Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: KhZ8dHDi18JUWJFF7HsV4fahDP9OGzc/CibqPvmacw4=
Subject key identifier: AA:45:FE:35:03:A0:7C:C8:1B:D2:95:71:B7:64:94:A2:E9:B8:FC:23
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 01974F6A7DB702A33DF8CBCA05B17D013028
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 1580
Signing time: Sun 08 Jun 2025 12:01:08 +0000
Manifest this update: Sun 08 Jun 2025 12:01:08 +0000
Manifest next update: Mon 09 Jun 2025 12:01:08 +0000
Files and hashes: 1: DvRXNlTCR35yGxJPggKI6LQ1TXY.roa (hash: uCs5edSvBBj2KY6s6HL8wAMD7pMX49G3e3NvxavAQGo=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: 1ElcDnSW/PEUUk6WFNPb8hDJVI1ngBopS20Ef3QvvH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:6a:7d:b7:02:a3:3d:f8:cb:ca:05:b1:7d:01:30:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: Jun 8 12:01:08 2025 GMT
Not After : Jun 9 12:01:08 2025 GMT
Subject: CN=aa45fe3503a07cc81bd29571b76494a2e9b8fc23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f8:4b:fd:4e:ff:54:d7:a3:13:f2:8f:c5:f3:
0a:6d:2b:9c:49:eb:ff:14:61:67:1f:00:db:c7:fd:
b5:51:f4:d9:02:ed:90:fd:95:3d:d5:d9:1e:a3:5d:
0a:45:6f:26:96:92:ef:f3:1a:58:04:07:42:1f:83:
c8:05:47:26:fa:38:3e:62:33:11:18:45:28:d2:71:
a6:52:76:b0:52:bb:63:03:79:5f:b4:fe:db:c4:ac:
3f:ea:86:d4:49:96:ef:6e:2f:ad:9d:60:1b:a6:54:
1c:48:10:41:86:c9:3d:13:bb:68:04:65:b4:46:8b:
73:67:e5:37:17:fe:b2:78:a2:39:50:78:3c:3c:ca:
a4:6c:79:7c:f6:d6:26:7b:3f:60:43:18:6c:35:a1:
2e:2d:8f:1e:84:bd:0c:bf:dc:ce:ce:cc:f2:95:12:
39:14:ef:93:01:1e:71:71:fd:6e:be:1b:08:26:bd:
62:02:9e:95:a5:5b:97:20:50:62:b7:fe:be:bc:ef:
fc:88:e3:e0:c8:21:e5:6d:85:60:63:fe:63:e7:2a:
54:b8:07:e3:21:37:97:ea:b7:68:0f:7b:f3:3d:5f:
1f:c4:33:13:6c:6b:65:ad:df:cf:10:65:e7:94:a8:
82:90:de:71:0e:2b:9c:8e:44:19:db:d5:17:9d:59:
34:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:45:FE:35:03:A0:7C:C8:1B:D2:95:71:B7:64:94:A2:E9:B8:FC:23
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:ff:6b:9d:0a:3c:0c:56:f9:b0:13:6b:2d:4f:85:f5:fd:a7:
4c:85:a1:97:a1:94:54:cc:d3:95:32:19:38:70:e0:41:a3:d5:
d9:fc:ef:53:e1:7c:aa:4c:81:02:67:b6:d7:a6:56:0f:28:50:
da:66:94:69:62:9e:33:6a:c4:81:3c:36:73:8e:5d:61:99:5a:
11:37:b8:e7:b8:f3:7b:3f:92:34:1f:70:a9:1d:09:19:e2:45:
9d:aa:09:7d:07:7f:76:79:ca:7d:ec:26:ee:61:2e:0b:6f:42:
29:70:8a:d9:08:ed:e8:a8:ff:35:b4:d6:4f:75:56:32:8d:d2:
93:73:67:61:c4:7a:f5:9f:36:ac:05:7d:d5:8d:b8:c2:02:4d:
16:e5:ae:ab:62:b1:1c:76:82:4b:82:a7:03:fb:ed:df:fb:99:
27:7d:ed:1a:bd:7f:ed:a2:19:f9:38:a6:ef:1a:89:73:a0:04:
f4:32:13:eb:26:65:03:77:76:71:32:be:33:86:b4:51:97:4e:
44:33:57:f2:63:aa:4d:e7:58:92:cf:f5:fd:36:a4:0b:f5:e7:
ac:27:ec:39:b7:5e:d5:04:17:63:68:8a:69:17:fc:b4:1a:44:
38:2c:b2:c3:47:bc:8a:61:2f:f1:93:b6:64:6a:af:81:3c:23:
3a:4c:02:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 17:01:56 2025 by rpki-client