Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
File: _TSxP72Tgd-Exofwa80HTkp1WAM.mft (raw, json)
Hash identifier: FlT7zNo3ajG6BrH9ClpmIYUadgpmHB6lDYOz251dCTY=
Subject key identifier: 8A:D7:F6:96:75:AE:0D:F3:BE:BA:BD:F3:8C:F5:61:38:7A:37:49:D4
Authority key identifier: FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03
Certificate issuer: /CN=fd34b13fbd9381df84c687f06bcd074e4a755803
Certificate serial: 019749317EEC11FDDCCC3C82C336700B5BC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
Manifest number: 157A
Signing time: Sat 07 Jun 2025 07:01:09 +0000
Manifest this update: Sat 07 Jun 2025 07:01:09 +0000
Manifest next update: Sun 08 Jun 2025 07:01:09 +0000
Files and hashes: 1: _TSxP72Tgd-Exofwa80HTkp1WAM.crl (hash: zN+9GfBXSo2RXratZRXqxSkjPn+vnJF9jj4kB8gCvio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:7e:ec:11:fd:dc:cc:3c:82:c3:36:70:0b:5b:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd34b13fbd9381df84c687f06bcd074e4a755803
Validity
Not Before: Jun 7 07:01:09 2025 GMT
Not After : Jun 8 07:01:09 2025 GMT
Subject: CN=8ad7f69675ae0df3bebabdf38cf561387a3749d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:35:54:77:b3:65:cc:79:43:bf:bd:65:e7:25:
9f:f8:55:24:42:a1:2a:12:78:b6:16:c3:32:48:73:
04:6d:4d:d6:96:51:c8:27:ac:df:97:5f:fd:e5:d8:
ac:06:7e:88:52:b5:ec:de:31:8f:f9:4d:8b:b8:ef:
01:31:92:3d:64:f2:c2:2c:c1:e6:1b:a1:b5:60:67:
1c:56:f3:39:a5:6f:e8:33:0a:fd:89:79:e0:38:66:
32:3a:90:ea:00:99:8f:04:16:c5:51:b2:00:16:a5:
4f:56:7f:70:bb:7c:b7:52:2d:66:05:4a:26:e9:f1:
bc:4b:e9:11:70:42:86:a8:7a:3a:d3:ed:81:b5:b0:
b6:69:80:97:24:50:0c:c4:d8:18:54:63:4b:f7:1b:
f2:a3:9a:66:2f:c2:b3:af:51:b5:47:b5:cf:b5:01:
cf:bf:f3:aa:84:98:3c:8f:fc:b9:41:9f:3a:3c:7a:
76:ac:20:19:ea:7b:51:84:43:c8:43:03:a2:3a:03:
cc:55:40:e3:22:b9:de:db:f5:9f:c8:3b:2d:18:a3:
46:b9:5c:7b:0d:48:16:7a:59:b9:a2:70:b9:58:34:
aa:47:fb:68:08:8e:45:77:a2:c5:c2:ba:dc:85:7b:
aa:14:0f:f2:46:bf:9b:ae:c5:ce:26:a2:ed:ff:5b:
61:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D7:F6:96:75:AE:0D:F3:BE:BA:BD:F3:8C:F5:61:38:7A:37:49:D4
X509v3 Authority Key Identifier:
keyid:FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:7b:d7:79:6c:dc:77:8e:d3:64:ad:36:db:32:bd:40:a6:86:
4d:5e:e9:a5:20:94:67:51:dd:b5:4c:c5:86:79:aa:72:47:e1:
2d:23:36:c7:82:c9:05:13:6f:c1:29:c8:89:e9:b1:ee:b7:de:
d8:d1:55:db:0f:9d:f6:75:19:c9:a0:0b:14:4b:a0:49:6d:5c:
6a:c8:06:06:e8:38:2a:95:82:d7:65:3c:5a:14:71:43:5c:29:
13:61:bc:c1:5f:60:2f:c7:53:01:78:8c:b4:69:e2:31:a1:03:
12:0b:b4:18:0e:fb:4c:e3:3b:d5:0f:ac:a2:b6:29:a6:f4:35:
a8:83:43:1f:52:0a:f3:9d:c2:fc:5b:3b:90:41:f3:e4:65:0f:
5d:60:ec:eb:90:bf:f9:7b:e9:b6:1e:76:19:46:ea:ff:4d:c6:
2b:d7:1c:df:b6:e4:5f:2f:3a:d9:1d:bd:45:87:38:e4:aa:d3:
2a:d9:63:32:3e:22:12:fb:f5:ce:da:5e:90:77:29:42:6b:fb:
45:98:fd:94:d8:b6:f3:e6:d9:58:83:93:df:ca:7f:f2:bf:a3:
71:dd:1f:45:8c:5a:e8:00:0e:92:45:8e:1e:68:97:d2:b2:67:
88:34:b4:10:c3:ae:df:3c:76:7f:00:88:f9:73:3b:6c:79:2c:
9f:1c:bc:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:35:51 2025 by rpki-client