Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/6eeb5c-d251-470a-a7cd-318362004e8a/1/Tm32g40DOAFB635O5V3AXYcGHck.mft
File: Tm32g40DOAFB635O5V3AXYcGHck.mft (raw, json)
Hash identifier: nvGhp0dLzynVDI3hgGB+ZX8o+WMqSsQ+gcR703zFY9E=
Subject key identifier: C1:FF:15:CD:55:56:16:06:58:74:B8:FD:85:D1:D9:A6:7A:FC:4A:2A
Authority key identifier: 4E:6D:F6:83:8D:03:38:01:41:EB:7E:4E:E5:5D:C0:5D:87:06:1D:C9
Certificate issuer: /CN=4e6df6838d03380141eb7e4ee55dc05d87061dc9
Certificate serial: 01974EFC3E475F36E953A27512120EAAE72F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tm32g40DOAFB635O5V3AXYcGHck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/6eeb5c-d251-470a-a7cd-318362004e8a/1/Tm32g40DOAFB635O5V3AXYcGHck.mft
Manifest number: 0FCD
Signing time: Sun 08 Jun 2025 10:00:43 +0000
Manifest this update: Sun 08 Jun 2025 10:00:43 +0000
Manifest next update: Mon 09 Jun 2025 10:00:43 +0000
Files and hashes: 1: 6zGLvq4k5vmzCBWK5uxpgKx-SpM.roa (hash: d72RjXOy3TrPnzNgu1Y/cwJXn9F8xvKoAfaZ+LW3oR4=)
2: Tm32g40DOAFB635O5V3AXYcGHck.crl (hash: xUNnp1qSEfOl6Sc7lnowCFTjUSr5ckuQgIr3bYPJClw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/6eeb5c-d251-470a-a7cd-318362004e8a/1/Tm32g40DOAFB635O5V3AXYcGHck.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/6eeb5c-d251-470a-a7cd-318362004e8a/1/Tm32g40DOAFB635O5V3AXYcGHck.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tm32g40DOAFB635O5V3AXYcGHck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:fc:3e:47:5f:36:e9:53:a2:75:12:12:0e:aa:e7:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e6df6838d03380141eb7e4ee55dc05d87061dc9
Validity
Not Before: Jun 8 10:00:43 2025 GMT
Not After : Jun 9 10:00:43 2025 GMT
Subject: CN=c1ff15cd555616065874b8fd85d1d9a67afc4a2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:62:93:c5:ce:d1:dd:c7:6a:74:2a:95:91:e8:
c8:fa:ae:36:69:6b:a8:95:a4:70:73:90:c5:38:4b:
df:f0:c3:84:a5:f3:d5:99:5f:51:f7:b0:c3:d9:fe:
cc:5c:97:e8:07:19:e8:23:64:b8:7e:2b:cf:d4:0f:
7c:04:d9:10:a2:a5:b9:7d:9f:ab:11:f2:49:db:8e:
e1:fc:46:47:b2:0f:f6:dc:9f:29:dd:c3:82:32:28:
70:bf:71:61:2e:9e:67:b4:5c:43:d3:8e:e6:de:84:
d0:75:e3:e9:c3:3e:16:d1:e2:72:18:a0:b5:10:78:
97:f4:bb:cc:2c:83:1e:80:1d:7c:41:9e:33:a6:dd:
52:f9:ae:a0:d3:31:6a:7a:b1:0b:21:35:aa:cb:bb:
a8:d7:d8:70:af:a1:db:ef:be:ff:58:c5:c7:56:29:
08:b4:fb:23:89:ee:97:88:34:bb:1d:87:53:07:40:
5a:6c:4b:c9:01:66:f7:d5:19:0a:89:ef:b9:c3:eb:
d3:fe:7e:bd:9c:ce:f7:81:8a:99:92:e6:59:a0:b9:
95:a3:6d:10:b5:ff:ff:41:b0:f1:97:4e:1f:0c:3e:
56:55:1b:83:c8:6a:ca:a7:f0:c3:a8:57:1d:96:f6:
f1:07:33:be:c5:e2:e3:15:07:a1:00:fa:eb:2d:e8:
f5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:FF:15:CD:55:56:16:06:58:74:B8:FD:85:D1:D9:A6:7A:FC:4A:2A
X509v3 Authority Key Identifier:
keyid:4E:6D:F6:83:8D:03:38:01:41:EB:7E:4E:E5:5D:C0:5D:87:06:1D:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tm32g40DOAFB635O5V3AXYcGHck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/6eeb5c-d251-470a-a7cd-318362004e8a/1/Tm32g40DOAFB635O5V3AXYcGHck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/6eeb5c-d251-470a-a7cd-318362004e8a/1/Tm32g40DOAFB635O5V3AXYcGHck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:cf:1e:09:5e:c3:b3:fa:d2:49:28:d0:21:16:8d:d1:d5:82:
94:f9:93:ed:2b:73:7e:1a:78:5e:9d:e4:ef:17:9f:70:a0:1f:
98:d9:91:22:8a:c8:74:8e:5a:c7:62:4a:b2:17:eb:77:41:7d:
17:87:a2:f0:c9:a4:40:0f:23:15:5e:87:0a:8a:81:07:d2:50:
b8:ea:46:1a:33:ef:4a:f9:04:3e:cf:0a:84:ec:24:54:a4:56:
a3:01:15:ad:e1:80:ca:78:e1:e4:df:f0:d2:fc:ac:65:8f:6b:
34:72:59:90:81:97:9c:30:be:ce:9d:65:3b:5b:d2:dc:0c:39:
d2:a5:d1:f6:c2:1d:b8:fc:11:e2:25:5f:ac:89:36:9c:a0:fd:
80:f7:34:92:01:54:d0:68:35:40:1f:4e:96:ea:66:4f:58:02:
30:90:fa:07:f7:a1:bc:f6:26:83:d9:4c:36:4d:a3:30:df:e0:
22:4e:08:d1:93:00:1e:fd:00:4d:2a:cc:6e:39:b3:1a:a2:8f:
a4:0e:18:b2:2c:c3:18:27:ae:b8:b2:5c:7d:c4:4b:fe:41:31:
66:12:93:ff:23:73:a6:5a:22:a0:3a:f4:d4:25:5d:35:71:eb:
b5:9e:47:72:91:b2:8b:c0:19:6e:39:87:e7:84:31:bd:38:64:
6d:c1:40:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 12:11:07 2025 by rpki-client