Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
File: tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft (raw, json)
Hash identifier: e6IUbV3kbplz9JGKaKAtywziGOruNKPfwIGj0wJn6Eo=
Subject key identifier: A1:24:7D:F1:F2:15:8A:75:85:65:9B:4D:FB:61:F3:1A:D5:89:1F:31
Authority key identifier: B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F
Certificate issuer: /CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f
Certificate serial: 0197470C1364830D4B79BAF6A8E40A20B993
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
Manifest number: 157F
Signing time: Fri 06 Jun 2025 21:01:02 +0000
Manifest this update: Fri 06 Jun 2025 21:01:02 +0000
Manifest next update: Sat 07 Jun 2025 21:01:02 +0000
Files and hashes: 1: A19KF2VhmqgRITxahuDcRts8KJs.roa (hash: YirbVHhxW1CKNUwQAz3dz5QapLv5A3zZT5MHBNEVZ34=)
2: tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl (hash: xRCEBbYT7EKOQXg1tbAXeezd95gj9454pBXU5sjOH5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0c:13:64:83:0d:4b:79:ba:f6:a8:e4:0a:20:b9:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f
Validity
Not Before: Jun 6 21:01:02 2025 GMT
Not After : Jun 7 21:01:02 2025 GMT
Subject: CN=a1247df1f2158a7585659b4dfb61f31ad5891f31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c1:e9:34:de:9c:89:b8:e0:5c:cf:44:c0:08:
30:44:ce:01:51:6b:2d:fa:66:14:c3:3a:bf:ec:67:
95:d0:55:3e:1a:24:69:b3:6d:1a:b9:50:c6:55:86:
52:c2:66:10:94:5a:e6:77:d8:c1:9e:9d:4a:aa:04:
0a:90:21:a4:c5:21:35:a1:2e:a6:3b:70:d1:91:9f:
b4:13:a2:17:b9:81:18:4c:d6:8f:b9:51:59:9b:e9:
ef:61:fe:0f:67:93:9b:fc:48:ef:2a:4a:10:a1:92:
1f:3d:29:a5:7c:4f:81:a8:f9:e6:26:fa:c7:1d:70:
9d:4f:88:ad:0e:f6:00:7a:10:07:da:f0:1e:7e:b2:
f9:76:ed:1e:70:28:e7:5b:0a:45:b6:ad:23:54:28:
ad:5f:a1:e0:f0:4e:58:04:b6:a0:08:c0:f4:a7:16:
3b:0b:2b:9a:cb:a6:83:f8:0d:cd:cc:cc:d4:6b:d0:
6f:45:01:f4:73:97:29:9a:27:00:7a:cc:fa:c9:83:
c1:44:49:67:59:a8:07:cd:2e:f7:a8:c3:a9:14:72:
00:52:41:24:61:2e:ab:46:43:3c:87:94:fa:9c:04:
ae:4d:84:72:28:37:a2:fe:c6:d7:fe:8a:e1:bd:f8:
28:e7:df:03:a3:e0:c9:cd:ef:46:75:1c:91:b0:61:
aa:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:24:7D:F1:F2:15:8A:75:85:65:9B:4D:FB:61:F3:1A:D5:89:1F:31
X509v3 Authority Key Identifier:
keyid:B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:d7:b5:a5:c1:5b:a8:93:f2:db:d1:ab:b0:4a:c7:32:6a:b3:
cb:11:a6:68:6e:cc:33:61:12:99:cc:44:f8:c5:c4:ed:d2:e4:
01:38:77:f0:7b:4c:16:19:17:45:05:70:80:63:ed:85:c6:5a:
86:2d:ff:17:1a:8c:79:5e:15:94:8e:98:1a:21:5f:83:2a:64:
b7:43:30:d0:ae:8a:5a:c5:54:4f:35:02:05:a3:14:7d:ba:a3:
90:7e:79:65:9f:cd:e8:80:a7:cd:e9:52:44:cd:0d:be:e4:41:
e2:c8:0c:8f:59:61:3e:5c:43:35:b5:79:f2:bf:ac:2d:71:61:
6e:72:a1:b0:08:52:0a:3f:82:02:a6:1f:4a:21:25:23:a3:70:
79:59:b4:91:dd:67:b7:8b:7a:f3:e2:14:28:bc:61:36:4c:12:
70:e1:88:6c:d2:e7:28:b4:73:8b:b1:e9:67:05:39:ee:33:e2:
59:ef:17:80:c8:af:99:39:26:61:62:74:6e:4d:b9:15:18:29:
8b:55:a4:d9:4c:f7:10:01:62:b4:c3:3e:26:5a:4c:89:ea:33:
c2:3d:3c:31:bf:f5:1e:64:5a:0c:08:82:02:b0:84:3c:37:1b:
e8:2e:81:1f:07:7c:d2:fd:73:87:ff:19:46:71:be:6b:85:1e:
40:6f:2f:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:29:19 2025 by rpki-client