
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json)
Hash identifier: 9BVb/dIzkt2tVIWqcmeWqxirExDtVHFyeBtrkNZZmic=
Subject key identifier: 67:04:1D:B2:59:3F:6A:58:35:CB:1E:67:49:49:AD:78:C1:B7:3F:DB
Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Certificate serial: 01975BA4F57AB5B4287B03200A7662428EC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
Manifest number: 1592
Signing time: Tue 10 Jun 2025 21:00:26 +0000
Manifest this update: Tue 10 Jun 2025 21:00:26 +0000
Manifest next update: Wed 11 Jun 2025 21:00:26 +0000
Files and hashes: 1: RJXW4LBK4fFR7-qXARrAfcS6HVM.roa (hash: nADRNIhqhtAZRzc6jlM5uns21XppYQB+SgxQZjcIenk=)
2: RSXmGPfQ8mX6WcSR6Z2ZB6u7-VY.roa (hash: 9JPv5cClAHFEamsto3OfYBSv6xhBQ5Y12w+jE6Rhs80=)
3: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: ZrQkAprDtg2JtAP6/fWhResB9n2apn03fvx75kl+rZ4=)
4: pPV-duHwP_qg6dqtHXTIMJzGTZk.roa (hash: alNCRojVtM9rfP6fgcCwPL9ZC8lIXb9OD5QPFguw90Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 20:45:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:a4:f5:7a:b5:b4:28:7b:03:20:0a:76:62:42:8e:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Validity
Not Before: Jun 10 21:00:26 2025 GMT
Not After : Jun 11 21:00:26 2025 GMT
Subject: CN=67041db2593f6a5835cb1e674949ad78c1b73fdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0a:57:8a:16:51:f9:ce:93:cf:23:b7:37:42:
b0:52:54:e8:68:0b:ed:e5:8c:ab:ef:46:fd:74:c8:
92:c5:c1:7a:7e:69:a5:8b:3b:ab:29:21:6e:bf:94:
af:f0:df:8b:5b:0b:21:91:3b:fd:99:29:ba:9d:f2:
5a:e1:28:1a:7a:45:5e:31:6e:e6:9c:0b:7d:36:da:
2c:86:1b:c0:2b:bc:6f:bc:a0:ed:46:84:51:fb:fb:
cf:a7:e9:85:97:b3:83:c4:cc:83:db:a2:cd:ed:cf:
51:97:bb:fe:24:94:fb:19:33:66:49:43:1b:69:2d:
36:51:4c:b1:9d:fb:02:27:f0:d3:0c:aa:d5:7f:18:
d4:a9:33:47:f8:52:e2:eb:f6:a7:ad:51:7a:3b:a7:
52:48:15:a8:c6:01:d4:67:1a:99:f6:fb:2d:bb:22:
16:bf:42:9e:6b:56:b2:a6:a1:03:af:32:1f:6b:fb:
99:bd:54:87:f0:5a:97:46:17:79:da:ac:d3:eb:25:
34:d3:66:da:7c:22:b2:6e:6e:da:95:65:ff:b1:d7:
d9:cf:a0:9a:c9:44:b5:2b:83:f9:9f:2c:0b:5e:22:
0a:66:59:2b:6e:bc:44:0f:84:6a:33:5a:a6:78:a4:
61:d4:f4:aa:35:cf:ed:bb:16:29:39:41:fa:83:b9:
36:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:04:1D:B2:59:3F:6A:58:35:CB:1E:67:49:49:AD:78:C1:B7:3F:DB
X509v3 Authority Key Identifier:
keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:c9:dd:f8:99:59:b9:b0:f5:c8:40:06:85:28:3f:44:c0:61:
23:55:a1:67:ee:49:fe:4d:ff:9e:15:7d:11:a0:38:06:04:44:
a8:62:87:23:44:b7:bf:2f:c5:82:6c:fb:f0:de:22:13:f4:c2:
7b:c5:80:95:d3:df:c8:d8:26:b5:f4:dd:ce:c2:c9:ec:11:a5:
31:33:2a:54:2a:46:3f:f7:1b:44:0c:84:68:e9:d8:0e:0a:00:
b8:15:0d:e3:7e:a9:4f:2f:b8:91:c6:77:a5:81:47:ab:b6:fd:
a7:70:52:66:96:64:c8:ff:2b:33:ac:8f:16:8c:1f:14:6b:49:
ab:31:f2:ab:59:f1:4a:56:09:9a:d8:b4:73:04:74:5d:d2:8c:
51:b9:23:79:29:2c:c4:ba:4b:0e:1e:c6:a9:41:19:cb:e8:cb:
b6:9a:c2:3c:c1:e2:41:9f:a1:6c:57:86:6e:08:5d:83:e1:2b:
e8:de:f8:46:c7:80:02:51:44:39:51:58:c0:42:4a:26:ea:46:
af:10:31:16:43:e9:2a:ea:45:4b:3d:cf:61:73:30:cf:24:88:
71:f2:7f:85:15:f4:ac:be:63:c8:e4:1a:fe:0f:d8:9c:e3:08:
31:78:09:62:b4:cf:c1:13:bf:97:31:f7:9d:c8:50:22:7b:37:
a3:b1:94:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 04:32:47 2025 by rpki-client