Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
File: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft (raw, json)
Hash identifier: fcdQYwQHFeW9VS18OYjphPd/A/CUtQOXYNbWZDEoq80=
Subject key identifier: CF:D2:B6:D0:F9:95:D1:D3:E9:85:9B:C8:D5:47:17:2D:3F:AD:47:F0
Authority key identifier: 4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
Certificate issuer: /CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Certificate serial: 01974B563569F842BE5FF521E12BB918ECA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
Manifest number: 0C63
Signing time: Sat 07 Jun 2025 17:00:30 +0000
Manifest this update: Sat 07 Jun 2025 17:00:30 +0000
Manifest next update: Sun 08 Jun 2025 17:00:30 +0000
Files and hashes: 1: 4f1jI7-qAw-Fm-OtnESqUBoebm0.roa (hash: Yj15262IImuG/zvO4RGd+KynWz9BG4CJpl9H3lrssA0=)
2: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl (hash: Ni610Pm2oSO0Y0oCD4jB+fupcrGL705VeqDSc2lGG/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 17:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:35:69:f8:42:be:5f:f5:21:e1:2b:b9:18:ec:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Validity
Not Before: Jun 7 17:00:30 2025 GMT
Not After : Jun 8 17:00:30 2025 GMT
Subject: CN=cfd2b6d0f995d1d3e9859bc8d547172d3fad47f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:e7:f5:75:4e:14:f4:9c:3e:2c:00:4b:6b:04:
67:3f:e5:5c:34:a4:5c:72:02:09:ae:b4:e1:83:e0:
06:49:12:57:10:1f:0a:46:b3:40:45:84:bf:bd:29:
ec:26:89:15:09:25:52:40:dc:e3:71:b7:49:ad:65:
ec:a4:63:85:49:f1:d3:b2:fb:51:2d:ae:08:19:1b:
af:09:6c:96:36:0e:01:7a:97:51:be:96:8e:6f:91:
13:6e:34:e4:af:7e:ef:e5:ff:7f:1f:ac:c1:75:95:
78:47:52:bb:28:fc:70:5e:92:1a:8b:1e:5d:2e:be:
ea:ee:92:db:c6:08:2a:80:73:1f:ce:40:34:0a:81:
27:87:79:1d:69:b5:3b:1c:4f:6e:8c:1a:0d:71:77:
22:d1:17:f3:38:82:92:04:35:9f:59:22:ec:99:20:
83:38:c6:7a:cd:de:18:47:20:c1:7a:7e:9b:a7:91:
0e:bd:a6:25:19:c3:bf:d1:66:d1:14:68:24:1a:a6:
80:3f:4f:9b:23:ce:7d:6f:0b:29:f8:02:9e:bf:30:
17:af:f4:a0:21:87:73:89:98:e1:c2:73:98:55:a9:
3d:83:74:bd:82:70:49:78:50:fe:22:5a:22:72:b9:
09:4b:f9:fa:db:4d:14:1d:17:35:97:95:f4:5d:08:
82:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:D2:B6:D0:F9:95:D1:D3:E9:85:9B:C8:D5:47:17:2D:3F:AD:47:F0
X509v3 Authority Key Identifier:
keyid:4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:66:66:3f:06:21:81:34:e5:cf:cf:49:90:e7:6e:58:c2:33:
7d:cc:bf:c0:b1:2f:c6:bb:c1:d8:2b:c6:ef:6a:b0:79:77:21:
8e:34:71:18:f7:8b:c2:61:b0:8f:c2:85:b1:43:e8:cb:fd:58:
f0:e4:8c:0a:fd:c6:3a:5e:38:85:a7:c0:6e:ef:d6:6a:8f:e0:
02:6b:7f:c5:e7:fc:c3:a4:c7:c5:87:f6:1b:cd:68:f4:02:31:
3b:6b:2a:d1:de:54:97:29:5e:93:d2:85:75:b5:b9:f9:86:f9:
87:08:e0:4d:d4:c5:6f:2b:9e:13:f6:1a:30:b9:1f:3d:1f:2b:
65:68:bd:15:e7:0d:4e:e8:34:d7:67:14:88:d0:ca:d5:6b:4e:
49:a7:ee:fd:65:b9:bd:06:03:f5:ee:aa:7b:28:16:3e:aa:0a:
31:42:ad:37:c7:71:d0:e8:7c:4b:60:a1:8d:ea:c9:78:99:87:
d8:cd:da:99:6e:70:ba:bd:ea:a9:7d:d9:a0:07:0b:c1:e4:5e:
d6:62:28:58:1a:30:9e:40:5d:22:1e:37:c5:52:96:a3:f6:42:
47:c7:d7:85:da:b2:d9:72:19:ac:e6:a3:da:ff:8e:03:bb:26:
b1:6d:89:8e:66:d7:6b:fd:8d:4f:f6:fb:c2:4b:b9:21:ac:75:
c0:2d:59:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:19:39 2025 by rpki-client