Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
File: tJvYTaF5l8uyhq-QIqsuBboItEI.mft (raw, json)
Hash identifier: PFKhodc8Evwjc6fK1KhJgOODu+QvpOc8/b84UlcYnqM=
Subject key identifier: 0A:95:9C:6B:75:76:66:AE:50:1A:DC:2D:DA:94:6D:EB:71:03:2F:3E
Authority key identifier: B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42
Certificate issuer: /CN=b49bd84da17997cbb286af9022ab2e05ba08b442
Certificate serial: 019745C2A9EA2A93629FC4BBD2E97856AA7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
Manifest number: 10DA
Signing time: Fri 06 Jun 2025 15:01:14 +0000
Manifest this update: Fri 06 Jun 2025 15:01:14 +0000
Manifest next update: Sat 07 Jun 2025 15:01:14 +0000
Files and hashes: 1: 1-PqW8UmiSaov5LQilBVWMK5ZalY.roa (hash: TOVF5pxyQFktaD7ChGQ0pQzpTOW/D5b1AiH6KqbdxuQ=)
2: ZKaLH1RF9q1E6524_CLGwNAeKPU.roa (hash: NYm5o8T+AXl6BoN5iWRobD4OTRMc9uAM7u/9BRILK/4=)
3: ha1PymC_B_zTg0OwXLf43i7WRKI.roa (hash: z4Cqq5RFMdzMGYB6DSPs12v+LmKU0agJDhruZGZUpmY=)
4: tJvYTaF5l8uyhq-QIqsuBboItEI.crl (hash: R6xkAEujiXWfEqPG9xrTOggtgY+zoceZFL5UQtuX86E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:c2:a9:ea:2a:93:62:9f:c4:bb:d2:e9:78:56:aa:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b49bd84da17997cbb286af9022ab2e05ba08b442
Validity
Not Before: Jun 6 15:01:14 2025 GMT
Not After : Jun 7 15:01:14 2025 GMT
Subject: CN=0a959c6b757666ae501adc2dda946deb71032f3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:86:ac:2e:c4:88:c7:d5:6b:8a:a0:c3:24:95:
33:32:08:60:8a:6d:1c:0c:ba:46:95:a0:79:82:07:
5f:ab:de:87:35:a4:bd:4a:14:b0:a1:a5:16:50:54:
bb:31:b0:01:04:f6:7f:ea:29:f3:c9:1c:2b:2d:d3:
90:62:eb:7c:a4:36:eb:30:6b:a1:79:37:9a:6d:1a:
9f:94:3f:71:08:35:1e:5d:8f:d9:86:88:9e:35:f9:
22:64:83:9e:ac:69:12:85:db:73:2a:4f:e7:2f:98:
b5:02:2f:1d:61:b3:d2:f1:d1:47:04:79:ef:78:ab:
f9:a0:3e:4a:76:3c:8e:22:b9:c5:c2:d7:0e:e6:4d:
98:1d:f5:13:e6:f6:31:44:3a:bc:80:55:3a:a2:82:
3d:37:76:7f:d7:6f:6a:22:b9:a1:f3:c4:c2:f0:3e:
75:92:a0:41:b4:7e:78:ba:f4:5a:f2:77:57:81:0d:
f5:7d:09:41:f0:69:b5:b4:83:57:05:d1:b7:37:ad:
b2:de:6b:5f:d0:d1:b7:ae:85:37:fd:a4:39:d3:0e:
3e:65:d6:30:32:0c:0e:da:45:f3:b8:d7:ec:a0:f6:
ec:84:9c:96:cf:c0:42:ff:89:e4:78:4d:de:d4:12:
f1:3b:f2:e8:e0:94:61:15:52:e1:db:be:52:75:d4:
d2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:95:9C:6B:75:76:66:AE:50:1A:DC:2D:DA:94:6D:EB:71:03:2F:3E
X509v3 Authority Key Identifier:
keyid:B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:27:d7:9f:67:e7:d8:2d:c6:b4:e4:38:dc:8b:c5:56:21:67:
68:d0:ff:a3:06:27:a8:b1:18:b0:90:4a:4f:42:1e:34:07:72:
ce:a6:bd:71:01:b8:82:8e:df:b9:93:ef:9f:f0:3a:63:aa:e3:
d1:3e:40:22:51:cc:5f:4a:fc:aa:5c:70:a7:1c:8c:ff:6a:dd:
f3:0d:b1:37:75:b0:39:63:5a:a7:8f:71:f2:3a:df:c8:0e:13:
1d:e6:07:24:65:74:69:6a:e8:68:d9:ce:8e:73:db:f8:f1:8f:
bb:8d:9b:76:09:3f:dd:29:df:df:c0:6a:fa:1d:13:23:f1:e1:
1c:a8:4e:0e:32:67:de:63:5c:7c:e1:e5:01:20:0a:06:a9:77:
6a:9a:ab:96:f0:4e:4b:2d:c1:cd:3e:08:aa:5e:ad:d0:91:3b:
77:0f:fb:70:5c:2c:43:80:c4:da:89:09:dc:ce:d2:6e:8d:09:
e3:79:98:d3:d1:a2:be:45:c4:84:a7:36:3f:c5:3f:97:ad:f9:
90:cb:c1:b5:13:17:b3:f1:d4:e9:c0:72:c2:bb:4c:3c:04:14:
30:4c:d6:44:89:aa:c1:6f:14:9d:01:c1:f2:17:6d:ad:d4:4b:
e2:9f:d1:f6:53:a4:3b:ad:a8:90:78:bf:cd:de:4d:50:3c:df:
5f:d8:e6:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:13:12 2025 by rpki-client