Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
File: TnzINx7SS6z2esqLkCzucGr8Yks.mft (raw, json)
Hash identifier: PJ/RALXTIaoMADgJuRF8kKrfj+Qy9NbTZVfuZd/vNzY=
Subject key identifier: 8F:11:FC:70:CA:4A:82:FD:68:48:64:5B:D9:6F:36:E8:E1:43:64:91
Authority key identifier: 4E:7C:C8:37:1E:D2:4B:AC:F6:7A:CA:8B:90:2C:EE:70:6A:FC:62:4B
Certificate issuer: /CN=4e7cc8371ed24bacf67aca8b902cee706afc624b
Certificate serial: 01974AB1CC4296747D2F63C6EA716F127D87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 14:00:55 +0000
Manifest this update: Sat 07 Jun 2025 14:00:55 +0000
Manifest next update: Sun 08 Jun 2025 14:00:55 +0000
Files and hashes: 1: AFXKRWkq4CEJ7e_q_TT8oCKNDgs.roa (hash: vvcSpEWzby7j1iGxx2OT88XWdiMYKYH4weh98eM4dfY=)
2: TnzINx7SS6z2esqLkCzucGr8Yks.crl (hash: znYQa1VU8koPOyuQlQvYtjkBQK/ODca6SNnsOHMOmZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 14:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:cc:42:96:74:7d:2f:63:c6:ea:71:6f:12:7d:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e7cc8371ed24bacf67aca8b902cee706afc624b
Validity
Not Before: Jun 7 14:00:55 2025 GMT
Not After : Jun 8 14:00:55 2025 GMT
Subject: CN=8f11fc70ca4a82fd6848645bd96f36e8e1436491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9f:56:44:d4:70:b6:17:c9:35:b5:11:7c:9c:
e0:b8:34:ab:92:dc:ff:6d:60:12:2f:bf:3b:cd:53:
f2:c0:5d:86:e0:32:02:0d:ad:84:d7:91:6d:8e:9f:
d2:e4:65:a6:19:14:d9:62:1f:97:bf:01:70:ba:7b:
5b:41:e3:68:95:8a:b9:c8:c6:00:9f:cc:a3:ac:89:
83:cf:42:8a:7d:75:a7:3d:13:74:b3:f4:68:b5:77:
1a:a7:91:98:c2:8c:18:a0:44:49:86:87:a4:b0:f6:
c8:38:10:a5:45:c2:94:94:4d:fe:e9:b9:22:c5:61:
4d:51:3a:df:7a:ad:50:67:22:5e:e4:9e:fa:01:6f:
ac:43:4d:f9:ef:5a:11:75:83:76:1b:41:2e:fd:4e:
8c:aa:33:e7:83:e6:fa:e2:58:18:24:0b:63:ec:37:
bd:72:2b:25:3a:a7:85:91:50:96:ee:e3:ad:7d:77:
ff:52:0a:1f:38:ba:af:68:c0:42:49:aa:76:fe:35:
80:56:8c:03:a5:f8:ab:08:73:f9:7d:82:74:fa:75:
73:e1:93:de:a3:ac:a0:54:1f:50:c6:b5:71:1a:c4:
99:90:ba:e2:b8:63:2d:30:ac:47:a2:76:68:a9:95:
b5:c7:1c:a0:34:18:0e:05:03:08:38:73:1b:48:c3:
7f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:11:FC:70:CA:4A:82:FD:68:48:64:5B:D9:6F:36:E8:E1:43:64:91
X509v3 Authority Key Identifier:
keyid:4E:7C:C8:37:1E:D2:4B:AC:F6:7A:CA:8B:90:2C:EE:70:6A:FC:62:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:3e:73:dc:01:26:99:ef:4c:5e:cc:82:6a:d5:ec:42:79:2d:
5c:1e:96:b1:94:fc:c5:17:96:53:36:f1:b2:3f:0f:5f:9d:ed:
6d:2b:d6:4c:07:25:e2:86:a0:bf:e5:b7:17:e1:60:59:9e:c9:
73:ae:aa:41:b5:be:9a:05:81:4f:39:80:7f:f2:4a:3b:fc:72:
aa:dc:9f:2f:b6:47:e0:30:24:79:27:49:df:13:62:cd:d0:2f:
b2:ca:2e:37:12:34:b3:20:05:63:ba:08:8e:10:55:f4:7c:a6:
b6:45:78:c4:29:32:19:49:44:8d:f8:1d:1e:a4:fa:27:92:7d:
3f:9f:77:90:bf:ad:eb:9a:b3:ea:82:0e:9d:61:3b:49:d7:a5:
2b:b8:3a:3b:1c:f9:fb:a0:6a:56:48:7e:e7:3c:91:50:5f:f9:
8a:d7:10:06:14:f4:a2:bd:38:90:51:f6:9a:ca:a3:64:7e:4e:
4c:5a:33:52:38:8e:36:63:8a:b6:a1:93:d8:5d:06:7c:8a:6f:
a2:2f:0b:64:6e:f5:9a:fe:8e:d5:36:df:a1:dc:66:92:a8:aa:
0e:81:bf:c7:71:bd:d3:3f:82:3e:80:bb:96:e0:77:d2:84:8c:
c5:52:1d:17:f8:d4:29:ee:f8:5a:01:d8:3a:73:00:85:52:5b:
5f:aa:56:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:25:29 2025 by rpki-client