E:04:8D:34:E0:6C:F3:46:6B:EA:B6:2A
Authority key identifier: 4D:0F:25:7F:33:9C:FB:9E:27:54:B6:CC:24:36:4F:0F:12:90:58:DB
Certificate issuer: /CN=4d0f257f339cfb9e2754b6cc24364f0f129058db
Certificate serial: 0197B70F47D963CFBEE956F506B3901766EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQ8lfzOc-54nVLbMJDZPDxKQWNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft
Manifest number: 13EE
Signing time: Sat 28 Jun 2025 15:02:01 +0000
Manifest this update: Sat 28 Jun 2025 15:02:01 +0000
Manifest next update: Sun 29 Jun 2025 15:02:01 +0000
Files and hashes: 1: TQ8lfzOc-54nVLbMJDZPDxKQWNs.crl (hash: vs3mthv8OFUfElbPf0dr27o8sF6cdwqriNy4zTjGQ44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQ8lfzOc-54nVLbMJDZPDxKQWNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:47:d9:63:cf:be:e9:56:f5:06:b3:90:17:66:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0f257f339cfb9e2754b6cc24364f0f129058db
Validity
Not Before: Jun 28 15:02:01 2025 GMT
Not After : Jun 29 15:02:01 2025 GMT
Subject: CN=7ce6854533ac11433e048d34e06cf3466beab62a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:a6:65:34:06:3e:72:ce:65:e7:53:69:45:87:
0f:a6:d4:fe:37:6f:d1:14:73:55:b0:78:2b:b2:ec:
74:42:8a:fd:3d:c6:51:1a:8b:84:ce:45:94:0f:3c:
49:e6:7f:64:02:1f:23:cb:f2:b1:ff:e0:b1:c6:c2:
7b:f1:fa:ff:b9:18:1a:f8:89:75:7b:16:e6:44:71:
6a:b2:50:8e:44:1e:e0:be:ed:f3:99:71:40:d4:c6:
0f:e1:c0:c1:53:6a:bf:81:98:c4:c6:d6:02:b9:f2:
c2:a0:4f:34:b3:83:3e:5a:3f:79:ef:00:29:3a:d9:
cf:50:54:c8:52:ab:c5:3b:18:4f:95:59:08:35:c6:
f8:97:4c:2b:61:77:57:43:af:de:4b:c0:1d:ee:a0:
fa:bf:c6:6f:56:8d:f0:7e:7a:50:d1:03:90:9a:e4:
9a:55:17:b9:b7:86:69:62:37:77:82:5d:ae:3e:7a:
2a:4b:42:df:f6:58:32:7d:07:dc:e9:73:af:c3:c7:
75:b5:34:f0:4e:24:8f:31:b1:98:02:be:fa:97:88:
70:e7:b7:5c:10:62:a0:bc:8d:3e:ae:24:00:ce:53:
06:85:73:9f:e3:76:12:4f:a2:97:7a:ed:d3:f8:38:
90:b2:5f:53:92:66:47:fc:4f:97:a9:b8:8f:8e:1b:
83:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:E6:85:45:33:AC:11:43:3E:04:8D:34:E0:6C:F3:46:6B:EA:B6:2A
X509v3 Authority Key Identifier:
keyid:4D:0F:25:7F:33:9C:FB:9E:27:54:B6:CC:24:36:4F:0F:12:90:58:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQ8lfzOc-54nVLbMJDZPDxKQWNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:44:c0:0a:bc:8f:01:38:08:6b:74:ed:6b:e7:d2:e7:33:b7:
7b:fe:7c:bf:cb:c8:de:cb:de:4b:a1:67:45:ca:4d:1f:63:80:
ba:b4:ee:90:e2:db:51:e7:e4:10:57:cd:c4:76:13:fc:9b:68:
27:a1:f9:02:a5:6c:cc:fa:f7:1a:7c:0c:60:ca:a6:15:2e:5b:
e0:57:fc:9d:6c:e2:9a:0c:12:9a:e3:22:80:0a:b4:a9:e6:78:
18:0c:ba:9d:06:0c:f9:a8:9e:28:3a:29:dd:70:4e:5f:7b:07:
4b:54:21:4a:c7:7b:05:6a:25:96:3f:c1:51:4d:c2:ea:d1:71:
1b:0a:30:36:b0:25:a6:53:5d:88:85:d1:4b:8b:a4:bd:45:de:
87:44:6c:4c:d1:1a:cd:78:39:fb:34:0d:e6:14:d8:fa:8d:e3:
da:54:87:5f:d5:3b:14:0a:aa:35:cb:ce:b4:d9:f1:ed:e0:d5:
8d:ba:f4:2c:a5:e9:5d:c6:74:51:8d:99:f9:72:b0:95:a5:67:
2a:75:28:b2:27:d8:15:4d:7a:cb:e1:14:b0:ec:f8:e2:d9:47:
08:7d:e6:21:0e:98:19:4a:67:c8:ae:89:a4:31:f5:51:16:f2:
17:69:bf:c6:76:b4:f6:26:52:43:97:ee:b0:bb:00:34:51:6f:
68:86:ae:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:42:12 2025 by rpki-client