Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
File: tKW-MwcSDmXjxBZcnI50jBwSp6I.mft (raw, json)
Hash identifier: TPgUyTN2oB/kh4LL658/sC4YI+Lp3Zg1lMKbEodavWE=
Subject key identifier: 22:93:E4:3B:45:9E:1B:4E:F2:E0:7C:A2:75:A3:DF:16:24:AC:4E:BA
Authority key identifier: B4:A5:BE:33:07:12:0E:65:E3:C4:16:5C:9C:8E:74:8C:1C:12:A7:A2
Certificate issuer: /CN=b4a5be3307120e65e3c4165c9c8e748c1c12a7a2
Certificate serial: 01974E20365F5830E67420A51E123BC30F8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
Manifest number: 04CF
Signing time: Sun 08 Jun 2025 06:00:23 +0000
Manifest this update: Sun 08 Jun 2025 06:00:23 +0000
Manifest next update: Mon 09 Jun 2025 06:00:23 +0000
Files and hashes: 1: pHJ5oRo1kF5oiX8KeKirS42gdJI.roa (hash: pWmX7zoUYI3ChoG1HELYfAkOPLPYyR79PMNSLK6H1B0=)
2: tKW-MwcSDmXjxBZcnI50jBwSp6I.crl (hash: 7BicNuSNjJVt0VZu9G+hYR0/DZ0TuFwyvpaaOy3yBfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:20:36:5f:58:30:e6:74:20:a5:1e:12:3b:c3:0f:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a5be3307120e65e3c4165c9c8e748c1c12a7a2
Validity
Not Before: Jun 8 06:00:23 2025 GMT
Not After : Jun 9 06:00:23 2025 GMT
Subject: CN=2293e43b459e1b4ef2e07ca275a3df1624ac4eba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:04:d9:d4:81:43:59:26:b0:36:8a:4e:b4:da:
fe:85:53:9c:11:dc:18:78:e0:9b:92:ee:95:56:bb:
33:a3:53:94:1a:c0:33:b5:0c:02:07:c1:50:6e:fd:
89:f0:4e:db:ea:0f:23:e9:82:63:39:d3:dd:c1:2e:
4d:e6:70:f5:86:e4:ef:8d:95:ef:d8:41:45:30:80:
5c:5d:b5:d3:7f:44:92:67:aa:9a:78:91:74:07:20:
f5:0b:43:69:03:b6:ab:6d:4d:e5:af:58:1e:64:de:
b9:11:26:6a:5e:3a:c7:f3:7e:50:1a:0e:3d:c0:d9:
ae:37:86:65:9f:bc:6f:23:2b:88:72:ec:30:2a:d5:
54:82:5e:d6:ce:1e:9a:57:b7:ad:76:4c:4c:64:b9:
8f:43:96:b8:b3:d9:40:b8:a3:d7:aa:c3:bb:e0:47:
96:7f:e8:fd:7b:33:57:d7:c0:3d:dd:3d:f2:c6:37:
6f:28:dd:62:87:21:32:c3:8f:8c:1e:07:db:60:5c:
37:fc:18:24:4b:41:d6:7e:e2:27:75:ca:05:be:78:
9f:02:50:ff:27:79:0d:93:a0:c5:c9:d8:40:b0:ba:
33:20:b9:85:97:ef:31:83:4e:74:68:1b:3e:ed:3a:
f9:fc:19:03:c4:35:9c:3f:70:62:4b:38:65:c3:87:
c9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:93:E4:3B:45:9E:1B:4E:F2:E0:7C:A2:75:A3:DF:16:24:AC:4E:BA
X509v3 Authority Key Identifier:
keyid:B4:A5:BE:33:07:12:0E:65:E3:C4:16:5C:9C:8E:74:8C:1C:12:A7:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:a5:ea:32:fc:05:27:b1:f6:07:8c:c1:02:57:d0:e9:a4:21:
66:b7:ec:ea:ff:b3:f8:32:b2:0b:a6:b2:f3:bf:75:45:9f:1c:
86:8b:21:a5:f1:62:10:d1:eb:c7:d9:9b:d5:f6:b4:72:11:8e:
ec:ff:02:5d:e7:80:07:b1:ae:b9:e9:54:d2:1f:39:d3:71:b6:
73:c4:3a:1d:92:69:33:ae:62:32:df:0b:53:f1:5c:8c:e2:51:
12:8d:91:05:36:8a:e1:5e:ec:94:6a:76:a8:46:a6:42:6e:50:
14:1e:ab:dc:71:14:10:a0:f7:bf:fd:b3:42:70:84:f0:c1:3c:
70:23:ce:e5:0f:19:22:e6:67:5b:a7:b6:f4:7d:8e:65:3d:cf:
b7:f7:bd:42:08:cd:09:3a:34:f9:f2:b2:95:5e:d3:65:a4:80:
b3:11:ac:f6:35:54:71:92:9f:32:37:c7:1a:0e:63:2a:0e:c9:
b8:0b:22:ba:da:d2:63:52:ef:c6:a9:f0:27:23:3f:73:a7:01:
ab:45:e8:72:f2:7d:6f:f3:57:11:7e:51:d3:f1:17:10:3f:e9:
1b:77:8d:7c:b7:e8:04:79:32:73:63:30:ef:7f:bc:54:18:04:
52:41:fb:76:4c:27:2d:93:56:f0:c1:a4:00:cf:76:a4:8b:f4:
77:18:b4:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOIDZfWDDmdCClHhI7ww+LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0YTViZTMzMDcxMjBlNjVlM2M0MTY1YzljOGU3NDhjMWMx
MmE3YTIwHhcNMjUwNjA4MDYwMDIzWhcNMjUwNjA5MDYwMDIzWjAzMTEwLwYDVQQD
EygyMjkzZTQzYjQ1OWUxYjRlZjJlMDdjYTI3NWEzZGYxNjI0YWM0ZWJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwTZ1IFDWSawNopOtNr+hVOcEdwY
eOCbku6VVrszo1OUGsAztQwCB8FQbv2J8E7b6g8j6YJjOdPdwS5N5nD1huTvjZXv
2EFFMIBcXbXTf0SSZ6qaeJF0ByD1C0NpA7arbU3lr1geZN65ESZqXjrH835QGg49
wNmuN4Zln7xvIyuIcuwwKtVUgl7Wzh6aV7etdkxMZLmPQ5a4s9lAuKPXqsO74EeW
f+j9ezNX18A93T3yxjdvKN1ihyEyw4+MHgfbYFw3/BgkS0HWfuIndcoFvnifAlD/
J3kNk6DFydhAsLozILmFl+8xg050aBs+7Tr5/BkDxDWcP3BiSzhlw4fJnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCKT5DtFnhtO8uB8onWj3xYkrE66MB8GA1UdIwQY
MBaAFLSlvjMHEg5l48QWXJyOdIwcEqeiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEtXLU13Y1NEbVhqeEJaY25JNTBqQndTcDZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9mZTI3NmYtOTQ2YS00NDZiLTg0NTMt
MTcwZWIxYzlmZWM4LzEvdEtXLU13Y1NEbVhqeEJaY25JNTBqQndTcDZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9mZTI3NmYtOTQ2YS00NDZiLTg0NTMtMTcwZWIxYzlmZWM4
LzEvdEtXLU13Y1NEbVhqeEJaY25JNTBqQndTcDZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiaXqMvwF
J7H2B4zBAlfQ6aQhZrfs6v+z+DKyC6ay8791RZ8choshpfFiENHrx9mb1fa0chGO
7P8CXeeAB7GuuelU0h8503G2c8Q6HZJpM65iMt8LU/FcjOJREo2RBTaK4V7slGp2
qEamQm5QFB6r3HEUEKD3v/2zQnCE8ME8cCPO5Q8ZIuZnW6e29H2OZT3Pt/e9QgjN
CTo0+fKylV7TZaSAsxGs9jVUcZKfMjfHGg5jKg7JuAsiutrSY1LvxqnwJyM/c6cB
q0XocvJ9b/NXEX5R0/EXED/pG3eNfLfoBHkyc2Mw73+8VBgEUkH7dkwnLZNW8MGk
AM92pIv0dxi0Pg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 15:05:31 2025 by rpki-client