Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
File: TKE73qVPdrioVxKv22FRhrM4OME.mft (raw, json)
Hash identifier: raNZrtlmzaLv7BhrwYTkwWIk+q9Oan/ny+7ZKwg20nc=
Subject key identifier: B7:47:58:0C:0A:F7:00:5F:D2:36:4E:FC:99:63:5E:56:68:0F:23:2C
Authority key identifier: 4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1
Certificate issuer: /CN=4ca13bdea54f76b8a85712afdb615186b33838c1
Certificate serial: 019749D605F4320A86F50F87BE41AB0658E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 10:00:52 +0000
Manifest this update: Sat 07 Jun 2025 10:00:52 +0000
Manifest next update: Sun 08 Jun 2025 10:00:52 +0000
Files and hashes: 1: 8axKv1QeNdYLl5PRbdXwvujzyH4.roa (hash: P16odh3n69wKkHb8t7qySEeaYC3/LuUW9W8sAY8jUTo=)
2: TKE73qVPdrioVxKv22FRhrM4OME.crl (hash: aZoRqNb2eQqjh3S/FTSLEPkynkZ31Ywm/EXQRLd5uYg=)
3: WNroR83uzcjISqXHww42f1zYgLY.roa (hash: ZAQula8xqSNg9/XEOBi+pmskOiJ5Nh7rkmicK30wwYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d6:05:f4:32:0a:86:f5:0f:87:be:41:ab:06:58:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca13bdea54f76b8a85712afdb615186b33838c1
Validity
Not Before: Jun 7 10:00:52 2025 GMT
Not After : Jun 8 10:00:52 2025 GMT
Subject: CN=b747580c0af7005fd2364efc99635e56680f232c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e6:ac:c2:12:61:9c:c8:29:4d:8f:ab:38:0f:
59:ec:de:3d:da:41:b4:01:75:da:c2:9a:5f:18:2a:
47:dc:2f:3d:08:9f:58:69:7b:74:5e:28:4c:06:89:
9e:93:1f:78:a2:9a:5d:de:16:6c:95:64:6a:65:06:
c3:ce:b8:72:8f:20:4b:fa:3d:ff:f2:81:78:e8:25:
b9:5a:d0:e5:00:ee:2e:9a:a4:fa:4c:26:9e:b0:ed:
03:4a:22:0e:e5:99:4a:31:3d:91:56:57:6d:4d:cf:
e1:ff:2f:d6:0e:c8:81:8b:66:d8:54:8b:e8:41:3d:
03:95:a3:60:9b:64:f2:7d:6b:6f:a9:8f:e9:d6:51:
e9:2e:38:6b:1f:4c:5c:dd:bf:53:03:60:89:51:39:
f2:76:13:af:ed:db:a7:6a:7b:60:fb:dd:e3:f8:35:
55:1b:69:b6:af:e9:62:4a:1c:dd:aa:34:6a:68:85:
b6:b7:25:37:02:07:b1:09:96:d7:0e:c6:89:f7:fa:
fd:e3:a1:36:68:f8:2f:fb:6d:1e:dd:52:be:b5:2e:
84:19:48:51:9b:0f:91:87:2c:3f:ea:34:4d:d0:d5:
66:79:17:ed:20:08:db:18:52:b6:0c:01:80:83:3c:
64:12:f7:97:07:4c:f9:e5:a8:c1:ea:17:68:bc:41:
37:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:47:58:0C:0A:F7:00:5F:D2:36:4E:FC:99:63:5E:56:68:0F:23:2C
X509v3 Authority Key Identifier:
keyid:4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:1a:53:75:4c:91:11:06:7f:e0:f4:30:69:18:6f:95:ea:d0:
0d:36:6a:67:f1:21:95:79:01:d8:4d:ca:1d:91:5d:8e:40:43:
e5:5d:e5:ea:35:dc:8e:cd:03:ce:34:49:05:b5:43:7a:b1:e6:
ad:1c:87:d1:b0:d2:fd:b3:7e:3b:fd:c4:d2:29:46:78:5e:a8:
68:44:20:ed:73:a2:cc:a2:4b:49:17:05:31:55:cd:9d:55:81:
dd:2a:fc:7f:23:4e:91:2a:20:28:39:c4:c6:56:e8:75:19:f0:
93:4d:a5:26:1d:93:57:0e:d9:0d:06:66:fd:49:5e:84:d9:43:
fb:56:cc:53:41:2d:8e:cd:68:39:f7:67:dd:b3:3e:ae:a3:8a:
f2:0d:e0:9b:f5:f1:ba:41:1c:2c:07:0d:01:0d:d3:3f:14:a0:
8a:97:29:d3:97:50:5e:24:26:9d:95:d6:fe:8c:fd:2e:a5:65:
e6:6c:99:86:98:89:a4:7b:e3:ca:44:d0:35:8b:bf:8e:7f:9a:
5d:33:36:87:2e:56:ca:3b:75:57:97:61:59:f4:ee:8a:83:51:
58:1a:87:cc:43:bd:40:c5:d1:54:ed:7b:13:cf:60:15:f8:57:
a9:3d:c2:03:a6:f3:77:23:da:d3:bf:ca:21:38:26:a3:24:8d:
c5:7e:6f:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJ1gX0MgqG9Q+HvkGrBljgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYTEzYmRlYTU0Zjc2YjhhODU3MTJhZmRiNjE1MTg2YjMz
ODM4YzEwHhcNMjUwNjA3MTAwMDUyWhcNMjUwNjA4MTAwMDUyWjAzMTEwLwYDVQQD
EyhiNzQ3NTgwYzBhZjcwMDVmZDIzNjRlZmM5OTYzNWU1NjY4MGYyMzJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+aswhJhnMgpTY+rOA9Z7N492kG0
AXXawppfGCpH3C89CJ9YaXt0XihMBomekx94oppd3hZslWRqZQbDzrhyjyBL+j3/
8oF46CW5WtDlAO4umqT6TCaesO0DSiIO5ZlKMT2RVldtTc/h/y/WDsiBi2bYVIvo
QT0DlaNgm2TyfWtvqY/p1lHpLjhrH0xc3b9TA2CJUTnydhOv7dunantg+93j+DVV
G2m2r+liShzdqjRqaIW2tyU3AgexCZbXDsaJ9/r946E2aPgv+20e3VK+tS6EGUhR
mw+Rhyw/6jRN0NVmeRftIAjbGFK2DAGAgzxkEveXB0z55ajB6hdovEE3hwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLdHWAwK9wBf0jZO/JljXlZoDyMsMB8GA1UdIwQY
MBaAFEyhO96lT3a4qFcSr9thUYazODjBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEtFNzNxVlBkcmlvVnhLdjIyRlJock00T01FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jNjJkMTMtN2YwMy00ZDE5LThiNDYt
ZmM5MTQzM2QzNjdkLzEvVEtFNzNxVlBkcmlvVnhLdjIyRlJock00T01FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9jNjJkMTMtN2YwMy00ZDE5LThiNDYtZmM5MTQzM2QzNjdk
LzEvVEtFNzNxVlBkcmlvVnhLdjIyRlJock00T01FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAchpTdUyR
EQZ/4PQwaRhvlerQDTZqZ/EhlXkB2E3KHZFdjkBD5V3l6jXcjs0DzjRJBbVDerHm
rRyH0bDS/bN+O/3E0ilGeF6oaEQg7XOizKJLSRcFMVXNnVWB3Sr8fyNOkSogKDnE
xlbodRnwk02lJh2TVw7ZDQZm/UlehNlD+1bMU0Etjs1oOfdn3bM+rqOK8g3gm/Xx
ukEcLAcNAQ3TPxSgipcp05dQXiQmnZXW/oz9LqVl5myZhpiJpHvjykTQNYu/jn+a
XTM2hy5Wyjt1V5dhWfTuioNRWBqHzEO9QMXRVO17E89gFfhXqT3CA6bzdyPa07/K
ITgmoySNxX5vow==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:50:26 2025 by rpki-client