Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: 6POuFBfUv5y1pciSlyBN9Vk5JpL5u925GBXOqex/AHw=
Subject key identifier: 0B:CF:92:A5:6A:C7:1B:42:45:0B:9A:A8:D8:95:38:8F:74:AF:DA:7C
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 019747428BC068CC2F79FCE34DF99BB431D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 1579
Signing time: Fri 06 Jun 2025 22:00:32 +0000
Manifest this update: Fri 06 Jun 2025 22:00:32 +0000
Manifest next update: Sat 07 Jun 2025 22:00:32 +0000
Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: H4yWwTGiSoVQMmuROBWI4zgDbrD/1vpzl86HPlhsHCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:8b:c0:68:cc:2f:79:fc:e3:4d:f9:9b:b4:31:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Jun 6 22:00:32 2025 GMT
Not After : Jun 7 22:00:32 2025 GMT
Subject: CN=0bcf92a56ac71b42450b9aa8d895388f74afda7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:05:72:22:d0:d2:1a:ba:49:4b:d8:cc:91:bd:
17:a7:91:5c:dc:09:ba:ac:34:7b:c9:76:86:cb:81:
12:33:cf:ac:2b:7a:11:24:3d:00:d8:e4:88:12:96:
18:58:ef:c6:48:3a:2b:06:7d:3a:06:17:68:b2:0f:
8f:78:e4:a9:7f:aa:c6:18:b3:d3:4b:e1:36:de:76:
64:9f:b8:e7:1a:18:f2:8c:41:c3:18:bb:62:ed:63:
b5:56:ed:1a:f9:75:d9:7a:ea:98:40:03:cf:4a:4a:
c7:70:a3:19:65:a2:d6:d8:b9:8f:30:0f:a6:5d:8e:
c7:7e:8b:18:8f:9a:08:29:ba:44:eb:54:aa:8f:dc:
2c:e6:b7:bd:ed:9e:e5:8d:2a:01:bf:54:39:fd:0a:
83:73:9a:3a:4f:5d:8f:f9:bc:30:7c:cd:b4:89:3f:
c5:e0:a8:56:96:46:45:fe:9f:2d:3f:5b:8a:2c:bf:
11:3d:13:ef:18:6c:cb:44:30:b1:34:f5:17:92:35:
06:6e:80:24:30:51:5f:24:9c:5e:a7:a9:e6:12:b5:
54:be:c4:3c:e9:74:22:5b:ed:75:65:f0:df:80:5f:
dd:31:06:ba:8a:73:32:7f:19:e4:a7:f0:24:3d:7a:
18:4e:9a:1f:a7:80:e0:1b:7e:33:16:58:38:c5:37:
92:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:CF:92:A5:6A:C7:1B:42:45:0B:9A:A8:D8:95:38:8F:74:AF:DA:7C
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:37:00:f3:85:55:56:fd:00:d8:18:94:42:c1:06:84:bd:e9:
bc:2e:c0:eb:37:76:47:04:42:47:25:0d:7d:e7:eb:44:ba:a7:
d5:81:e0:01:8c:16:2b:6c:34:e5:de:a2:d2:e5:ec:34:9e:df:
ca:6f:8d:21:53:d8:0b:97:d7:df:5b:32:43:3a:d4:d0:1f:e4:
1e:4a:b6:26:82:78:b2:34:61:29:cf:07:b4:bf:62:14:26:ff:
a6:f3:f3:2d:16:e7:7f:1f:4c:33:98:67:5e:e0:15:e8:32:a5:
58:d1:8a:2d:dc:a1:7e:f6:76:40:98:0e:7b:e6:84:27:12:dc:
63:5c:a6:71:1c:d7:20:3a:80:b8:80:ca:1e:06:84:75:ed:21:
1e:8e:0d:85:28:0f:00:3c:56:a1:a3:ef:b6:9b:5e:08:ed:a9:
b1:8c:fb:37:b1:dc:07:f0:3d:54:06:8b:00:73:29:da:db:44:
d6:f8:f2:b2:2f:6c:95:aa:22:d8:c0:4b:29:a2:53:b9:00:7a:
c2:7c:72:1d:e5:d4:42:c5:67:3e:51:88:56:28:8e:de:61:91:
eb:61:06:50:1e:f3:39:7e:34:12:4f:4c:7c:79:b3:b9:5c:4d:
ef:a9:60:a7:1a:57:4b:7b:6f:06:65:2a:e9:6a:f7:77:80:b9:
0c:bb:6b:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:19:00 2025 by rpki-client