Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
File: TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft (raw, json)
Hash identifier: FwmNuA6MCBEv/H+d5j7chuXR4CRN1Pff9LgZCswc/S8=
Subject key identifier: 52:8D:15:86:C3:9C:9F:45:23:47:91:FB:E4:BF:A7:C9:FD:21:46:25
Authority key identifier: 4C:21:6F:66:56:0A:E1:6B:A7:59:4F:46:AF:06:0F:35:1E:0E:B4:9E
Certificate issuer: /CN=4c216f66560ae16ba7594f46af060f351e0eb49e
Certificate serial: 019745C2281AD4512EFEDA229A7654A942B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
Manifest number: 0BA5
Signing time: Fri 06 Jun 2025 15:00:41 +0000
Manifest this update: Fri 06 Jun 2025 15:00:41 +0000
Manifest next update: Sat 07 Jun 2025 15:00:41 +0000
Files and hashes: 1: MhvE3qmmLRT0N7DSbTLw9Csy23Q.roa (hash: JVGSBwpVFJHRhnHW5L6AwZ0tkeTLczM6lU9i030j0HQ=)
2: TCFvZlYK4WunWU9GrwYPNR4OtJ4.crl (hash: JlXn3g/A3h4zumDeZWwRRp+9Pkm/TOYM6hHZHvZ6yPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:c2:28:1a:d4:51:2e:fe:da:22:9a:76:54:a9:42:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c216f66560ae16ba7594f46af060f351e0eb49e
Validity
Not Before: Jun 6 15:00:41 2025 GMT
Not After : Jun 7 15:00:41 2025 GMT
Subject: CN=528d1586c39c9f45234791fbe4bfa7c9fd214625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f2:8e:43:52:85:30:c6:98:57:ac:ea:ba:f3:
c5:18:87:d4:6e:f8:da:9b:ae:2e:bd:9d:90:8a:a8:
59:51:b5:8e:3b:02:00:3c:33:fc:92:e3:4e:69:76:
41:b4:45:7c:d6:74:84:ad:e0:90:dc:82:87:8c:b1:
71:e6:e1:d5:44:63:a9:25:5e:41:f6:a4:ec:47:f2:
f3:41:8b:0d:30:eb:33:ac:29:6c:27:73:3b:62:03:
eb:a5:bc:80:9a:68:12:8c:ce:90:da:67:82:d7:89:
5f:6d:a5:37:49:0b:7f:76:1e:75:86:bc:ea:9e:aa:
06:5b:4d:f8:bf:33:93:b9:44:5f:99:db:6f:c1:b9:
08:47:00:59:74:8a:13:e1:7a:42:26:27:19:7b:06:
98:cf:43:24:5e:0c:c2:42:32:8a:8a:65:4c:06:d8:
44:1e:9a:f3:44:a3:94:f3:9a:17:bb:a1:1c:ac:53:
3d:2e:7c:88:71:8d:a0:39:29:7e:3c:6d:07:91:99:
5b:43:72:a2:8c:00:2f:08:a6:58:0b:06:99:32:f3:
5d:f1:b7:7f:cf:14:87:d6:81:68:d0:0c:4b:c3:29:
4a:ba:76:fb:a4:25:f0:94:48:75:8d:06:41:dd:5a:
ed:f4:7e:1e:27:5c:42:02:55:67:84:a6:df:05:8c:
91:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:8D:15:86:C3:9C:9F:45:23:47:91:FB:E4:BF:A7:C9:FD:21:46:25
X509v3 Authority Key Identifier:
keyid:4C:21:6F:66:56:0A:E1:6B:A7:59:4F:46:AF:06:0F:35:1E:0E:B4:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:be:8c:16:96:e6:e8:23:b0:b4:09:27:4b:ca:65:ae:b4:de:
ea:bb:84:98:86:70:30:2d:80:0c:06:97:0d:16:77:d3:9d:9c:
60:df:0f:b4:2b:ce:60:26:b0:d8:32:c7:5d:1b:8c:0f:49:99:
25:87:90:4b:e4:86:9b:9f:9b:f2:48:75:e1:83:e2:02:b5:f3:
7a:5a:d2:c6:d9:cf:68:0e:40:f5:ec:2e:a5:06:7b:ff:ca:8e:
7e:32:e5:47:a7:9d:f4:1c:18:4b:ce:88:66:bd:5e:79:2f:66:
dd:6d:c6:f8:89:83:c9:ad:71:c2:f3:2c:f9:f0:9e:1e:1c:e4:
67:44:a8:e2:8c:07:36:ed:0e:7b:12:0d:92:61:f7:15:90:58:
d5:6a:2a:bf:e1:ce:a1:54:a3:0d:08:a1:40:4b:3b:24:50:17:
7b:f7:ed:5d:f0:9b:4e:44:96:95:82:c8:7c:57:cb:92:62:7d:
1f:b5:f3:53:45:a3:d7:98:89:19:75:2f:37:76:d2:d4:08:c5:
af:07:b5:d2:8e:1b:39:73:b1:d6:0a:b8:bc:46:bd:76:68:89:
7c:a2:1c:83:93:d6:4d:cd:f6:80:e8:a6:ad:62:01:41:d1:42:
57:45:d7:b3:c4:1a:26:d1:89:4d:3c:c5:49:1d:55:c2:80:b0:
91:8f:3a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:19:04 2025 by rpki-client