Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
File: tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft (raw, json)
Hash identifier: 9KBtPk2LSwASxD4lnW0S8QZYhB6HRyCwGd1AdkUSrlc=
Subject key identifier: D5:E0:76:03:3C:D1:54:78:73:57:24:BB:EA:C9:24:EE:39:FF:55:2E
Authority key identifier: B5:7C:8A:C0:55:C5:74:D8:CF:13:52:2B:96:4B:92:31:4D:21:1E:AE
Certificate issuer: /CN=b57c8ac055c574d8cf13522b964b92314d211eae
Certificate serial: 01974D446B52987A6E1E61AC5B17E792DD1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
Manifest number: 12CB
Signing time: Sun 08 Jun 2025 02:00:18 +0000
Manifest this update: Sun 08 Jun 2025 02:00:18 +0000
Manifest next update: Mon 09 Jun 2025 02:00:18 +0000
Files and hashes: 1: tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl (hash: cXtW8z0zR1J+pSr0NZFrtWfwFqPdzUe+88CRudCmUEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 02:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:44:6b:52:98:7a:6e:1e:61:ac:5b:17:e7:92:dd:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b57c8ac055c574d8cf13522b964b92314d211eae
Validity
Not Before: Jun 8 02:00:18 2025 GMT
Not After : Jun 9 02:00:18 2025 GMT
Subject: CN=d5e076033cd15478735724bbeac924ee39ff552e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a9:01:08:fa:6b:11:4e:d1:05:ab:2e:36:91:
2e:95:e5:42:93:09:f2:d0:6d:25:82:95:43:37:7b:
aa:70:52:c4:91:fd:3b:60:9a:06:18:b6:c1:e1:c4:
d4:4f:0f:20:55:58:33:06:7c:71:bd:4c:24:08:b1:
e7:54:97:31:fa:10:35:a1:07:5b:e0:1f:18:a7:a0:
26:9a:d2:a9:6b:80:1c:3b:80:12:00:af:df:4b:f4:
80:7a:57:a3:ff:96:19:86:58:21:1a:1e:cb:8d:cd:
f0:45:3c:10:98:b7:49:c3:1a:3a:57:b1:c6:79:f0:
93:c4:a3:eb:8b:b9:02:7a:c7:12:31:75:af:dc:b9:
6c:cd:a9:f5:ae:52:32:d7:ba:f2:58:c5:ae:c9:7f:
e4:fb:c0:aa:5c:ae:5d:7a:54:9f:5d:9f:49:77:fd:
59:58:3a:5f:38:31:ad:24:4a:42:bb:ed:d3:87:19:
ab:4b:ac:08:31:36:6f:d0:4e:c8:ff:35:98:76:bc:
0a:6e:22:de:be:82:7f:b1:fc:5d:99:aa:37:81:9d:
5a:fd:37:6c:b8:87:14:61:3d:6d:af:6a:39:12:06:
2c:00:69:5d:23:2f:38:c5:f4:e1:44:ed:c4:dd:56:
71:85:ca:2b:24:29:d0:2a:3b:f7:a8:dd:47:c8:09:
7e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E0:76:03:3C:D1:54:78:73:57:24:BB:EA:C9:24:EE:39:FF:55:2E
X509v3 Authority Key Identifier:
keyid:B5:7C:8A:C0:55:C5:74:D8:CF:13:52:2B:96:4B:92:31:4D:21:1E:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:40:ad:dd:e4:55:52:6b:cc:19:35:73:90:c0:31:b0:42:59:
48:69:95:a9:9a:3d:32:ac:39:a9:77:97:58:75:44:4d:e8:25:
1a:57:aa:c2:23:36:ad:ba:c3:81:11:45:f4:1c:99:5d:2a:92:
0f:fe:c2:c0:3e:21:45:96:74:92:94:4e:76:ca:3b:7a:f4:51:
03:6f:d4:32:7d:43:3f:66:0c:66:a8:37:27:ad:33:57:85:8c:
2e:48:2e:05:ee:60:be:f6:55:25:f8:7b:6d:17:24:ee:ee:7c:
1c:65:49:b8:7d:a4:fe:e2:85:a8:86:5d:25:0e:ef:b8:30:88:
83:a2:77:2d:3e:f0:8b:f0:80:a6:0b:aa:ef:17:85:a6:89:4f:
e0:57:52:c7:89:99:59:d2:0f:f5:7e:41:08:a3:fd:43:8a:be:
2d:9d:7c:3d:b8:1b:d3:1d:b2:15:44:83:3a:48:17:ef:d7:f8:
4b:5c:5a:8e:ef:6e:81:4f:b6:9d:3e:77:cb:91:88:7b:e7:76:
63:a2:5c:0c:6d:5d:ef:7a:dd:c6:28:e1:2e:50:ef:d8:ca:69:
96:b6:ae:9f:a9:b5:55:ad:1f:0c:2c:15:3b:8d:af:6c:3c:4c:
86:28:b2:a7:5f:27:63:3f:5c:c9:a3:0c:c6:96:2d:59:aa:d7:
24:97:29:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:16:11 2025 by rpki-client