Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft
File: tmlTqin4JZqgLBImpGzgnt1Fzp0.mft (raw, json)
Hash identifier: Yn6anmF6WrslrixHPYVIZHAyxUKndWGdqPGkmwyK+vY=
Subject key identifier: 5F:25:88:8A:B0:77:D5:AB:45:43:C5:78:CF:6A:5E:24:BB:BA:09:4D
Authority key identifier: B6:69:53:AA:29:F8:25:9A:A0:2C:12:26:A4:6C:E0:9E:DD:45:CE:9D
Certificate issuer: /CN=b66953aa29f8259aa02c1226a46ce09edd45ce9d
Certificate serial: 0197D1AAEBF5A779751966C35DF3E64E3AE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tmlTqin4JZqgLBImpGzgnt1Fzp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft
Manifest number: 78
Signing time: Thu 03 Jul 2025 19:02:09 +0000
Manifest this update: Thu 03 Jul 2025 19:02:09 +0000
Manifest next update: Fri 04 Jul 2025 19:02:09 +0000
Files and hashes: 1: pqvRnrkHquypsw02knASEmaM8CA.roa (hash: iRr4/5L2X3HFedqB9qSGokTGPgu0NihU0rX3BfoQgdM=)
2: tmlTqin4JZqgLBImpGzgnt1Fzp0.crl (hash: r7rOVcx439WtmUoKpaxJ49B/siDosKSNXmq1SOKQxjU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tmlTqin4JZqgLBImpGzgnt1Fzp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 19:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d1:aa:eb:f5:a7:79:75:19:66:c3:5d:f3:e6:4e:3a:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b66953aa29f8259aa02c1226a46ce09edd45ce9d
Validity
Not Before: Jul 3 19:02:09 2025 GMT
Not After : Jul 4 19:02:09 2025 GMT
Subject: CN=5f25888ab077d5ab4543c578cf6a5e24bbba094d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:9c:09:6f:2f:ab:64:01:c6:57:c7:d5:cc:a5:
d5:6e:99:c6:60:c3:e0:92:81:cd:75:67:29:a9:49:
58:77:59:94:98:90:4f:ce:c5:2d:f2:f1:30:dc:63:
e6:e5:53:85:82:ed:e1:33:7e:77:f6:50:f0:d5:1c:
0b:dc:52:76:ef:10:c0:30:fc:94:93:57:cc:a0:9a:
83:81:f8:da:ee:97:85:22:d2:9d:6c:71:26:4f:b0:
28:93:d9:88:5e:2f:dd:64:67:e9:b8:d2:c9:d9:52:
5e:81:9b:71:7c:9f:19:31:40:6a:84:57:08:3a:64:
d3:80:71:e3:c1:28:fc:98:18:68:f3:f6:87:58:64:
47:f7:4f:17:51:d1:15:40:48:88:78:2d:3d:24:7d:
dd:a5:ce:7b:b5:cf:f6:6c:fc:d5:9d:2f:3b:f5:20:
da:e7:c8:5c:ca:e9:05:8c:02:2b:79:98:19:bd:32:
2f:b6:69:6a:11:7e:5a:2f:0a:ed:c5:24:53:2d:1d:
e5:79:53:97:5f:e4:a9:c0:3a:73:48:01:f8:af:dd:
34:7d:a0:87:a2:da:6e:57:d5:80:2c:9b:45:21:30:
90:17:b9:c9:bf:6f:43:d1:8e:87:78:cf:76:e9:f4:
4c:43:ee:f3:b9:be:7c:bf:f2:63:03:3a:13:a5:99:
0d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:25:88:8A:B0:77:D5:AB:45:43:C5:78:CF:6A:5E:24:BB:BA:09:4D
X509v3 Authority Key Identifier:
keyid:B6:69:53:AA:29:F8:25:9A:A0:2C:12:26:A4:6C:E0:9E:DD:45:CE:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tmlTqin4JZqgLBImpGzgnt1Fzp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:de:c8:e0:23:53:24:3d:b2:e7:00:55:ac:aa:26:64:8a:26:
9a:a8:24:79:d7:10:5c:db:e1:2e:56:ab:68:65:a0:b0:8f:ee:
a3:56:ea:c4:00:c0:83:ce:c7:e8:30:d0:0d:63:17:ed:5c:8d:
88:04:da:d8:a9:04:aa:62:92:52:8e:6e:a6:8e:28:fc:97:ce:
63:4f:e4:45:a0:16:87:77:91:b8:61:50:c4:eb:45:4f:db:25:
9d:87:3f:f5:2d:34:8d:87:13:88:89:9f:d0:44:4d:6b:c4:2c:
2c:bd:9a:43:24:b2:cd:42:e6:49:e7:81:02:93:0f:37:b3:ac:
05:32:d7:b9:28:6a:ae:c3:53:1e:cc:60:5d:24:b9:94:32:f2:
c6:eb:05:d9:a4:36:65:f5:4b:0d:13:3c:5d:79:5e:5c:82:7c:
71:c7:3e:ab:90:b7:e3:05:e2:c1:f6:66:59:58:fd:3f:f8:ef:
87:74:36:90:71:7c:3f:71:3f:d4:93:21:b3:34:9e:00:43:f2:
7d:e2:2a:af:88:26:35:83:1b:bc:ad:dc:a7:c0:d5:20:b2:32:
17:59:78:b5:71:3e:dd:b3:65:18:7e:d1:cc:3f:d7:45:c7:e5:
9e:fe:c2:52:96:3f:d0:f1:bc:46:a0:4b:43:55:46:02:38:f5:
23:b3:be:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 03:24:49 2025 by rpki-client