Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.mft
File: TON2ekBU9IaN4L2fsjpcx2kP_tU.mft (raw, json)
Hash identifier: N3zk96wASc1G61HtLVXCRklAcMHbIdWlquTt6U210Ao=
Subject key identifier: F1:0A:4D:C2:5A:33:C9:66:0F:D7:F2:DE:5F:17:CF:39:60:C6:A9:89
Authority key identifier: 4C:E3:76:7A:40:54:F4:86:8D:E0:BD:9F:B2:3A:5C:C7:69:0F:FE:D5
Certificate issuer: /CN=4ce3767a4054f4868de0bd9fb23a5cc7690ffed5
Certificate serial: 0197B5FC35738908AE2AD0AA9EAB0713A035
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TON2ekBU9IaN4L2fsjpcx2kP_tU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.mft
Manifest number: 0D53
Signing time: Sat 28 Jun 2025 10:01:34 +0000
Manifest this update: Sat 28 Jun 2025 10:01:34 +0000
Manifest next update: Sun 29 Jun 2025 10:01:34 +0000
Files and hashes: 1: TON2ekBU9IaN4L2fsjpcx2kP_tU.crl (hash: yj2Hbei2qOIBVPxk6hrXOvGOcrrn3eqPllLKS1inUiI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TON2ekBU9IaN4L2fsjpcx2kP_tU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fc:35:73:89:08:ae:2a:d0:aa:9e:ab:07:13:a0:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ce3767a4054f4868de0bd9fb23a5cc7690ffed5
Validity
Not Before: Jun 28 10:01:34 2025 GMT
Not After : Jun 29 10:01:34 2025 GMT
Subject: CN=f10a4dc25a33c9660fd7f2de5f17cf3960c6a989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ff:0a:6f:0a:a2:e9:cd:19:d4:03:c0:b9:fb:
d6:99:da:1c:d1:fe:d4:2d:e7:79:cb:3d:6b:0d:9e:
58:09:c5:20:fb:74:42:60:1d:59:dd:82:5a:f5:56:
53:5c:3f:4a:28:75:42:f7:60:2c:a2:66:9d:18:94:
32:34:22:7c:f9:3f:cf:11:b4:08:43:2a:57:e8:01:
14:81:a0:2b:e5:35:77:0a:ef:b5:5c:a2:4a:53:68:
f8:f0:66:11:88:97:b7:e6:5d:b7:e7:13:7a:3c:25:
9a:3f:d1:10:f5:9b:a1:f8:12:c2:84:82:f7:42:98:
34:4b:e3:24:f8:ab:5f:e0:08:57:74:7a:8e:da:0f:
5e:1e:45:2a:b5:54:fb:b1:41:cd:77:d3:83:80:80:
6f:76:85:9f:d5:5f:7e:e7:86:2c:88:c9:c3:b1:1a:
93:ce:4c:36:80:0f:e9:b4:b3:0e:af:84:c8:ce:96:
2a:ad:f3:24:98:6a:aa:49:7b:b9:ad:74:d1:da:2d:
8e:b9:9c:e8:44:aa:ec:c4:c2:9c:62:91:c6:7d:f2:
34:40:05:28:41:2c:e8:d8:72:2a:53:33:bc:85:14:
8f:4c:bd:4c:b0:7e:e7:54:7b:32:bd:23:ab:0f:40:
f5:e7:70:34:94:e9:1b:1b:3e:9b:5b:5a:a6:b2:d8:
84:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:0A:4D:C2:5A:33:C9:66:0F:D7:F2:DE:5F:17:CF:39:60:C6:A9:89
X509v3 Authority Key Identifier:
keyid:4C:E3:76:7A:40:54:F4:86:8D:E0:BD:9F:B2:3A:5C:C7:69:0F:FE:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TON2ekBU9IaN4L2fsjpcx2kP_tU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:d7:c4:6e:4a:a3:f0:db:50:54:c0:03:d3:c6:0e:7b:b2:5c:
63:b7:fa:52:fa:ba:d9:98:73:83:7c:31:05:9d:65:98:09:ca:
05:3d:9c:43:9a:c4:64:26:e6:2c:67:76:65:38:47:1b:67:fa:
3b:d4:3a:40:4e:a7:ad:56:5a:9c:ab:a6:06:a0:4f:dc:64:1c:
e2:f8:41:39:74:a6:c5:04:89:ed:05:d6:18:ff:b6:b7:01:1f:
06:e6:c4:3b:96:9c:e8:f4:79:c8:e0:95:a8:d5:96:2c:15:ae:
ac:24:e4:29:1a:11:db:8a:47:24:8b:44:b0:12:60:ad:66:ec:
07:16:56:88:4c:99:73:56:97:f5:b7:2a:12:9d:b9:c2:fc:5e:
29:07:66:1f:01:9e:61:17:91:72:50:1d:7a:3e:95:cb:3b:8a:
c7:5d:11:43:18:4e:44:cf:0d:40:f3:c6:fc:6e:9d:45:43:e3:
b5:d0:07:68:12:5b:59:23:d4:d9:6b:6f:84:d8:dd:bd:48:7f:
40:a5:86:92:fa:0b:57:79:6e:12:7b:f2:6b:03:17:42:06:52:
9c:bd:58:c2:97:93:d8:3e:60:8c:32:98:18:31:b0:75:cb:ce:
93:a2:e0:95:b4:32:2d:39:ea:2b:75:e0:45:76:3d:49:f6:de:
15:3a:40:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:01:45 2025 by rpki-client