Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
File: TRYkCJewEwVoHJQl_lI_WPqydBU.mft (raw, json)
Hash identifier: kxMKHGaNvErYvtnO5WpycRst+ImbjPXkM9u/80akcx8=
Subject key identifier: 52:CB:0E:A8:9B:B5:0D:E5:39:A8:DB:0D:B1:0A:84:30:AF:0A:A8:6A
Authority key identifier: 4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15
Certificate issuer: /CN=4d16240897b01305681c9425fe523f58fab27415
Certificate serial: 019748FA61E65698DF459FDE284BE9129DBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 06:00:57 +0000
Manifest this update: Sat 07 Jun 2025 06:00:57 +0000
Manifest next update: Sun 08 Jun 2025 06:00:57 +0000
Files and hashes: 1: L587eFkH5wYc14IkuF8E7of-x9o.roa (hash: qZjZeJL5jZ5Dikm84ADOgn1QShjJOm5n3wbg8yoD9PY=)
2: TRYkCJewEwVoHJQl_lI_WPqydBU.crl (hash: qhDauNtNCo+nGzBSpxlOMXhGMyXmJIOHXWjvcKv9ZAg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:61:e6:56:98:df:45:9f:de:28:4b:e9:12:9d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d16240897b01305681c9425fe523f58fab27415
Validity
Not Before: Jun 7 06:00:57 2025 GMT
Not After : Jun 8 06:00:57 2025 GMT
Subject: CN=52cb0ea89bb50de539a8db0db10a8430af0aa86a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:68:c4:d4:8d:f3:f3:bd:22:b1:b4:6e:d7:f4:
10:2a:32:ec:34:73:b1:31:a3:b1:65:85:a4:83:11:
f2:08:51:d7:fa:f5:b6:bf:9d:77:e7:4b:17:29:53:
b3:ca:f4:74:19:5d:4d:f0:c7:02:f3:f2:8d:ad:4d:
c2:61:e4:4f:9a:81:3c:7d:15:0c:a5:39:ad:98:8a:
39:31:12:10:fb:1a:96:f1:41:ee:1c:ea:77:39:ae:
93:cd:0f:43:e6:35:61:ed:f9:6a:0f:c0:5b:b7:a8:
af:68:b5:bd:b2:13:14:e6:16:bf:c3:81:ab:a0:11:
b2:6a:46:11:1f:89:98:e2:87:68:8d:f8:29:44:cf:
b7:13:c5:69:43:5b:6d:5e:36:73:d1:6b:cb:a8:53:
1a:37:fc:68:bf:b0:31:7d:28:8e:ca:e1:9e:ad:de:
05:1f:7d:76:31:f5:bc:66:84:fa:d8:67:a7:f9:9b:
15:ea:92:8c:00:15:5e:1c:51:f1:2a:3c:a6:80:ce:
9f:68:9d:cd:c7:aa:3c:4f:78:db:e3:4e:e6:24:f2:
74:d2:66:bb:b8:cc:8b:8a:86:14:2b:12:69:62:a8:
b0:79:c6:32:b3:9e:fe:d1:3f:cc:5a:7e:09:44:d9:
f6:55:a1:2a:7f:f4:da:1b:08:b6:f3:cc:7a:d2:98:
50:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:CB:0E:A8:9B:B5:0D:E5:39:A8:DB:0D:B1:0A:84:30:AF:0A:A8:6A
X509v3 Authority Key Identifier:
keyid:4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:7e:a5:02:22:59:e5:81:72:59:5b:3a:90:9f:dc:99:a6:08:
25:f1:b9:71:59:1f:6a:38:20:33:8f:60:3c:5f:1e:d1:63:03:
a3:ef:ad:53:53:7c:01:d4:21:a7:1b:cb:9d:5c:04:3e:f7:2a:
73:1c:80:03:d2:a0:27:d1:6a:9a:f8:bc:f7:5f:ae:08:08:da:
15:41:f3:1a:6f:f2:c5:07:dc:cb:1f:d3:7c:69:20:71:9b:dd:
30:1c:45:f2:37:6d:9a:02:e2:0b:c8:bf:42:5e:8d:9f:09:b9:
11:1f:72:21:bd:04:ed:5d:5f:5c:8a:92:5c:b8:e7:bf:08:c0:
7f:2a:7d:43:29:84:e3:14:ad:a9:d5:91:39:71:d8:51:e2:c2:
1f:84:2e:51:6d:2f:51:34:5b:c5:a4:c1:97:90:cc:d9:65:1a:
4b:c5:42:e7:7d:d4:b5:be:55:37:30:71:93:02:ef:62:bd:f3:
aa:40:f9:cb:8e:42:03:da:10:41:1b:20:bf:80:1f:cd:26:0c:
1a:ae:2a:05:a9:f6:b2:7c:e4:84:5d:77:ba:2a:a9:f8:1e:7a:
88:cf:a3:ab:69:72:d1:dc:8d:e6:ec:c9:df:a7:6c:de:6e:89:
39:de:f3:5b:d0:a6:d1:aa:2a:91:39:4a:35:39:1a:46:dd:af:
37:34:99:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:44:13 2025 by rpki-client