Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft
File: TSkoLUc3P5QvCti5HtlAk7Zuo68.mft (raw, json)
Hash identifier: VMsWq+/tvoYdswkTfyXXpz/iVTp+AnJ56w+jC4Hpr0g=
Subject key identifier: 28:D7:BE:31:F4:0B:CE:1F:81:20:C6:AE:BD:E2:15:2A:5A:E8:C2:D5
Authority key identifier: 4D:29:28:2D:47:37:3F:94:2F:0A:D8:B9:1E:D9:40:93:B6:6E:A3:AF
Certificate issuer: /CN=4d29282d47373f942f0ad8b91ed94093b66ea3af
Certificate serial: 0197B70EF73894CAFAC55207EE40193AB9B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft
Manifest number: 153E
Signing time: Sat 28 Jun 2025 15:01:40 +0000
Manifest this update: Sat 28 Jun 2025 15:01:40 +0000
Manifest next update: Sun 29 Jun 2025 15:01:40 +0000
Files and hashes: 1: 8G7CKA2HbZHRoNb9HaqBloS90vU.roa (hash: lDvm+Nsn5gFxpzefNnpEbQ5VLuNGtuV4rwnVopzkwq0=)
2: TSkoLUc3P5QvCti5HtlAk7Zuo68.crl (hash: nMvyYOSFr9iJ947zZX4OkJWnPsqto5AmrfSAlxRUjhk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft
rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:f7:38:94:ca:fa:c5:52:07:ee:40:19:3a:b9:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d29282d47373f942f0ad8b91ed94093b66ea3af
Validity
Not Before: Jun 28 15:01:40 2025 GMT
Not After : Jun 29 15:01:40 2025 GMT
Subject: CN=28d7be31f40bce1f8120c6aebde2152a5ae8c2d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:26:fb:aa:50:4d:8e:2a:22:8e:b2:2f:90:d8:
b0:b6:cf:82:43:91:8d:d1:3c:49:a3:34:34:74:86:
2f:12:3b:50:cd:02:fc:a8:15:ca:46:3a:3b:22:7a:
21:31:0b:68:7c:db:10:18:57:8d:79:c6:56:af:21:
f4:03:16:2a:49:2e:2d:a0:95:67:ed:25:29:e5:1f:
e0:1b:7e:e7:b8:79:bf:99:b7:12:71:ff:1a:22:3c:
2c:0d:d5:7a:44:3a:81:7a:73:19:14:48:3e:49:8d:
2b:73:74:35:ca:f7:18:21:c3:e8:d1:7f:ff:e7:20:
7c:ca:08:7d:4f:a9:4a:62:16:f5:b6:7f:4e:f8:88:
03:18:9f:01:56:e8:65:02:6c:d4:79:02:f1:c0:69:
59:62:d8:f1:6e:5b:88:ab:3b:a5:9a:62:e8:70:91:
f4:d4:a4:b1:22:11:79:2c:ad:2c:59:46:a7:3e:59:
5a:9f:75:24:47:ef:76:df:6e:34:fa:25:39:fe:8b:
e6:8f:95:bc:22:6e:da:37:5f:96:8c:33:32:24:78:
15:02:b7:53:8d:68:29:07:16:32:ac:25:53:df:41:
e1:f3:c5:f8:e6:96:f0:31:33:98:cb:42:4a:1c:fd:
73:de:c2:6d:96:84:37:0e:52:80:c0:a6:b3:a0:03:
bc:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D7:BE:31:F4:0B:CE:1F:81:20:C6:AE:BD:E2:15:2A:5A:E8:C2:D5
X509v3 Authority Key Identifier:
keyid:4D:29:28:2D:47:37:3F:94:2F:0A:D8:B9:1E:D9:40:93:B6:6E:A3:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:50:75:9f:93:4d:37:17:a9:2b:57:ac:d6:c2:b7:07:39:37:
db:7b:1f:19:c7:15:f3:99:1e:d8:83:36:4c:38:07:f0:b6:4d:
e6:fc:ee:23:15:d4:cd:9f:3a:37:5a:30:9a:43:1c:16:03:23:
84:98:17:1f:72:64:e0:f0:e6:76:7f:70:1f:fd:8c:ca:68:23:
c1:17:88:6d:13:d4:30:52:9d:da:ba:44:8e:3c:3a:b2:5e:04:
a0:7f:90:7f:78:37:2b:a8:7a:1f:34:85:7d:a8:df:91:15:4b:
8c:41:cf:69:ef:b7:ec:7b:f3:48:cc:6a:fa:27:e5:15:83:2a:
6a:a4:2a:62:b4:a1:73:6a:59:69:ef:d8:dd:bb:4b:a1:e8:a2:
f5:93:5c:63:27:55:9a:32:59:59:d6:39:d3:89:f7:34:78:72:
9a:52:ec:90:ff:b8:53:35:24:eb:dc:a4:ea:5e:b9:be:19:07:
95:6e:94:59:e6:d9:62:d9:83:e7:8f:2f:f0:56:2a:96:84:1e:
1d:64:59:60:31:bf:b8:c1:5d:4e:51:4f:d4:ac:42:9a:3f:88:
e1:d4:96:e3:9a:bc:d3:76:f5:a2:c1:8f:55:86:b8:d2:67:44:
34:67:92:03:d2:c3:e4:8c:54:8a:61:00:b6:09:0d:bb:1a:00:
62:e1:b9:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:50:40 2025 by rpki-client