Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft
File: tcOYwHMlxA59dtI5ahvoXEL9wsg.mft (raw, json)
Hash identifier: Y2dxLN2IC4n3cFLgiYDEr550HFKttT9zK8A05TEBdgA=
Subject key identifier: 43:82:5C:85:03:22:F9:AC:53:58:E1:C0:26:70:0D:90:78:E6:6D:75
Authority key identifier: B5:C3:98:C0:73:25:C4:0E:7D:76:D2:39:6A:1B:E8:5C:42:FD:C2:C8
Certificate issuer: /CN=b5c398c07325c40e7d76d2396a1be85c42fdc2c8
Certificate serial: 01974855492DB6A7C757F80C04D5B196CF57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tcOYwHMlxA59dtI5ahvoXEL9wsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft
Manifest number: 04FA
Signing time: Sat 07 Jun 2025 03:00:38 +0000
Manifest this update: Sat 07 Jun 2025 03:00:38 +0000
Manifest next update: Sun 08 Jun 2025 03:00:38 +0000
Files and hashes: 1: HeTNJZjhVHC3QazbToD7IxfPGhg.roa (hash: k/lPKk3dyIcZTARgL9fxQcpWqaVNc6/eODt+UcBvC5M=)
2: tcOYwHMlxA59dtI5ahvoXEL9wsg.crl (hash: vEhzj0i3TfURIqt5ALLLX0tcyF/0uBlheF/zkA2A040=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tcOYwHMlxA59dtI5ahvoXEL9wsg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:49:2d:b6:a7:c7:57:f8:0c:04:d5:b1:96:cf:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5c398c07325c40e7d76d2396a1be85c42fdc2c8
Validity
Not Before: Jun 7 03:00:38 2025 GMT
Not After : Jun 8 03:00:38 2025 GMT
Subject: CN=43825c850322f9ac5358e1c026700d9078e66d75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c4:9d:21:ae:e5:01:fa:96:51:2c:52:0e:1b:
c0:7f:de:e3:65:6c:62:49:66:11:b3:a0:8e:b7:e7:
93:ef:03:b2:ff:96:65:be:9e:76:f3:e2:76:6b:5e:
b8:8a:3a:83:4d:d7:c8:66:b2:17:55:fa:21:f2:ea:
4a:67:ad:2d:70:76:88:23:a8:7c:2c:11:ed:75:2d:
35:85:f6:be:7a:75:5b:e0:eb:6c:9e:35:8d:50:04:
78:63:c4:8e:2a:34:10:8e:70:b8:58:84:2d:07:db:
fa:b6:4d:7a:f6:02:c9:bd:de:f6:f1:a4:41:ff:2f:
22:89:50:72:68:61:db:93:52:13:6a:9f:2c:c4:c3:
39:70:36:1a:4a:6f:bb:40:b0:3f:22:dd:66:ed:65:
e3:90:2a:d4:92:82:ba:8d:a7:2e:a6:b9:f3:41:9a:
79:b4:f8:d7:07:27:02:13:b7:3f:30:9a:6b:31:5b:
8b:c2:c5:bb:ec:46:9e:45:04:54:0a:4a:e8:55:5e:
3d:73:93:7a:67:c2:39:93:9c:54:39:ff:42:10:7a:
f4:6e:d2:75:74:ad:a2:cb:df:d7:d2:2e:c9:7f:66:
65:fc:3c:95:2e:2e:8b:04:3d:1c:cf:05:24:37:e5:
3a:35:85:b3:9a:3a:11:a3:77:5a:be:ed:2f:e8:3a:
65:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:82:5C:85:03:22:F9:AC:53:58:E1:C0:26:70:0D:90:78:E6:6D:75
X509v3 Authority Key Identifier:
keyid:B5:C3:98:C0:73:25:C4:0E:7D:76:D2:39:6A:1B:E8:5C:42:FD:C2:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tcOYwHMlxA59dtI5ahvoXEL9wsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:53:ed:99:61:43:44:06:59:a2:9a:9d:00:52:7b:4a:9f:72:
08:1c:e5:26:8f:f0:d4:73:4e:a0:c4:6c:68:2e:61:5b:ce:36:
90:e5:6f:7f:64:cd:b6:ad:6e:af:ba:ac:a8:77:24:27:11:c0:
71:e7:41:73:2a:80:79:35:0f:a5:23:f5:af:50:5a:b1:78:ec:
fb:a2:52:43:0e:89:7b:75:10:b4:08:d8:d6:42:0e:a3:78:b9:
ea:1c:0d:2a:24:b8:4c:71:fa:ef:d8:b3:42:d6:4c:99:80:b1:
cc:7e:f7:21:75:d7:e2:00:55:f8:b6:1b:ec:9e:8f:43:e1:4e:
ca:77:00:cb:cb:93:2a:30:0d:85:07:ab:73:dc:81:f5:f5:4c:
48:0e:1c:14:70:11:a6:63:02:f7:bf:01:e3:89:a9:ca:4b:c2:
33:9a:e8:c0:4a:22:ae:a1:ac:7a:e9:21:80:b8:ed:50:29:5e:
ab:b9:95:b6:91:de:e7:c5:25:94:bf:ce:72:05:65:16:03:74:
6f:2d:0c:66:3a:9c:91:e9:2a:a8:d8:7d:7e:09:62:13:23:8b:
2a:e8:25:eb:77:96:4e:b3:ec:f1:56:a3:62:b2:00:84:9c:96:
e4:59:74:cb:ca:7f:bc:a6:62:19:e7:a0:c8:d0:70:70:58:2c:
db:a7:6b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:31:31 2025 by rpki-client