Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: vyrHzqbnV/W+nZXpEJMY/1ZILy5jQoteP0SgUy2HMVk=
Subject key identifier: 99:F4:1F:86:C0:9D:9E:3D:1F:AB:56:C3:3B:40:3A:34:63:55:DD:B6
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 0197D99A43004808E417B404BCA4CC7BABB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 15CB
Signing time: Sat 05 Jul 2025 08:00:54 +0000
Manifest this update: Sat 05 Jul 2025 08:00:54 +0000
Manifest next update: Sun 06 Jul 2025 08:00:54 +0000
Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=)
2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=)
3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: 4dHNZNby+ws6GFpdSAzdALILfP5UO7vbw1WmCudLV7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Jul 2025 08:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d9:9a:43:00:48:08:e4:17:b4:04:bc:a4:cc:7b:ab:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jul 5 08:00:54 2025 GMT
Not After : Jul 6 08:00:54 2025 GMT
Subject: CN=99f41f86c09d9e3d1fab56c33b403a346355ddb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:76:66:7d:b2:a9:c3:d6:3e:85:5a:fb:df:91:
44:db:f7:b2:2c:83:ec:c1:c9:8f:e0:1c:f7:f1:63:
66:8e:27:23:19:9d:0a:1b:9f:ca:72:2f:4f:67:e9:
cf:1b:40:71:15:c0:51:5e:95:40:37:8c:93:4c:77:
ea:00:24:dd:e5:79:0a:38:b5:48:73:f3:7d:a2:6d:
9e:2a:0b:ff:b6:e6:e1:f9:ae:ca:02:d2:91:7f:71:
f8:5f:e2:62:fa:dd:70:ae:9d:12:3e:fc:ba:d0:df:
7f:1a:5b:14:55:40:21:b7:90:b1:25:ec:0e:85:73:
4b:e2:2c:b2:8d:f8:47:46:53:a2:fd:0a:17:1b:ce:
53:b0:67:14:0b:82:0d:ef:51:e8:3c:91:b9:6a:ab:
1e:2f:d0:ec:d9:c7:ec:bc:ec:33:a3:53:da:17:d3:
ac:c5:2d:7b:7d:85:f5:47:71:28:f6:d0:e7:80:b5:
f8:08:c3:3c:4d:68:e4:f6:e0:1c:be:c4:2e:4f:1c:
7c:b2:04:09:e5:95:28:f0:74:b0:10:e6:ca:a1:5e:
e6:43:5f:ce:06:81:93:ee:3f:27:9b:12:79:cc:e2:
2b:d8:a8:14:e8:5f:d0:54:2d:2e:d7:2f:84:43:aa:
7f:1c:cf:16:44:c3:b7:ae:4a:16:25:f6:bb:5c:9b:
b1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:F4:1F:86:C0:9D:9E:3D:1F:AB:56:C3:3B:40:3A:34:63:55:DD:B6
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:37:b6:44:d2:77:40:ad:80:0e:38:d3:79:f7:a9:c3:94:cb:
8a:bd:ee:e5:b7:e0:39:ed:ba:6e:f7:74:e5:99:5a:5b:59:25:
3f:48:6e:d6:01:d0:e0:97:96:d1:63:51:3d:d8:7f:46:77:88:
10:ac:7c:80:be:23:28:6b:24:80:52:ce:7e:45:f4:de:ff:dd:
ad:cb:f4:83:66:c2:9e:13:be:54:9f:c9:30:3a:83:81:50:ae:
d0:12:fc:f8:38:97:f2:9f:6f:46:73:28:f7:4f:f4:90:ef:03:
5f:79:9b:64:67:e4:1c:cd:24:36:a4:11:f4:fd:71:8f:02:50:
cc:44:25:b9:e8:10:a1:b9:f9:26:a7:1b:d4:c4:15:0b:0b:e3:
32:03:18:31:59:38:f7:58:23:b0:39:37:22:70:9b:37:a4:7a:
59:8c:37:4e:56:e9:65:12:7f:34:20:0d:47:b2:28:7e:9e:cf:
3e:6c:5b:da:d6:15:41:f3:2c:c3:af:e5:5a:16:14:9e:a7:02:
a2:4f:e1:a5:b8:88:50:53:c0:ca:2c:e7:a3:d7:c4:da:e6:59:
ae:ec:05:97:3c:e9:81:d4:92:48:5e:9f:bd:f4:54:7e:0b:da:
00:dc:13:1e:fa:9c:50:36:b8:ca:12:5c:c5:4c:e7:bd:df:4e:
4e:f1:89:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 18:09:33 2025 by rpki-client