Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json)
Hash identifier: stIxVpFM/kI5/j40OaiRM47MqKW3qnv8ASU9MH0T0Hc=
Subject key identifier: 38:61:23:9D:E8:DB:1A:4A:DE:56:3A:EE:47:54:C7:2C:ED:5E:5E:3D
Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Certificate serial: 019757C8533C7770C93C6C0EA79909EF9E2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
Manifest number: 1590
Signing time: Tue 10 Jun 2025 03:00:35 +0000
Manifest this update: Tue 10 Jun 2025 03:00:35 +0000
Manifest next update: Wed 11 Jun 2025 03:00:35 +0000
Files and hashes: 1: RJXW4LBK4fFR7-qXARrAfcS6HVM.roa (hash: nADRNIhqhtAZRzc6jlM5uns21XppYQB+SgxQZjcIenk=)
2: RSXmGPfQ8mX6WcSR6Z2ZB6u7-VY.roa (hash: 9JPv5cClAHFEamsto3OfYBSv6xhBQ5Y12w+jE6Rhs80=)
3: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: 2Km5szmK09gH88P4EKtWNQ1/Rt7FQSuZ/4Rk59q96R8=)
4: pPV-duHwP_qg6dqtHXTIMJzGTZk.roa (hash: alNCRojVtM9rfP6fgcCwPL9ZC8lIXb9OD5QPFguw90Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 03:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:c8:53:3c:77:70:c9:3c:6c:0e:a7:99:09:ef:9e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Validity
Not Before: Jun 10 03:00:35 2025 GMT
Not After : Jun 11 03:00:35 2025 GMT
Subject: CN=3861239de8db1a4ade563aee4754c72ced5e5e3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:90:f4:29:cb:b7:2a:99:44:b2:cf:b8:a2:02:
0d:0b:53:a4:3b:ff:7c:0f:2e:63:37:57:a7:6b:63:
96:60:61:22:8a:7a:29:b4:e6:ef:48:e3:d5:0a:45:
84:95:23:5c:70:f0:af:d0:55:48:61:f5:5d:a4:e2:
50:41:d4:2b:45:5b:55:d7:3c:52:3e:51:a6:2c:18:
48:00:64:d0:27:73:e0:56:3b:1d:0e:ad:c5:4b:75:
51:a5:0e:34:8c:8e:69:7a:d7:6c:4d:c7:55:3b:db:
eb:0e:25:ba:d6:d7:b7:e5:de:89:9c:07:6e:82:19:
3a:61:15:2b:c3:17:94:7a:c1:4d:7e:24:de:ca:37:
8e:08:77:3e:10:c0:bf:c1:7d:01:50:23:8a:df:11:
7d:46:2b:59:82:c5:bb:ad:56:42:9a:1d:e9:95:a3:
01:5e:8d:ed:92:ab:c6:84:d2:f2:ae:8f:dd:16:a7:
cf:08:90:e5:03:3c:5c:7b:a3:59:60:af:be:b3:ba:
4b:79:3f:0d:2e:6a:83:2c:7a:48:7b:31:9b:6f:83:
58:37:0d:90:3f:c8:ac:4d:e4:05:07:8c:b4:e9:d4:
4a:f0:05:1f:38:51:08:49:06:ee:48:82:8b:ad:ad:
8b:d2:54:f9:47:9a:81:13:c9:c2:33:c7:36:4c:47:
14:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:61:23:9D:E8:DB:1A:4A:DE:56:3A:EE:47:54:C7:2C:ED:5E:5E:3D
X509v3 Authority Key Identifier:
keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:5e:80:2a:8c:f6:78:dc:cb:a9:e7:3a:df:fd:42:d2:73:2a:
63:d4:70:4e:e3:17:ed:15:31:38:72:a8:1a:ed:43:e9:60:a3:
86:9d:1a:17:0b:d7:df:c3:39:ed:97:15:fe:8a:a9:d5:65:76:
bc:ee:c8:96:1f:d9:4c:6d:72:1c:23:54:f3:00:42:96:e6:ac:
d1:7a:4d:31:4c:f6:24:1e:ce:86:89:da:ff:7c:5f:2a:02:d8:
5d:9a:01:dc:0d:18:d1:b8:0b:44:19:c0:ff:c0:ab:92:83:32:
41:46:59:ec:5e:f9:86:73:08:88:bf:e5:bb:6c:a6:03:f0:ef:
ed:b4:0e:d4:02:ac:b6:a9:31:b7:8c:ba:23:9c:75:8e:f8:4e:
38:25:76:7b:d3:1a:c6:bd:6d:78:b4:62:f8:ba:ce:3c:e8:af:
e2:be:c1:45:b1:2e:ac:2a:26:d6:f1:b4:0d:9d:e1:3c:f7:a2:
f5:ed:5e:fa:aa:19:63:0e:bf:a7:d7:03:3d:83:8e:31:ba:87:
81:4f:73:89:4e:59:86:2f:bb:bb:ef:77:1c:a6:ad:33:3d:7b:
4b:05:e6:c4:9e:88:fb:36:2c:dd:d7:77:30:81:b7:53:9f:76:
b3:32:f1:19:52:d9:df:2d:37:a7:ac:1e:37:dc:aa:ce:97:c3:
61:38:6e:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 11:37:14 2025 by rpki-client