Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
File: tpQiR24a5eoNWOT4_fkfBfEC_vs.mft (raw, json)
Hash identifier: mLUZNzWdUQhOsNkj2PaT49975+UHPa401Nf0eN4uurI=
Subject key identifier: 29:99:9C:4A:F8:EE:B6:58:33:15:78:3B:65:5F:8D:48:10:3C:59:49
Authority key identifier: B6:94:22:47:6E:1A:E5:EA:0D:58:E4:F8:FD:F9:1F:05:F1:02:FE:FB
Certificate issuer: /CN=b69422476e1ae5ea0d58e4f8fdf91f05f102fefb
Certificate serial: 0197496857B150E5EFFA891B9C0FABEFEAF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpQiR24a5eoNWOT4_fkfBfEC_vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
Manifest number: 1579
Signing time: Sat 07 Jun 2025 08:01:04 +0000
Manifest this update: Sat 07 Jun 2025 08:01:04 +0000
Manifest next update: Sun 08 Jun 2025 08:01:04 +0000
Files and hashes: 1: tpQiR24a5eoNWOT4_fkfBfEC_vs.crl (hash: +iVCRF1zmW9UCwDA2MD47bVWouS4DnMMjSQ29tjkqsI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpQiR24a5eoNWOT4_fkfBfEC_vs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:57:b1:50:e5:ef:fa:89:1b:9c:0f:ab:ef:ea:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b69422476e1ae5ea0d58e4f8fdf91f05f102fefb
Validity
Not Before: Jun 7 08:01:04 2025 GMT
Not After : Jun 8 08:01:04 2025 GMT
Subject: CN=29999c4af8eeb6583315783b655f8d48103c5949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2e:60:90:c5:97:66:2a:47:44:1b:0e:27:4e:
51:f1:d8:49:ce:8a:84:f1:b2:41:b5:69:6b:fd:8c:
97:53:53:fe:e8:01:3e:82:56:60:54:f4:62:8b:65:
2d:1d:4a:4b:70:76:e6:cd:aa:83:76:27:4b:13:db:
8d:bd:40:73:95:43:52:40:46:82:c5:49:68:a7:bd:
53:1f:19:06:6b:cb:80:8b:9e:49:0e:d2:18:43:24:
b9:9e:6e:31:a5:d5:59:2c:79:14:a8:0b:a0:e8:5b:
a5:1f:ad:0a:95:59:0b:e9:08:5e:8a:1b:9b:0c:06:
50:8f:9e:66:3d:53:56:20:83:c3:f3:08:72:1d:e0:
3f:61:b9:ab:02:24:40:4d:ef:62:63:20:b9:d8:a9:
c5:bc:49:e4:0b:e4:a9:46:02:fa:59:18:c5:61:c8:
34:4a:eb:f8:8f:c6:13:3b:8b:e4:5b:43:c8:07:79:
b7:11:a4:60:e9:26:d5:da:f5:9d:99:13:15:53:2e:
6c:ff:6c:19:d5:00:c5:77:55:4c:e9:46:26:97:a5:
ac:f7:85:3e:bc:e5:bb:ef:4a:ca:27:23:35:dc:ad:
21:7e:59:88:bb:cd:89:a8:37:80:76:49:fa:6c:d7:
0b:1b:ca:56:85:57:b2:56:da:7e:b1:3b:39:f8:17:
75:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:99:9C:4A:F8:EE:B6:58:33:15:78:3B:65:5F:8D:48:10:3C:59:49
X509v3 Authority Key Identifier:
keyid:B6:94:22:47:6E:1A:E5:EA:0D:58:E4:F8:FD:F9:1F:05:F1:02:FE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpQiR24a5eoNWOT4_fkfBfEC_vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:a4:e3:21:4b:f4:08:69:1c:9b:9a:10:fa:90:f2:5b:c3:15:
a9:b2:e7:e1:e2:76:b2:cf:d7:2f:bb:10:16:a8:fe:59:50:23:
cf:18:77:0e:1e:97:7b:cf:37:f5:e7:ae:52:47:cf:01:17:4f:
b9:10:ef:be:b1:fd:c3:68:6e:00:90:c6:42:ee:23:41:95:ce:
e9:7f:5f:b6:e8:4c:ae:3b:31:9a:ee:66:aa:ef:66:79:fc:63:
42:13:75:78:30:f1:e2:94:43:36:b1:cb:91:7a:84:57:47:97:
74:72:b5:f3:55:5e:46:6e:4a:54:e5:ec:cb:60:bc:06:22:17:
ef:a9:96:0d:0a:e7:5b:17:c0:83:1b:54:2f:91:91:1c:bd:57:
35:2f:9a:de:94:8c:9f:cf:0b:ab:c7:58:63:1a:8a:b1:75:77:
c6:b5:88:58:63:34:ae:ac:6a:ee:12:61:9a:11:6e:eb:9a:73:
80:4f:ff:a7:34:6e:93:06:fb:15:85:4a:a1:e6:2f:81:1c:4b:
e0:2c:05:00:df:a4:eb:93:dc:ee:a1:aa:06:fb:c6:2f:25:58:
bf:91:31:63:70:8f:50:12:94:34:ac:dd:55:43:8d:d4:44:12:
5c:02:22:06:b0:08:5b:0e:6c:1b:20:54:ae:53:2b:6e:ce:77:
fe:72:f1:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:11:33 2025 by rpki-client