Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
File: tpHQC9tiauVzB9XNTord2UdWgLM.mft (raw, json)
Hash identifier: rblSbdypxTqsNu+XamtNGvvcO1kywTqs0fH/x5JMpvI=
Subject key identifier: 87:3F:02:98:82:09:E8:39:FA:F0:37:B3:D9:89:2E:8A:CD:9A:BE:27
Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Certificate serial: 01974B56C25452A8F3D9ADBAABD70B8F7A66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
Manifest number: 0E51
Signing time: Sat 07 Jun 2025 17:01:06 +0000
Manifest this update: Sat 07 Jun 2025 17:01:06 +0000
Manifest next update: Sun 08 Jun 2025 17:01:06 +0000
Files and hashes: 1: AQvnwjdpCCJVGghqg0nwe9L0mVk.roa (hash: lmMkrxQHgFH9/tCkdiNxxBNSfZZ+AeKUjyZG6YnOW/4=)
2: tpHQC9tiauVzB9XNTord2UdWgLM.crl (hash: nzDRXQdMYZauPf+gApD/e/AwWfTopvHXfUpIRNXhYf4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 17:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:c2:54:52:a8:f3:d9:ad:ba:ab:d7:0b:8f:7a:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Validity
Not Before: Jun 7 17:01:06 2025 GMT
Not After : Jun 8 17:01:06 2025 GMT
Subject: CN=873f02988209e839faf037b3d9892e8acd9abe27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bb:88:6d:2e:ca:ad:bb:b5:89:93:4c:a7:94:
73:e7:d5:8a:15:a5:1d:c8:d9:22:97:49:c0:0a:f9:
2e:e5:81:8f:78:16:bf:4c:06:01:4d:a8:e5:93:f5:
6f:fe:39:66:67:f3:a6:fc:58:32:ee:13:87:73:ea:
61:1f:76:6d:18:5f:6a:99:23:94:14:0c:17:77:04:
47:12:b7:e9:a9:e0:43:17:67:77:8e:90:12:7a:00:
a8:01:e4:fe:fd:a3:bf:d4:db:47:8c:e5:da:2a:42:
c4:ff:a1:09:67:a7:66:6a:87:d2:b3:11:e8:d6:4c:
5b:71:d6:9d:24:68:a3:cd:74:a1:0a:86:67:f2:56:
a2:9d:9e:0c:cc:88:bc:17:43:73:c9:39:05:88:3b:
ff:55:18:91:5f:79:e1:63:c5:40:ff:9e:b3:de:cb:
06:ad:ae:3b:33:8a:8a:ad:94:78:19:05:9d:ef:e1:
09:71:43:e0:f7:a2:92:6d:3c:2f:41:94:9e:d6:97:
80:c1:6a:3f:4a:f4:f6:65:12:cb:96:f5:0d:9d:d8:
09:ad:87:57:27:d7:b8:93:67:d8:fc:c8:e2:98:90:
c5:ec:cd:07:17:c3:7e:ff:33:0e:88:41:82:83:62:
3b:ab:96:74:6f:50:83:50:a9:dd:ea:08:cd:c2:f4:
10:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:3F:02:98:82:09:E8:39:FA:F0:37:B3:D9:89:2E:8A:CD:9A:BE:27
X509v3 Authority Key Identifier:
keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:b8:53:73:b4:6f:4e:eb:8f:ff:80:77:e1:65:e2:0d:eb:47:
24:97:84:97:29:52:1b:b3:6e:d4:ca:74:58:76:fa:99:13:89:
b0:fe:50:bb:de:c5:cb:72:5c:73:5f:57:cf:29:bb:dd:74:3f:
f5:b7:97:69:bb:fe:81:af:5e:de:74:51:dd:ab:87:91:af:0c:
e7:47:eb:d0:82:bc:a5:76:4c:47:50:88:2d:e2:0b:fa:92:cf:
6f:0f:7f:34:b6:12:cb:d6:dd:f6:3b:a6:8b:77:94:a2:50:fa:
69:09:35:b1:33:73:b9:ae:99:b1:93:da:12:4f:54:a9:0c:c1:
d8:3e:64:fb:fc:36:3b:4f:0a:84:c6:5f:16:d2:28:40:e3:dd:
b0:0d:c6:35:5c:cd:25:15:e7:c4:10:b1:6d:eb:a5:2a:f5:8b:
ad:86:b5:02:7b:b5:7e:b5:79:98:51:30:2e:5f:82:f4:b2:00:
f5:74:18:4f:f8:fd:64:27:3d:fe:0d:f8:4f:6d:0b:bc:d0:0c:
52:3d:20:c7:b2:d9:23:86:5a:9f:3f:5c:fc:80:5e:bf:2a:49:
3e:34:a5:7b:83:ba:61:eb:d6:29:b2:9a:cf:4a:54:1c:bf:5f:
ec:86:53:bc:c8:01:a6:01:f4:2f:10:08:52:17:0b:66:37:19:
26:47:69:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:00:59 2025 by rpki-client