Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
File: TzLUClO7YLhnWebsClIHMAtBr3A.mft (raw, json)
Hash identifier: DN8n9gsBvB2TA4UZ+WjAgQQvPzcBsHSiuyvz5ho/nGE=
Subject key identifier: DE:AA:AD:83:AF:21:1F:3D:03:DF:A9:90:8A:3D:77:8B:3C:73:E1:68
Authority key identifier: 4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
Certificate issuer: /CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Certificate serial: 0197B6329F7A008B4B3011AFA30907AAF35A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 11:01:00 +0000
Manifest this update: Sat 28 Jun 2025 11:01:00 +0000
Manifest next update: Sun 29 Jun 2025 11:01:00 +0000
Files and hashes: 1: 2j3kAJC1aDvfwJPuGUvb554m29Y.roa (hash: Hr+M1o8+SSmf7r+qXis6TOXIjRUjTFBSHGU0mpn3FN4=)
2: TzLUClO7YLhnWebsClIHMAtBr3A.crl (hash: 6NPbnogjoEAl+XorP8yMUq8Bi8jYmj92yEE6/iHHhBg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:9f:7a:00:8b:4b:30:11:af:a3:09:07:aa:f3:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Validity
Not Before: Jun 28 11:01:00 2025 GMT
Not After : Jun 29 11:01:00 2025 GMT
Subject: CN=deaaad83af211f3d03dfa9908a3d778b3c73e168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1a:69:99:ca:da:d7:a5:8d:55:24:e9:01:20:
e6:73:88:40:43:ef:e1:1b:67:50:95:59:77:c2:e2:
ec:79:47:c6:3a:6f:a6:9e:d3:8c:c9:3b:99:a9:b2:
21:8c:83:15:d0:90:c5:00:e2:c0:0a:08:83:40:d4:
bb:d4:58:90:43:fd:65:98:86:9c:50:82:43:51:97:
50:38:18:53:28:0e:e2:42:f7:85:f4:17:18:b5:db:
2e:ae:6e:7e:08:0d:72:e2:08:06:1e:67:a6:2b:47:
74:b1:59:a0:31:28:02:e3:b6:f6:83:ca:8e:d4:a7:
91:d3:34:76:f1:da:0b:44:3b:01:2b:2f:6a:4a:bd:
39:94:e2:c7:ab:ba:af:f7:bb:4e:12:39:6f:af:a4:
fb:8b:85:74:cc:1e:3c:b2:8b:4a:5d:90:c6:06:85:
4a:31:24:d1:9b:c7:ab:59:b4:36:e2:95:b8:ca:e7:
2c:3f:08:00:33:41:84:f0:e0:df:82:b8:01:4e:27:
a7:b1:86:69:2d:34:f6:9e:f7:75:dc:af:22:52:8e:
ef:9a:73:2d:f5:9a:ae:40:7e:03:61:51:b1:4d:93:
e1:27:3e:00:a2:6f:39:26:e3:d6:50:43:58:be:bd:
17:fb:6d:5b:0a:8a:3b:37:9b:a4:b9:8b:c6:89:68:
04:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:AA:AD:83:AF:21:1F:3D:03:DF:A9:90:8A:3D:77:8B:3C:73:E1:68
X509v3 Authority Key Identifier:
keyid:4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:7e:54:c1:99:e1:e5:26:5a:a4:93:65:f8:2b:e0:99:82:72:
63:ae:ae:f5:f0:60:57:14:0f:b0:68:01:90:30:31:7e:70:40:
98:3f:ee:48:ff:ca:c8:35:9b:86:18:63:a2:fa:62:c5:77:57:
02:b0:c1:47:ea:51:4b:a7:c8:48:73:c1:9e:0d:bf:c7:0d:0f:
aa:bb:5a:c8:cd:1c:18:11:92:87:24:48:84:70:a0:6e:17:9e:
19:ca:5c:d0:14:c3:21:50:29:dc:66:fd:20:84:c1:7e:64:2f:
68:60:7d:a2:d3:1d:a7:65:5b:78:b6:bf:26:af:98:76:32:0c:
33:e8:16:22:bb:eb:6b:0c:f9:76:41:d1:bc:10:b5:b0:38:5b:
59:a4:51:6e:b6:af:0c:f2:cf:a6:c8:73:4a:9d:b3:28:29:7c:
96:5b:f1:88:9b:87:8c:ea:bb:2d:62:79:d2:a9:7e:0e:0e:8e:
a7:1c:82:2b:ac:48:81:3e:70:e7:d4:cd:a5:08:d4:1c:2c:97:
b2:77:42:5f:13:53:5d:2a:55:3f:0c:8d:b9:7b:45:28:ad:ec:
8f:34:fa:d7:ec:73:5f:40:0b:39:9a:c1:3e:38:af:1a:e3:e9:
c8:5d:73:b2:44:ec:cc:72:c7:af:9a:36:34:b2:2d:14:d5:86:
10:68:0c:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:08:34 2025 by rpki-client