Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
File: tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft (raw, json)
Hash identifier: uMQE5WJkJ4LOG2KMg4dAgRB5VjGAtOjkssvcpA+NU+I=
Subject key identifier: 22:1C:25:B1:64:1B:53:DE:BA:61:F7:64:5C:13:7A:2A:73:50:3C:15
Authority key identifier: B4:D8:B2:7A:AA:55:E5:1A:34:5F:6A:45:19:E3:67:95:50:46:C3:0A
Certificate issuer: /CN=b4d8b27aaa55e51a345f6a4519e367955046c30a
Certificate serial: 01984B53DF8B1AB58EF8B87D8F939CAD4239
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
Manifest number: 11AA
Signing time: Sun 27 Jul 2025 10:00:44 +0000
Manifest this update: Sun 27 Jul 2025 10:00:44 +0000
Manifest next update: Mon 28 Jul 2025 10:00:44 +0000
Files and hashes: 1: nqRmyRsi2-hKiZqffDikHhIZIA8.roa (hash: vx+mbFW9leAh9kJ2X2Cv3OUNnkvDKbo77etkxvxrmFM=)
2: tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl (hash: 87xXJ2biquIKaGsIJ1V6d7oQrYpMxtFF88AwH/3H1B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:53:df:8b:1a:b5:8e:f8:b8:7d:8f:93:9c:ad:42:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4d8b27aaa55e51a345f6a4519e367955046c30a
Validity
Not Before: Jul 27 10:00:44 2025 GMT
Not After : Jul 28 10:00:44 2025 GMT
Subject: CN=221c25b1641b53deba61f7645c137a2a73503c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a4:e0:bf:7c:72:a9:ad:9b:70:e7:3f:ef:2c:
8c:9c:30:6a:97:12:64:a0:99:c3:a8:7e:d6:bf:14:
87:dd:5d:61:32:f3:ea:4c:ea:84:a8:d1:22:72:e5:
7e:56:c8:84:9d:24:02:9c:df:b1:05:1c:ba:36:06:
4a:b8:90:0b:14:4e:98:45:c9:e0:70:57:4b:ec:e9:
a4:de:87:55:54:ba:6e:cc:07:18:37:2d:32:f9:d0:
0a:76:ec:47:59:7d:a1:8a:5c:55:e6:14:65:64:e8:
83:c0:b5:72:0b:51:16:55:44:5f:44:8e:b2:0a:12:
34:17:91:a3:17:e8:eb:11:ba:8b:07:a7:a0:38:1b:
b5:57:43:fe:7a:6d:7b:11:55:70:a1:89:89:63:1d:
a5:b1:2a:bb:10:81:c2:ed:1d:5a:41:cd:30:4c:7f:
b1:b3:3f:b7:e8:96:87:bb:aa:13:87:6b:c1:57:6f:
28:07:b1:0f:8c:1b:8d:72:02:00:07:25:b0:c1:e4:
ca:ac:ed:7e:eb:d5:4d:8f:24:2b:4a:9d:56:58:64:
86:01:41:ab:bd:23:fb:75:a8:94:7b:ae:36:01:7c:
12:6c:13:5c:11:c1:17:71:e0:00:f7:af:6c:72:c4:
cf:bc:d7:46:9a:77:1c:b9:9e:0e:ae:eb:c6:92:c7:
72:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:1C:25:B1:64:1B:53:DE:BA:61:F7:64:5C:13:7A:2A:73:50:3C:15
X509v3 Authority Key Identifier:
keyid:B4:D8:B2:7A:AA:55:E5:1A:34:5F:6A:45:19:E3:67:95:50:46:C3:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:ff:92:f1:21:d1:e4:56:0b:82:93:ac:2e:fd:72:60:5f:13:
94:b1:4e:94:c7:bd:2a:14:2a:42:86:24:6c:ed:09:07:84:cb:
ee:64:01:65:68:58:9f:bb:cf:be:3b:7d:f1:b0:7a:4f:7f:8c:
ee:08:03:89:86:b4:d4:25:b2:cc:b4:95:34:5c:40:83:ae:b2:
53:5d:69:8b:5e:31:47:87:c8:d7:e4:7d:87:28:23:e7:a4:7b:
78:ae:93:c4:fc:96:2b:ed:9f:2b:0d:cc:3d:5a:ba:0f:eb:78:
e4:d7:d4:92:d6:a6:ca:bb:2d:db:cc:98:dc:9c:6f:d8:78:d9:
57:a7:dc:88:e3:f2:4d:91:da:c4:2f:df:a2:dd:52:b3:7a:3b:
53:92:9c:35:e5:13:d8:6a:b1:02:c6:06:1c:a9:3f:cd:a1:1a:
a6:9f:8f:e7:4b:7c:9d:01:cf:0f:e7:8f:e3:fe:3c:81:24:5a:
d4:8e:c8:ad:c1:55:34:65:c1:7c:c3:1a:b5:ee:8d:f9:bb:19:
47:d4:19:cf:ec:89:9f:a0:a1:92:96:54:c9:bf:73:78:bb:01:
35:27:50:a0:c0:4b:7f:b2:86:27:aa:c8:c0:84:66:e4:62:87:
7b:07:d9:82:0c:df:5b:3c:02:34:b9:35:7e:a8:91:bd:d9:bc:
54:15:2e:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 11:58:56 2025 by rpki-client