Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: c8CqsW/Tjc+iolJZ274wxKyuDBtFwHfNUDQS30JolGA=
Subject key identifier: 57:1E:3B:33:80:AB:3E:25:06:95:6B:07:B3:DC:68:8D:67:A5:9F:BA
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 0197CCBB0C26718353B590472C6DD1C7908C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 0A91
Signing time: Wed 02 Jul 2025 20:01:39 +0000
Manifest this update: Wed 02 Jul 2025 20:01:39 +0000
Manifest next update: Thu 03 Jul 2025 20:01:39 +0000
Files and hashes: 1: WJX8pUUgztAx5ziEUO7pdOPaYpY.roa (hash: Zv2hcAwndmbcI8AgNFSDMAAPE42QlNQ0rd+YTdhMpog=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: kZPjc4HupSqpUw5TiK2mdbCFJQ2gYS96V+xM3zbIG60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:bb:0c:26:71:83:53:b5:90:47:2c:6d:d1:c7:90:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: Jul 2 20:01:39 2025 GMT
Not After : Jul 3 20:01:39 2025 GMT
Subject: CN=571e3b3380ab3e2506956b07b3dc688d67a59fba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:40:16:52:22:20:50:ed:cf:b5:98:95:e0:51:
f3:5a:53:a1:5a:05:82:08:04:b3:97:61:42:73:90:
c7:90:fb:1d:27:da:58:63:50:82:14:91:bb:b4:48:
c5:40:f1:ce:b5:ec:3a:98:66:9d:9c:f5:37:64:fa:
ac:01:f4:cb:c9:1d:4f:42:47:37:1a:76:55:7b:aa:
c1:74:38:96:40:f4:d9:8c:dd:5a:94:3e:ab:5a:bc:
f9:07:a0:36:36:9f:64:1e:fa:c2:43:68:67:d9:bd:
24:0d:41:21:65:24:20:09:0b:a9:1e:6c:5c:35:dc:
e4:b3:af:4e:97:ba:19:a1:1a:f0:1b:42:eb:3d:4f:
df:66:2b:2b:93:6d:01:2a:e9:eb:74:48:f3:9c:de:
c1:ce:c1:43:b2:79:de:d3:bc:c5:31:cd:01:59:c4:
d6:be:4c:84:21:d2:31:cb:7e:e2:68:9a:c4:07:f9:
fb:8e:6d:de:45:ff:08:f7:1c:75:69:ea:db:f4:e6:
dc:77:f2:ce:12:09:92:7e:bc:9b:30:4a:b1:eb:41:
b5:84:90:b2:47:97:71:16:18:85:4d:e8:e0:7b:21:
0a:c2:36:f7:e7:b0:c6:55:f8:58:5c:d6:56:5b:c0:
d5:1f:1f:57:3b:f1:63:6e:82:e9:ba:4e:1e:1a:0f:
4e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:1E:3B:33:80:AB:3E:25:06:95:6B:07:B3:DC:68:8D:67:A5:9F:BA
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:e4:d8:f8:1c:80:fe:f6:85:b5:1b:a3:49:7d:d8:a8:57:eb:
77:8f:33:12:16:0c:87:e3:da:3e:e9:81:7f:a9:fa:ae:2c:65:
71:d2:32:e6:3e:36:b9:34:1a:7a:4e:43:f1:b3:60:45:41:e6:
e7:a0:b7:52:e6:b6:09:74:dd:b0:a4:43:6f:ae:e5:70:35:37:
3d:a8:aa:89:8b:37:61:d6:0e:df:8a:9a:2c:a7:e4:23:ef:44:
c0:97:22:a9:2b:4a:e1:d9:bc:e5:f1:fd:b4:e4:b1:60:7d:e6:
61:20:71:e7:05:e4:20:e6:70:1d:6f:f0:b9:4f:aa:6a:8a:ff:
97:15:05:6f:0c:b3:b0:b1:12:f5:49:5c:38:ee:b9:35:14:52:
f9:d5:b8:b1:f6:df:6b:d5:a9:d6:ee:76:2c:80:c2:d0:a0:a9:
57:7b:5d:62:10:d3:41:5f:57:f3:25:f7:a5:1e:3a:da:5e:c0:
6a:7c:62:6a:eb:a8:cf:31:80:18:75:a0:8d:68:91:44:32:a3:
10:b4:66:8c:48:dd:d8:c0:da:06:cd:c8:32:30:59:d1:fd:c4:
f6:ff:94:f2:9e:8a:2a:e1:f8:04:ee:0f:24:a0:4d:98:f7:ca:
dd:c5:ba:18:f0:db:b0:2b:32:38:0a:1b:85:8f:81:77:f2:83:
4d:8b:03:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 04:09:59 2025 by rpki-client