Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
File: tznE4_6GnZeDui2t9mDczQ-lNwc.mft (raw, json)
Hash identifier: TnsRox/mUj54/OH1md+M2UEjpsiSl7jIK3txYQ3n96E=
Subject key identifier: D1:76:A3:28:A6:CD:8D:F5:32:15:27:B5:22:44:5D:7B:58:09:6F:98
Authority key identifier: B7:39:C4:E3:FE:86:9D:97:83:BA:2D:AD:F6:60:DC:CD:0F:A5:37:07
Certificate issuer: /CN=b739c4e3fe869d9783ba2dadf660dccd0fa53707
Certificate serial: 01974FD81730BC4BA9E1F0BB01B01FD2D5D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
Manifest number: 0FCB
Signing time: Sun 08 Jun 2025 14:00:50 +0000
Manifest this update: Sun 08 Jun 2025 14:00:50 +0000
Manifest next update: Mon 09 Jun 2025 14:00:50 +0000
Files and hashes: 1: XSeQzzLzaRiIssAEaH8bFHtmW3c.roa (hash: 5lhi1fFGQ5t288ymZ18SpahB86WMGs7YGo9rolcKH9c=)
2: tznE4_6GnZeDui2t9mDczQ-lNwc.crl (hash: tYrbmDGI4sQADfqtwWXT5cQKPiuSpfd3CUGf0hB/AsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d8:17:30:bc:4b:a9:e1:f0:bb:01:b0:1f:d2:d5:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b739c4e3fe869d9783ba2dadf660dccd0fa53707
Validity
Not Before: Jun 8 14:00:50 2025 GMT
Not After : Jun 9 14:00:50 2025 GMT
Subject: CN=d176a328a6cd8df5321527b522445d7b58096f98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:04:6f:c5:e4:2f:03:25:39:d7:a3:d1:72:41:
46:40:fa:77:1e:47:b4:9e:66:19:c8:e7:36:de:24:
70:bb:d6:9c:a2:50:e9:97:16:85:5b:c3:d7:27:e8:
9a:a3:5c:4f:2e:dc:4a:3e:06:b3:ca:e4:09:9d:6d:
c5:23:bc:90:7d:2f:47:39:e1:3c:2a:fa:c0:35:26:
d7:50:a7:71:66:19:08:df:ab:e4:3d:ef:79:49:d1:
10:d6:fa:39:6c:53:c2:c7:9b:68:17:45:fa:c8:de:
87:e3:d1:7b:70:6a:07:df:f1:76:76:d9:03:b2:dc:
98:86:b4:f0:c7:4b:77:3a:96:b7:f1:be:88:f0:5a:
ad:c5:56:9e:97:2d:cb:c9:6f:1c:bf:d3:b3:26:46:
26:ef:42:d7:8a:bb:d9:3f:14:f2:99:4f:74:0e:d5:
2e:b8:02:34:1d:98:d6:7d:70:9b:43:8d:34:9b:5f:
31:c2:c7:e3:bb:9f:6a:c4:e7:0a:90:02:1d:66:9a:
82:74:f9:9e:98:1f:d7:f9:33:0f:06:fc:66:38:88:
18:5a:21:e6:dc:a6:40:37:0c:76:94:f1:96:71:eb:
30:06:38:d5:84:f6:f1:c8:20:92:99:df:fc:c1:57:
de:4b:03:1d:67:6b:57:a3:20:39:21:e4:b7:f4:ef:
74:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:76:A3:28:A6:CD:8D:F5:32:15:27:B5:22:44:5D:7B:58:09:6F:98
X509v3 Authority Key Identifier:
keyid:B7:39:C4:E3:FE:86:9D:97:83:BA:2D:AD:F6:60:DC:CD:0F:A5:37:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:5b:69:b8:99:b2:f3:5d:d2:bb:84:36:88:8e:f9:8e:19:56:
79:8b:28:d7:d2:94:30:01:9f:45:33:7e:a8:ec:73:dd:93:1c:
a9:68:6e:fd:7a:31:bd:58:1f:93:84:0d:5a:bd:96:55:e1:24:
35:f4:3d:e1:97:ba:59:f9:f5:61:43:a3:9a:be:8d:92:49:1b:
5c:96:67:03:6d:87:7e:88:8d:6b:04:13:be:5b:32:45:d7:a1:
34:9c:5d:d6:14:12:4f:54:5c:ef:6a:67:a0:4c:c8:26:bb:f4:
85:31:1b:c8:b8:32:0f:91:fd:d2:0d:02:0b:1d:3e:6e:92:80:
fc:b7:91:e7:84:8b:c9:fd:87:fa:3a:76:72:3a:a3:37:5c:96:
1e:cd:33:4f:82:d7:da:9a:fe:d5:0f:63:cb:37:36:1b:55:2e:
f0:be:f7:8d:49:1a:35:26:06:72:95:82:4e:48:b1:6c:39:34:
bd:4c:09:50:5a:60:b0:9a:c7:2d:c1:d6:67:a9:3f:1f:db:fc:
46:61:da:4c:79:ac:19:66:d4:2a:40:ed:ec:6e:0d:a6:fc:34:
15:65:70:70:1e:80:7f:7b:37:04:8d:03:25:06:cf:c2:c6:8a:
e6:3a:0a:d8:39:61:f3:75:1b:97:27:23:a7:d3:0d:a8:1c:fa:
c7:02:46:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 17:59:31 2025 by rpki-client