Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
File: tFmZiZ920uLkzN_IF_mHnPrAa74.mft (raw, json)
Hash identifier: NLLPKVRmrSBYo1x9t6WxzqiWqfsSAvxVhcQ2/uI/CV8=
Subject key identifier: 70:C5:DC:F3:32:6B:D7:08:48:58:2F:67:59:44:5E:9B:FB:A7:24:B5
Authority key identifier: B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE
Certificate issuer: /CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe
Certificate serial: 0197488D519D18E2BADDDC5C6BDB8E41EDA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
Manifest number: 0E37
Signing time: Sat 07 Jun 2025 04:01:50 +0000
Manifest this update: Sat 07 Jun 2025 04:01:50 +0000
Manifest next update: Sun 08 Jun 2025 04:01:50 +0000
Files and hashes: 1: tFmZiZ920uLkzN_IF_mHnPrAa74.crl (hash: OymJxT45UcKhSgJtCyE0x6DGQVWCgy9miJqwtuLo0oA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8d:51:9d:18:e2:ba:dd:dc:5c:6b:db:8e:41:ed:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45999899f76d2e2e4ccdfc817f9879cfac06bbe
Validity
Not Before: Jun 7 04:01:50 2025 GMT
Not After : Jun 8 04:01:50 2025 GMT
Subject: CN=70c5dcf3326bd70848582f6759445e9bfba724b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:88:bf:1b:f7:8e:61:43:80:3c:67:69:2c:35:
e9:2a:fd:92:00:ef:dd:0a:75:c7:71:6f:58:f7:03:
ce:11:f7:7e:d0:c3:b1:95:0c:ca:6d:f2:88:a6:ca:
06:a4:30:43:34:db:9a:2a:18:24:b0:04:1c:f4:a5:
7d:68:31:0e:2e:28:83:ed:06:28:5b:61:8a:8f:88:
40:04:b8:77:f3:df:c2:74:43:6a:4e:63:57:e8:06:
16:df:ef:fd:c6:53:53:dd:12:cf:1d:a5:7b:02:a8:
cc:70:e9:51:79:61:4d:78:22:a8:4b:57:d5:29:6f:
e7:81:f2:c2:0f:93:9b:90:d9:aa:9b:d7:4b:35:01:
2a:85:a2:bb:99:45:c0:97:de:eb:3d:6a:42:75:27:
61:4d:84:3d:66:7b:02:d7:3f:1f:65:86:68:fd:e4:
ec:8c:3c:a6:bb:27:4d:ac:55:c2:32:66:fe:de:a9:
cb:5d:c5:08:dc:a9:a6:ff:f3:41:c9:f0:8b:dc:ad:
2e:f6:89:c8:9c:3a:8f:0e:ee:af:60:71:c9:d7:ee:
5b:77:81:b3:3c:3b:0f:9f:5f:7d:2b:97:f0:c1:2c:
ca:68:4a:97:9f:fd:e0:61:7a:71:55:d2:fd:4d:c0:
0c:94:5e:3b:a7:28:79:76:0c:33:0b:35:52:5f:bc:
3f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C5:DC:F3:32:6B:D7:08:48:58:2F:67:59:44:5E:9B:FB:A7:24:B5
X509v3 Authority Key Identifier:
keyid:B4:59:99:89:9F:76:D2:E2:E4:CC:DF:C8:17:F9:87:9C:FA:C0:6B:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFmZiZ920uLkzN_IF_mHnPrAa74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb7b21-335c-42ca-859e-73428f9c7bff/1/tFmZiZ920uLkzN_IF_mHnPrAa74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:c2:69:80:36:19:21:03:d2:28:8c:cc:20:fa:ba:5c:79:3f:
ca:2c:23:11:9c:b8:97:8a:b3:26:df:a3:b8:c4:2d:75:f6:ec:
53:a2:77:0b:59:75:51:77:ac:df:b9:09:0d:69:44:d0:94:94:
4e:2c:fb:cc:19:08:31:a3:c2:65:8e:62:a3:1f:b2:df:58:64:
7b:c9:c8:a9:de:dd:12:13:9f:10:0a:c2:3b:ad:e5:91:16:64:
9f:4b:bf:f0:a3:6b:10:20:cf:2a:eb:89:9a:96:46:82:36:60:
82:ef:dd:9d:da:f1:52:ea:d2:1d:2e:3c:6a:91:86:95:92:56:
fe:a3:25:e0:a0:e1:91:5d:c5:df:d3:cc:ef:8f:b2:41:6f:65:
a5:5b:22:c9:50:2e:10:67:c1:35:bf:93:41:0c:08:91:84:91:
f2:48:24:74:70:72:cd:54:d7:ae:56:e3:2b:49:f7:55:5d:f5:
0d:a2:92:b0:0b:9e:a3:38:fa:a9:e3:44:20:be:4e:95:8b:af:
98:25:08:09:ec:86:cf:7a:cd:8a:5e:46:1e:f4:b1:12:de:c5:
ce:07:f5:ea:be:bd:2f:14:84:54:41:72:74:40:f6:9a:f8:49:
82:01:11:13:b3:57:98:82:2e:50:4f:c1:31:87:16:b6:aa:c9:
eb:c4:40:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:02:23 2025 by rpki-client