Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
File: TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft (raw, json)
Hash identifier: VBZ+/tOF+JFiLRXNn6o5CzviDzDrITR0UCRvHUzyw4g=
Subject key identifier: 00:D9:59:C3:A0:25:69:C5:19:C7:37:F4:7A:D9:6E:52:61:DB:6E:CD
Authority key identifier: 4D:F1:81:1F:39:97:B9:50:AC:89:E4:10:EA:3E:F0:18:A6:73:D5:FC
Certificate issuer: /CN=4df1811f3997b950ac89e410ea3ef018a673d5fc
Certificate serial: 01975046903FF9934C8A38509FADEE41B45C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TfGBHzmXuVCsieQQ6j7wGKZz1fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
Manifest number: 053F
Signing time: Sun 08 Jun 2025 16:01:31 +0000
Manifest this update: Sun 08 Jun 2025 16:01:31 +0000
Manifest next update: Mon 09 Jun 2025 16:01:31 +0000
Files and hashes: 1: 4m_ZlqWE1YEBP4kWtbELic7ECzg.roa (hash: t8PO7dqvDfBV4dwcfBXHsLynSbU2oXoJqnNbzqZG81g=)
2: TfGBHzmXuVCsieQQ6j7wGKZz1fw.crl (hash: uCvkHLvY4iqf/JjjJCyAjcM3OqmpXkzauMaRflqCmog=)
3: risExVobQciJpjckh7R5a6pHayQ.roa (hash: smtSJjRXs0E72dzCfhCCARBzkZPKWKCqhHgp8E/C6HY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TfGBHzmXuVCsieQQ6j7wGKZz1fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 16:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:46:90:3f:f9:93:4c:8a:38:50:9f:ad:ee:41:b4:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4df1811f3997b950ac89e410ea3ef018a673d5fc
Validity
Not Before: Jun 8 16:01:31 2025 GMT
Not After : Jun 9 16:01:31 2025 GMT
Subject: CN=00d959c3a02569c519c737f47ad96e5261db6ecd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:50:d2:92:17:05:ff:f0:02:2e:10:cf:96:f8:
1d:2e:03:9d:4a:14:d9:69:6a:46:4f:14:fa:79:fb:
18:b3:30:59:50:d8:03:1f:86:e3:2d:0a:f9:ab:a2:
91:b5:46:58:25:6f:9e:38:29:12:0e:84:06:60:65:
20:f6:fa:c4:b9:3f:e0:d8:91:37:d6:8f:e9:83:54:
cf:ef:98:70:09:17:13:d7:45:31:72:c1:82:e0:a3:
9d:07:06:d7:a7:6e:be:6d:a6:78:b7:8b:c6:37:c0:
43:ef:f1:f2:0c:a2:2a:6d:57:2f:e0:8f:3e:76:c5:
99:77:67:ee:4f:c9:a9:73:3d:b5:a2:b1:dc:f0:8f:
20:d9:01:df:ea:ee:44:a6:54:2d:f7:15:b5:e3:91:
32:7b:47:ea:e8:f8:67:76:91:29:d8:e9:0e:bb:2b:
f8:ad:19:80:44:c3:f4:e2:95:8d:f2:4c:01:ef:42:
e0:d1:cb:81:d3:b0:05:80:74:05:4e:87:d6:5c:79:
3e:a1:e7:a8:5f:ac:c1:60:c9:9f:fe:d1:a3:b6:f3:
b5:15:c2:f4:37:d4:ae:f7:b3:4f:21:f6:bc:db:e6:
dc:5e:69:b1:a7:a3:59:18:29:16:09:26:24:04:3e:
c6:ac:75:21:33:cc:70:01:72:56:b9:3a:f4:f8:89:
c5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:D9:59:C3:A0:25:69:C5:19:C7:37:F4:7A:D9:6E:52:61:DB:6E:CD
X509v3 Authority Key Identifier:
keyid:4D:F1:81:1F:39:97:B9:50:AC:89:E4:10:EA:3E:F0:18:A6:73:D5:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TfGBHzmXuVCsieQQ6j7wGKZz1fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:44:7a:32:62:eb:72:25:7a:98:be:f7:90:08:d9:98:65:db:
a2:1b:ab:24:84:51:b6:c6:f8:91:82:b4:d8:1f:46:7e:fa:42:
02:35:82:33:2b:2a:d2:a9:6b:57:62:1b:84:5a:9e:7a:6c:37:
52:de:a4:8b:89:7d:ad:1b:b7:3c:2b:ef:b5:50:0a:7c:07:e3:
2c:ee:de:f2:9b:d2:4a:c1:7f:a9:6b:19:58:52:1c:2f:3c:62:
07:50:ee:bb:41:c7:f3:99:a3:ae:84:f4:d9:4b:48:0d:3c:ba:
27:52:c6:90:eb:38:c9:12:1a:60:24:a8:6e:9a:9d:c8:92:1a:
d0:ac:8c:5c:1a:ad:4e:82:8d:fd:70:ea:96:ec:b9:e8:4f:17:
40:7d:49:4c:17:02:04:a4:d6:08:11:b5:bf:06:57:90:5f:69:
1e:71:f8:5a:bb:8b:3f:d2:1e:88:91:20:c7:03:db:b7:d8:dd:
2b:25:69:7a:f4:64:80:a8:8d:86:fd:6f:13:53:7b:88:aa:96:
18:91:77:0e:f4:24:a5:96:c3:6b:41:ae:70:a0:ef:b1:08:22:
26:e7:ff:7f:d7:bd:a9:19:87:b3:f6:43:bc:bb:03:e8:c3:55:
42:08:b5:0b:eb:65:b3:ef:a6:9e:01:b0:a3:85:87:61:7b:4f:
25:e1:66:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQRpA/+ZNMijhQn63uQbRcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkZjE4MTFmMzk5N2I5NTBhYzg5ZTQxMGVhM2VmMDE4YTY3
M2Q1ZmMwHhcNMjUwNjA4MTYwMTMxWhcNMjUwNjA5MTYwMTMxWjAzMTEwLwYDVQQD
EygwMGQ5NTljM2EwMjU2OWM1MTljNzM3ZjQ3YWQ5NmU1MjYxZGI2ZWNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFDSkhcF//ACLhDPlvgdLgOdShTZ
aWpGTxT6efsYszBZUNgDH4bjLQr5q6KRtUZYJW+eOCkSDoQGYGUg9vrEuT/g2JE3
1o/pg1TP75hwCRcT10UxcsGC4KOdBwbXp26+baZ4t4vGN8BD7/HyDKIqbVcv4I8+
dsWZd2fuT8mpcz21orHc8I8g2QHf6u5EplQt9xW145Eye0fq6PhndpEp2OkOuyv4
rRmARMP04pWN8kwB70Lg0cuB07AFgHQFTofWXHk+oeeoX6zBYMmf/tGjtvO1FcL0
N9Su97NPIfa82+bcXmmxp6NZGCkWCSYkBD7GrHUhM8xwAXJWuTr0+InFBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFADZWcOgJWnFGcc39HrZblJh227NMB8GA1UdIwQY
MBaAFE3xgR85l7lQrInkEOo+8Bimc9X8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGZHQkh6bVh1VkNzaWVRUTZqN3dHS1p6MWZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8zZmU5MzEtN2RkNi00NDNiLWFhZGUt
ZDlhNjE5MzdhMWU1LzEvVGZHQkh6bVh1VkNzaWVRUTZqN3dHS1p6MWZ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi8zZmU5MzEtN2RkNi00NDNiLWFhZGUtZDlhNjE5MzdhMWU1
LzEvVGZHQkh6bVh1VkNzaWVRUTZqN3dHS1p6MWZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAUR6MmLr
ciV6mL73kAjZmGXbohurJIRRtsb4kYK02B9GfvpCAjWCMysq0qlrV2IbhFqeemw3
Ut6ki4l9rRu3PCvvtVAKfAfjLO7e8pvSSsF/qWsZWFIcLzxiB1Duu0HH85mjroT0
2UtIDTy6J1LGkOs4yRIaYCSobpqdyJIa0KyMXBqtToKN/XDqluy56E8XQH1JTBcC
BKTWCBG1vwZXkF9pHnH4WruLP9IeiJEgxwPbt9jdKyVpevRkgKiNhv1vE1N7iKqW
GJF3DvQkpZbDa0GucKDvsQgiJuf/f9e9qRmHs/ZDvLsD6MNVQgi1C+tls++mngGw
o4WHYXtPJeFmsA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 23:11:56 2025 by rpki-client