Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
File: tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft (raw, json)
Hash identifier: 4Or1ySHzhqbdMpxZEvheCs5SIl8J6TP33qXz/7rnZFw=
Subject key identifier: 4D:51:8D:DD:BB:E5:0A:75:4F:65:EE:50:56:C4:98:CA:A2:E4:1D:41
Authority key identifier: B4:63:20:18:80:98:52:0C:36:62:77:F7:49:A4:F7:7A:1D:44:44:39
Certificate issuer: /CN=b46320188098520c366277f749a4f77a1d444439
Certificate serial: 01974A43B08286E9592E064FBE724332D62F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tGMgGICYUgw2Ynf3SaT3eh1ERDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 12:00:39 +0000
Manifest this update: Sat 07 Jun 2025 12:00:39 +0000
Manifest next update: Sun 08 Jun 2025 12:00:39 +0000
Files and hashes: 1: 1c-Abo0LxBVDDE4sBrG9JS_ePzI.roa (hash: rxDs0I1CVbIWmreeYb6ePZfwtg9Spev7LU71wCrsp/4=)
2: tGMgGICYUgw2Ynf3SaT3eh1ERDk.crl (hash: Fp1qLTfGmeHZjFyNWqEtvtd204GXf67/GAkHhdEohCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tGMgGICYUgw2Ynf3SaT3eh1ERDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:b0:82:86:e9:59:2e:06:4f:be:72:43:32:d6:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b46320188098520c366277f749a4f77a1d444439
Validity
Not Before: Jun 7 12:00:39 2025 GMT
Not After : Jun 8 12:00:39 2025 GMT
Subject: CN=4d518dddbbe50a754f65ee5056c498caa2e41d41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7c:56:b2:3e:c0:21:30:0c:ab:8e:e6:7c:e4:
9b:5a:49:b3:81:f7:b5:df:80:ef:44:3a:9f:ef:0d:
e8:3a:23:e4:67:be:4d:03:5b:c9:89:9c:9f:4c:bf:
06:92:18:fe:d9:c8:25:f9:92:dc:33:3f:11:2f:16:
0b:3d:7a:ea:9b:e5:b7:ca:5a:43:ec:0b:08:fb:36:
7e:8f:0e:6a:6e:b1:24:a6:0c:af:8a:1f:91:9c:68:
c9:b9:48:8e:20:00:41:0d:83:b6:12:6a:7b:62:22:
1d:89:b9:96:7b:ea:a7:a3:78:5c:06:06:98:3e:71:
e3:06:e4:2f:60:f1:28:a6:ea:0a:85:6c:24:4c:d8:
ec:f5:0a:ac:8c:10:ae:e5:08:5d:fe:f6:33:ee:95:
5a:38:fe:e2:98:64:8a:c9:94:9c:21:4b:7b:1c:03:
8a:6c:72:df:f9:99:ad:d3:fe:6a:05:38:92:cc:4f:
05:cc:5e:9c:59:21:fa:92:a2:17:81:54:3c:c5:92:
92:52:81:55:63:7e:2a:2c:95:d2:48:c8:72:4a:97:
8a:6d:a8:29:d6:33:ba:4e:86:15:42:bc:a6:ca:c2:
0d:f9:28:38:55:ad:73:48:32:30:57:1c:9c:22:91:
7c:2c:f4:dc:79:f6:4e:5c:60:b2:7b:3f:ba:43:8c:
3f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:51:8D:DD:BB:E5:0A:75:4F:65:EE:50:56:C4:98:CA:A2:E4:1D:41
X509v3 Authority Key Identifier:
keyid:B4:63:20:18:80:98:52:0C:36:62:77:F7:49:A4:F7:7A:1D:44:44:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tGMgGICYUgw2Ynf3SaT3eh1ERDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:d0:1e:18:0d:df:12:a5:b4:a3:27:18:98:95:36:24:56:39:
d7:5f:af:4e:0d:67:36:a4:d6:56:83:d5:70:b2:0d:c2:57:5d:
b4:14:64:b8:63:cd:5f:c7:46:2d:90:0f:88:08:d3:4f:df:ed:
8a:57:4a:5a:49:04:44:68:29:7b:27:64:98:b6:fe:6e:7c:d6:
ee:21:1c:54:98:0a:27:3e:86:32:ed:2b:f2:7d:05:5c:e0:6b:
ba:af:cc:1a:bb:c8:ba:a8:2b:1e:d3:a3:ee:46:fc:62:9c:95:
f1:c1:d8:45:1e:94:a1:d3:38:9f:00:0e:34:14:e9:4f:95:34:
fb:10:7d:f6:1d:91:58:f9:97:10:3e:75:c2:10:dd:f1:22:ab:
fa:21:9f:9c:52:65:00:59:e1:fb:6a:f0:ad:48:cc:73:f1:ee:
ed:03:63:0c:73:da:c9:43:2d:fc:1c:bc:58:52:bd:8e:2f:7f:
43:b0:24:1e:50:a0:e1:d4:b1:b4:83:20:7a:f5:11:44:0a:db:
a5:be:8c:28:94:74:5f:22:41:2f:51:c4:9f:dc:a7:fa:73:eb:
c8:ec:bd:b6:bc:9d:9d:03:bd:36:41:6d:2c:d7:cd:9b:01:24:
68:17:0c:fb:db:8a:6d:61:3a:76:2a:e4:5d:dc:0d:29:18:67:
89:d2:31:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:51:32 2025 by rpki-client