Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft
File: tK4oip3bDvUKKUs8rpY-FHycfck.mft (raw, json)
Hash identifier: jRTZFR75XXhEZlTIUo3eXdkXVtihYziK1hDMUJ9AdW4=
Subject key identifier: 19:7A:67:04:64:C7:00:FB:67:A3:3E:C7:02:D9:BA:7E:23:58:EE:A7
Authority key identifier: B4:AE:28:8A:9D:DB:0E:F5:0A:29:4B:3C:AE:96:3E:14:7C:9C:7D:C9
Certificate issuer: /CN=b4ae288a9ddb0ef50a294b3cae963e147c9c7dc9
Certificate serial: 0197CCF177C794226076DB6B72476A877793
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft
Manifest number: 15BF
Signing time: Wed 02 Jul 2025 21:01:06 +0000
Manifest this update: Wed 02 Jul 2025 21:01:06 +0000
Manifest next update: Thu 03 Jul 2025 21:01:06 +0000
Files and hashes: 1: tK4oip3bDvUKKUs8rpY-FHycfck.crl (hash: qNLHqoCMa2/uLVG2XAJ46GlnThzOUp3BuaNZoK/2wa4=)
2: u16TB_X_VEL7--qGdSVXn8Zs3wY.roa (hash: m8sRTErDjjsLnDtgYn9w7y6plArnvxsTKmxxZwh54Fs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft
rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:f1:77:c7:94:22:60:76:db:6b:72:47:6a:87:77:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4ae288a9ddb0ef50a294b3cae963e147c9c7dc9
Validity
Not Before: Jul 2 21:01:06 2025 GMT
Not After : Jul 3 21:01:06 2025 GMT
Subject: CN=197a670464c700fb67a33ec702d9ba7e2358eea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d0:a6:20:31:18:39:31:2c:61:db:d7:79:8b:
ab:22:e7:58:38:8a:7e:41:ec:9a:68:d9:bc:8e:28:
32:f8:91:11:49:09:25:fd:34:c9:26:70:b2:1f:a8:
09:c9:76:3a:88:75:62:61:94:37:fb:ea:5f:d6:17:
33:a4:9e:89:7c:ad:20:fa:3e:32:9d:8f:93:cd:ac:
97:0e:69:61:3e:19:b1:ac:5c:45:10:29:54:43:6e:
d1:e9:56:7e:6a:77:ba:0a:7e:45:ea:8d:14:c6:ac:
49:5c:73:0d:57:87:c5:7f:b3:6e:17:95:ba:8d:54:
c8:a5:c8:3c:a7:6b:ba:e9:47:56:b6:b1:30:15:25:
4b:b8:43:d5:25:3b:6b:9f:67:09:34:4c:45:41:c2:
1b:07:46:d4:dc:b0:f4:54:f7:c6:23:9e:68:83:d4:
3e:2e:fe:e7:5d:ca:ab:d4:2d:fb:e5:10:db:6b:cb:
3c:bc:12:3d:ed:e5:6d:65:ec:6f:dc:d8:f6:3a:41:
0e:f3:26:92:a0:98:c9:79:44:ec:42:b5:29:b0:ff:
dc:d1:45:dd:1d:41:8c:97:3c:34:ee:c5:27:1a:71:
ff:f6:b0:63:06:b4:65:c7:33:50:27:26:b0:a1:56:
fa:00:f9:73:1b:c6:9d:43:b6:40:a0:24:20:05:32:
79:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:7A:67:04:64:C7:00:FB:67:A3:3E:C7:02:D9:BA:7E:23:58:EE:A7
X509v3 Authority Key Identifier:
keyid:B4:AE:28:8A:9D:DB:0E:F5:0A:29:4B:3C:AE:96:3E:14:7C:9C:7D:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:dd:60:52:0b:78:32:d1:e6:b6:ca:43:f8:9c:50:53:80:a7:
de:26:79:71:aa:73:13:c8:6d:35:70:ad:54:79:68:66:38:38:
da:39:a9:56:08:80:cc:27:07:56:f7:5b:ac:4d:64:76:6f:6c:
e7:d5:75:92:0b:40:f7:65:f9:5e:67:10:7e:40:be:71:9a:f1:
ac:e2:86:b8:af:9e:f4:98:46:27:06:24:af:29:fb:43:17:c7:
dd:f6:0a:9b:20:07:66:b0:68:47:15:ef:87:97:61:09:1d:f3:
08:9e:ad:29:6d:28:2c:f8:d3:95:f8:d8:3b:0e:29:26:ef:ef:
5a:c1:df:3b:aa:da:99:be:14:3b:42:3e:b5:49:b4:02:5b:0b:
b5:f4:c2:53:8a:42:0c:82:b3:85:25:33:e7:0a:a7:7d:42:4c:
08:48:57:e8:b4:ed:d3:89:bf:0b:6a:c3:19:08:0d:66:2f:11:
ad:7a:81:af:d4:fc:bd:c5:5a:e9:76:f4:df:68:c7:1e:0f:f2:
7a:c2:37:43:c2:4f:f7:07:0c:59:e3:e8:24:7a:28:33:1d:ee:
06:c4:16:fb:17:a4:d4:b5:bf:5c:97:a9:4e:58:03:53:9b:69:
24:43:b4:05:3f:58:12:40:51:c6:f4:77:58:34:c3:fd:64:e4:
26:c0:ee:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 05:13:31 2025 by rpki-client