Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.mft
File: tAifhEgwV6w2RkfIChsjyXa5MBY.mft (raw, json)
Hash identifier: Om4yhIJF5ji7+5SFcqKpALdyt41MojsI2w8YMQ+tLb8=
Subject key identifier: 26:79:7A:EA:07:C6:E7:3D:24:BD:77:E8:D5:F5:84:48:95:F5:AB:CF
Authority key identifier: B4:08:9F:84:48:30:57:AC:36:46:47:C8:0A:1B:23:C9:76:B9:30:16
Certificate issuer: /CN=b4089f84483057ac364647c80a1b23c976b93016
Certificate serial: 019763956AF390FC64D6445B468404D391A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAifhEgwV6w2RkfIChsjyXa5MBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.mft
Manifest number: 158A
Signing time: Thu 12 Jun 2025 10:00:25 +0000
Manifest this update: Thu 12 Jun 2025 10:00:25 +0000
Manifest next update: Fri 13 Jun 2025 10:00:25 +0000
Files and hashes: 1: ZZlyR1qePInNwWMshU_T-zKOIRs.roa (hash: 1/uH+W7Kksp46/1+HMCQDG/zqQ+/+VqifvgRn9tMf2U=)
2: tAifhEgwV6w2RkfIChsjyXa5MBY.crl (hash: 4ihBzpUYdkC9sp/YQu4jytu/IkeVMijijuFgf39twZk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tAifhEgwV6w2RkfIChsjyXa5MBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 10:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:95:6a:f3:90:fc:64:d6:44:5b:46:84:04:d3:91:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4089f84483057ac364647c80a1b23c976b93016
Validity
Not Before: Jun 12 10:00:25 2025 GMT
Not After : Jun 13 10:00:25 2025 GMT
Subject: CN=26797aea07c6e73d24bd77e8d5f5844895f5abcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:57:6a:c0:fe:7e:15:e0:7d:0a:52:84:b2:95:
7c:06:f8:d9:9d:07:ff:f6:8d:27:6c:53:99:ba:a6:
21:67:54:72:47:e7:74:82:35:15:63:e7:33:88:67:
84:80:d1:08:dc:48:23:de:bf:48:d2:2a:bf:d9:52:
75:93:1e:ce:2b:9a:77:d1:57:e1:39:54:ce:cb:3f:
d2:55:19:6d:3a:07:88:5e:2f:2f:8e:6f:ef:e6:c8:
eb:6d:21:73:99:80:b2:fd:44:e3:97:7f:be:2a:51:
c5:ce:bc:b0:f8:d7:4d:21:98:46:87:4c:f9:96:8b:
05:25:14:d4:51:c2:28:6b:2b:91:89:b9:01:86:cf:
e5:a5:5f:fc:07:53:35:57:fd:6b:a0:73:81:86:a5:
06:f2:46:5c:79:5d:f7:e3:5f:ff:48:94:0b:03:80:
c3:d5:c3:57:d6:c6:c9:c3:cc:2b:83:d8:f2:44:e5:
f4:57:cd:0c:95:e3:4d:ce:7f:28:5d:97:5b:7c:f0:
82:9a:fb:56:8a:88:6c:d0:81:35:b0:a1:98:a9:30:
d0:b9:d7:f5:58:e6:b6:90:79:71:68:6b:72:c3:6e:
6d:36:3b:71:7b:de:3f:13:24:88:6b:b6:d2:95:a9:
7c:32:e7:e1:84:a8:f2:59:ed:5b:a5:83:53:c6:21:
f4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:79:7A:EA:07:C6:E7:3D:24:BD:77:E8:D5:F5:84:48:95:F5:AB:CF
X509v3 Authority Key Identifier:
keyid:B4:08:9F:84:48:30:57:AC:36:46:47:C8:0A:1B:23:C9:76:B9:30:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAifhEgwV6w2RkfIChsjyXa5MBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:2c:49:f5:26:54:27:82:3a:9f:94:9f:ab:81:c0:24:76:af:
e5:22:03:9b:df:37:9f:62:25:f2:8b:c6:1f:16:a4:85:51:a6:
2e:90:f8:87:f1:13:47:09:32:2c:be:3d:f0:63:83:15:46:1e:
20:81:2e:99:3f:0f:eb:c1:c8:27:52:23:39:69:d1:f2:f8:c8:
49:80:27:c5:cb:d7:3f:88:63:d1:9d:6b:d5:76:32:0f:a9:5b:
d4:c3:41:5b:54:ad:98:be:67:95:9b:2a:ac:81:44:c4:70:f6:
ea:2f:43:dc:7e:00:9a:24:b5:53:8e:da:63:09:0d:4e:46:55:
29:30:15:4c:3a:d7:07:f2:e7:a2:74:5f:16:cb:73:e3:be:a0:
52:e6:91:99:39:7d:54:f3:03:98:7c:ad:4e:48:22:39:ef:af:
d8:7b:2e:93:05:22:0d:1f:da:a6:8b:da:00:93:be:53:1e:d4:
36:9d:1f:c0:f5:1e:20:25:30:df:bf:41:5a:f1:87:19:06:22:
b0:88:28:3d:c4:63:13:bb:e4:7a:aa:78:de:c6:58:04:8a:e8:
43:12:0b:11:c1:48:58:fc:41:45:22:18:21:32:1b:3a:23:50:
e7:8b:8c:cf:6d:9e:2b:2b:d4:06:34:43:aa:e1:4b:09:ec:b0:
0b:80:8b:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 19:17:31 2025 by rpki-client