Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
File: TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft (raw, json)
Hash identifier: TUaqAQ7HgspZcC5YDGXfSS1e8P3hFxITXJ8fLmvyqlw=
Subject key identifier: F5:CB:5B:43:12:5A:17:13:11:E5:9A:14:31:CB:ED:97:DD:0F:B0:D2
Authority key identifier: 4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
Certificate issuer: /CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Certificate serial: 019750EA71B5F5E5337DEA3F51EBA942C244
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
Manifest number: 1582
Signing time: Sun 08 Jun 2025 19:00:31 +0000
Manifest this update: Sun 08 Jun 2025 19:00:31 +0000
Manifest next update: Mon 09 Jun 2025 19:00:31 +0000
Files and hashes: 1: TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl (hash: D0LQmNBjrWdREe5sgwV+yOpm9/uJVCs3r2FEj2My3wA=)
2: bs1HYE5HpmfRDe1IWRWlAw4_YbQ.roa (hash: /9wCX+4PJTuFTnMcFlhOot3PdJrbFSkbu3ySPd314JY=)
3: kvulLtgS7l9j5cL5cr_z1UEgt1M.roa (hash: lwycUBIUeNB/fogCEgMYVAepQLASER5k8Ye40EXBAoI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 19:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:ea:71:b5:f5:e5:33:7d:ea:3f:51:eb:a9:42:c2:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Validity
Not Before: Jun 8 19:00:31 2025 GMT
Not After : Jun 9 19:00:31 2025 GMT
Subject: CN=f5cb5b43125a171311e59a1431cbed97dd0fb0d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:96:60:73:4a:cf:f3:2e:30:62:de:ad:98:3f:
99:43:ca:c1:34:b0:e4:0a:b2:d4:51:bf:66:3a:5d:
c2:57:84:8c:22:e7:0f:ea:05:8f:3f:c3:10:1d:b1:
7c:a3:33:12:12:1b:98:08:7b:bd:1a:2f:52:e4:4c:
05:fd:b1:ee:7c:88:3b:c8:7d:50:d7:f9:b5:05:13:
d3:89:5c:6b:31:50:72:42:0d:85:47:2a:b6:f8:b2:
12:14:be:5b:5d:be:1e:7a:2e:1e:f1:39:f7:5a:55:
01:8b:14:87:9a:5c:1b:c9:54:e0:64:c8:45:ad:4f:
80:39:cd:58:e0:ce:fb:54:b1:da:51:60:b8:1a:08:
4c:ba:4a:6b:69:b1:92:b2:bd:84:eb:0c:53:e1:55:
13:be:94:20:6b:5a:5d:4b:21:7e:ed:d1:fd:b1:6d:
14:41:a9:13:d3:d9:da:9a:56:57:e7:17:5d:7b:ea:
ca:5d:6f:15:db:78:11:2b:dd:e9:e3:80:1d:28:36:
c4:cb:a3:7e:db:de:05:47:ee:67:29:0c:fb:01:5a:
f1:2b:f2:ab:c5:9a:47:93:e9:c6:70:37:fe:ae:24:
8f:fe:92:fb:48:2b:a5:b8:71:de:29:fb:ee:72:b1:
0b:dc:90:b7:5b:4c:13:2b:a0:e4:0f:ba:b4:96:78:
e0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:CB:5B:43:12:5A:17:13:11:E5:9A:14:31:CB:ED:97:DD:0F:B0:D2
X509v3 Authority Key Identifier:
keyid:4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:df:04:5f:3c:5e:54:0f:8e:af:4a:9d:b1:be:da:74:fb:db:
2c:84:f6:10:c6:91:30:a5:e5:d3:7d:45:53:a9:bb:dd:01:3a:
33:46:6e:0b:a6:63:14:57:f5:e6:66:cf:9e:c8:67:29:20:41:
04:d9:76:64:1d:f9:99:45:b9:50:e7:87:70:af:5c:8c:a3:1c:
21:45:5b:b2:c8:31:00:37:71:b7:b0:3d:3a:17:fb:b7:7f:d4:
c1:13:60:31:de:35:c8:54:25:b5:71:74:7c:86:c6:4d:b9:01:
d2:2b:6b:03:69:2b:a4:cb:98:d3:17:d2:31:37:ef:34:c4:9a:
2f:44:48:e1:6a:8f:61:7f:dc:70:1a:d1:e9:79:83:ea:15:b4:
75:01:61:fe:f4:e7:8d:f8:b8:d2:fe:d6:9e:7b:de:31:f5:38:
d0:49:99:d0:bd:04:f9:98:f3:cd:ab:a5:6b:d8:b3:a2:d6:fc:
d7:09:4d:59:a5:82:a9:2e:a5:4a:e8:97:2b:5d:99:04:ae:5b:
c0:a2:75:36:7c:70:df:d6:82:cb:bb:3f:5e:6d:00:05:9b:bf:
93:fc:f2:f4:99:97:0b:60:46:93:03:e6:3e:07:0e:ff:dd:4d:
04:5c:cf:fd:63:d1:3d:6f:fd:8b:e8:ec:27:d8:f6:08:1c:c1:
9b:d6:07:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 04:53:09 2025 by rpki-client