Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
File: tZXiFxdovJspQknw46U1kBecUu4.mft (raw, json)
Hash identifier: Ey9aGnEVyGmBhAvR62sw91gxx/M/C1utOHs6qlJmxpc=
Subject key identifier: 3F:54:39:42:25:34:59:AA:DD:4B:10:C4:DB:E5:42:B1:43:68:9E:82
Authority key identifier: B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
Certificate issuer: /CN=b595e2171768bc9b294249f0e3a53590179c52ee
Certificate serial: 01974E5780EB1FEA97BD3B24DB2AE54286E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
Manifest number: 1580
Signing time: Sun 08 Jun 2025 07:00:46 +0000
Manifest this update: Sun 08 Jun 2025 07:00:46 +0000
Manifest next update: Mon 09 Jun 2025 07:00:46 +0000
Files and hashes: 1: tZXiFxdovJspQknw46U1kBecUu4.crl (hash: 5au2gL3ecb5NInaphKe1KvUoJ8bspYmc2BRw5D86/nM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 07:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:80:eb:1f:ea:97:bd:3b:24:db:2a:e5:42:86:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b595e2171768bc9b294249f0e3a53590179c52ee
Validity
Not Before: Jun 8 07:00:46 2025 GMT
Not After : Jun 9 07:00:46 2025 GMT
Subject: CN=3f543942253459aadd4b10c4dbe542b143689e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f9:65:a8:cb:26:ab:89:cf:e3:e6:3a:1f:86:
c8:a8:f0:95:c3:7a:fa:3d:75:42:d6:75:b8:40:36:
93:3d:1f:69:4a:64:7b:80:54:8b:a1:3c:06:27:34:
fb:d7:f5:be:e8:72:3f:de:34:ea:c1:48:54:09:92:
50:0e:52:e5:60:e2:6a:a4:e7:9b:e0:1a:7f:a8:ef:
7e:0f:ba:0a:28:56:29:a2:da:95:8b:43:f2:fe:ce:
1c:85:ab:3d:8d:7e:c4:c9:6e:93:69:74:cc:7f:09:
44:76:7f:2b:10:73:a2:97:a6:31:eb:1c:51:56:09:
bb:8b:83:5c:f9:e1:bc:0f:fe:ce:e5:5f:92:a8:b5:
b8:f8:aa:c8:c4:17:c4:c1:e6:24:98:d8:4b:e0:97:
39:f7:bd:2d:8f:ad:66:2b:b6:65:2a:44:6f:89:f8:
14:75:40:2a:9c:65:84:21:a7:14:3b:9f:43:fc:8b:
5d:5e:31:7a:5b:2f:9a:ea:d6:45:f6:72:ee:d8:b2:
ac:bd:5c:ff:c2:f1:9d:a3:8a:c7:4e:e7:90:f3:13:
f3:23:0e:dd:8c:cc:24:af:40:85:45:a2:48:b2:91:
c3:f8:53:10:ee:d2:7b:b6:cc:13:3c:e3:03:1f:3b:
5b:ec:23:3b:69:b4:5c:5b:9e:07:e6:d4:8b:a0:3a:
7c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:54:39:42:25:34:59:AA:DD:4B:10:C4:DB:E5:42:B1:43:68:9E:82
X509v3 Authority Key Identifier:
keyid:B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:60:b9:cf:c9:9a:0d:9f:62:84:4d:ec:57:15:76:a2:7f:7c:
da:61:54:b0:26:77:6f:bb:36:d7:70:f1:8a:e5:60:dc:ec:fa:
d7:a0:e4:f3:79:64:e0:cb:4a:80:60:bc:a4:4e:43:81:e0:39:
32:34:5e:4c:3c:21:41:8b:3c:1a:ad:47:2e:52:54:fe:f7:b5:
26:c0:5b:01:87:aa:e0:41:ab:1b:8b:d4:ed:8f:31:1f:bb:53:
20:bc:6e:90:7a:a3:69:98:08:fc:fd:d0:5e:1a:4f:21:4a:71:
59:d0:27:e9:2e:87:16:51:c8:f4:be:1a:0f:30:71:2f:92:45:
b6:72:70:8c:b6:48:a5:6a:2e:a2:f8:a6:7b:2d:79:1c:34:5c:
2c:f5:a4:58:49:e9:5b:3e:69:a9:59:24:d4:86:af:90:ad:49:
a7:7d:3a:d3:53:54:3c:14:52:96:da:45:51:bc:07:6e:75:90:
a9:e9:9a:22:ba:2f:f2:33:8f:5b:ee:12:bd:68:4a:8d:d5:ce:
0c:81:ae:55:9f:11:fb:73:ba:13:42:07:4f:16:7a:f8:a0:f1:
6e:b7:4e:b8:57:48:80:78:5a:db:c2:94:38:7a:20:a8:15:49:
d6:20:6e:6d:b0:0e:8b:2a:48:9e:ba:a2:2f:6f:33:8e:70:78:
8f:96:a5:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:14:27 2025 by rpki-client