Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
File: TSPi7bMh4ailzp7j4tlapA8N6KA.mft (raw, json)
Hash identifier: X/rZ5coX2qilGXNLwYwznlXOdhAGjzBhbZOxo1rPKR4=
Subject key identifier: CD:60:4E:AD:5A:61:18:C8:CB:3E:34:C6:BB:92:EC:A1:32:5D:C7:B4
Authority key identifier: 4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0
Certificate issuer: /CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0
Certificate serial: 0197B6D7AD63FD0699C9ABF5F5CC362342F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
Manifest number: 0A6B
Signing time: Sat 28 Jun 2025 14:01:17 +0000
Manifest this update: Sat 28 Jun 2025 14:01:17 +0000
Manifest next update: Sun 29 Jun 2025 14:01:17 +0000
Files and hashes: 1: E8fqlMMExB61QIsEKMENcZNpWcs.roa (hash: BmnUAt4AevLzEKuzLNe+ibP+z5vcZguaEireBbRJdHM=)
2: TSPi7bMh4ailzp7j4tlapA8N6KA.crl (hash: Sg9TqItDlbBoan3A/FI2pfS1PEWDAi8fEHuNL2q/t+E=)
3: gXlhbbxVLQVqCMGvhejieNdtoBY.roa (hash: 8u7C6SqKmEB/oIEa7cYGrPkrur0B3bFj0WV0Kh36+qQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:ad:63:fd:06:99:c9:ab:f5:f5:cc:36:23:42:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0
Validity
Not Before: Jun 28 14:01:17 2025 GMT
Not After : Jun 29 14:01:17 2025 GMT
Subject: CN=cd604ead5a6118c8cb3e34c6bb92eca1325dc7b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9e:92:ef:aa:44:73:3f:5f:91:38:ff:60:3b:
39:63:15:fe:02:e0:74:4b:60:1e:74:8f:22:cf:ed:
65:d5:7d:b8:17:79:75:d5:c1:1a:14:2a:a6:06:e6:
dd:f0:39:ff:6d:a5:c2:32:00:31:9b:77:bc:53:d7:
fc:af:ea:28:95:cd:40:04:4a:bc:1d:7b:43:15:48:
c6:24:5c:2e:cb:41:d1:9f:d5:d2:33:2a:4f:ca:b1:
c9:d5:31:9f:47:77:75:02:f4:0c:ec:b5:43:02:50:
b2:24:6e:c1:22:53:91:2a:ef:e4:66:c1:2c:17:33:
7c:d1:d5:9d:3b:7b:4d:73:d2:81:e4:14:68:b4:30:
1d:75:39:71:1d:cb:fd:8c:f1:27:ed:f4:76:4d:e8:
86:ce:83:c6:54:5a:8c:6a:b9:25:6a:0c:f7:a9:7a:
43:9d:07:81:dd:91:1b:10:a6:57:c8:56:53:63:94:
75:57:bc:f7:16:10:63:cf:e2:59:8a:87:8b:51:f4:
fe:c7:a6:ac:9e:73:5c:f9:d5:9e:de:d3:13:e5:cd:
63:9a:eb:15:28:24:f0:fb:08:40:01:69:1b:cc:2d:
59:31:9a:a8:70:9c:97:8f:f2:9d:6b:6d:5b:13:dc:
6a:df:55:c2:0d:68:75:89:b8:65:06:21:29:e6:a6:
0f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:60:4E:AD:5A:61:18:C8:CB:3E:34:C6:BB:92:EC:A1:32:5D:C7:B4
X509v3 Authority Key Identifier:
keyid:4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:fc:18:99:d5:6f:74:57:95:20:8d:99:5b:f0:0a:d8:ef:68:
f5:e6:68:64:66:17:fc:c4:10:32:50:ce:16:9a:e4:f8:73:d8:
d0:99:22:e7:19:ee:95:bd:6c:9f:13:13:b7:f5:c6:04:45:ea:
89:2a:19:f5:83:9e:dd:e9:52:a0:94:5e:33:51:54:f4:79:96:
30:8a:22:74:17:03:77:6b:13:c1:b5:e9:8c:88:d2:cd:e1:b6:
e8:79:58:60:30:c3:6b:b0:94:cc:cf:02:93:77:8a:63:f0:08:
84:ad:d7:69:eb:f4:74:3c:d8:38:8e:77:11:f2:4d:02:3f:2d:
99:2f:5c:e3:f2:cf:31:cf:2d:64:db:ad:c1:3a:ee:b4:6b:83:
b2:6e:75:1f:49:61:a6:5f:b7:bc:89:4a:83:55:c7:68:0a:78:
84:30:f4:2c:8b:17:9c:23:79:42:a1:b1:5a:a9:a0:eb:27:8d:
50:10:8e:e7:e1:04:dc:9c:d8:13:7f:e2:d0:99:26:32:60:98:
89:1a:41:27:86:62:48:6a:08:2a:85:ea:35:7c:4e:78:e9:dc:
10:1c:84:aa:30:07:71:84:ab:67:69:0b:4d:1e:26:74:4f:03:
60:dd:04:c6:e3:52:7b:a4:2c:4c:81:3a:78:89:4d:5d:f1:14:
63:19:ab:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:00:24 2025 by rpki-client