Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/851902-5050-46b2-b452-0599f0b2b09a/1/tMflb0aH6hstd2PQiI0QUCNbV0s.mft
File: tMflb0aH6hstd2PQiI0QUCNbV0s.mft (raw, json)
Hash identifier: NI0Gr7QmT1CVqfWiHbi08whAILyCIUyk1Q9kGL9vcO0=
Subject key identifier: 40:36:08:3E:E0:8D:81:08:6E:08:A9:CF:75:6D:82:32:49:C1:02:D4
Authority key identifier: B4:C7:E5:6F:46:87:EA:1B:2D:77:63:D0:88:8D:10:50:23:5B:57:4B
Certificate issuer: /CN=b4c7e56f4687ea1b2d7763d0888d1050235b574b
Certificate serial: 0197463040939339D845CEB3D9B19EEEF22C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tMflb0aH6hstd2PQiI0QUCNbV0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/851902-5050-46b2-b452-0599f0b2b09a/1/tMflb0aH6hstd2PQiI0QUCNbV0s.mft
Manifest number: 150C
Signing time: Fri 06 Jun 2025 17:00:56 +0000
Manifest this update: Fri 06 Jun 2025 17:00:56 +0000
Manifest next update: Sat 07 Jun 2025 17:00:56 +0000
Files and hashes: 1: fVF1mzV7lYVHRMo8LnZ24vMBIsw.roa (hash: xj9vjyKVHbKjwLJzRwcUb2ujBs2KI8YOtyKmg5bMiko=)
2: tMflb0aH6hstd2PQiI0QUCNbV0s.crl (hash: TyyY1O+mQmucr7Q1yUK72sT9gKsp9uE8+rUqvUiOW+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/851902-5050-46b2-b452-0599f0b2b09a/1/tMflb0aH6hstd2PQiI0QUCNbV0s.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/851902-5050-46b2-b452-0599f0b2b09a/1/tMflb0aH6hstd2PQiI0QUCNbV0s.mft
rsync://rpki.ripe.net/repository/DEFAULT/tMflb0aH6hstd2PQiI0QUCNbV0s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:40:93:93:39:d8:45:ce:b3:d9:b1:9e:ee:f2:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4c7e56f4687ea1b2d7763d0888d1050235b574b
Validity
Not Before: Jun 6 17:00:56 2025 GMT
Not After : Jun 7 17:00:56 2025 GMT
Subject: CN=4036083ee08d81086e08a9cf756d823249c102d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:80:7b:08:dc:ba:31:d6:f4:ba:c1:fb:9a:10:
08:9f:73:48:96:07:87:b0:9b:10:97:ca:af:09:5b:
36:36:6c:3c:11:d8:1f:d7:c2:fa:18:62:32:48:11:
59:e4:e5:1f:66:29:38:37:29:8e:9b:40:7a:fb:8a:
2f:fb:38:d3:60:e3:6a:4f:24:e4:75:b1:d1:49:f3:
06:52:3b:2a:d8:d1:75:f9:ba:f5:31:c4:03:6f:95:
7a:4d:d5:7e:e8:04:cf:e8:ba:c2:cd:1a:64:bc:06:
da:2e:ba:fa:9c:60:f6:24:44:a8:1a:72:24:c5:b9:
09:a6:9f:45:de:0d:1f:c0:a4:45:36:65:d0:4f:ea:
82:77:24:d0:70:28:e0:f4:74:40:30:fb:02:12:b1:
5c:f5:f8:78:9d:e6:42:b9:43:e0:2a:ea:60:66:36:
9a:68:34:f4:eb:b1:60:29:57:1c:6a:62:b5:cf:ac:
9e:27:f0:32:72:0a:b3:9c:0e:24:24:91:77:93:a9:
17:75:c8:0f:c1:ec:97:a9:a0:9b:79:ab:51:48:e0:
3b:6b:1d:76:f6:1e:55:ad:18:18:81:35:17:ee:7f:
af:60:cd:63:3d:63:2d:5c:c6:18:30:ca:7a:78:7a:
ee:d1:a2:31:61:51:90:b4:35:1c:7b:ea:11:b4:65:
d2:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:36:08:3E:E0:8D:81:08:6E:08:A9:CF:75:6D:82:32:49:C1:02:D4
X509v3 Authority Key Identifier:
keyid:B4:C7:E5:6F:46:87:EA:1B:2D:77:63:D0:88:8D:10:50:23:5B:57:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tMflb0aH6hstd2PQiI0QUCNbV0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/851902-5050-46b2-b452-0599f0b2b09a/1/tMflb0aH6hstd2PQiI0QUCNbV0s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/851902-5050-46b2-b452-0599f0b2b09a/1/tMflb0aH6hstd2PQiI0QUCNbV0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:8e:31:e3:ed:f1:02:5b:fa:c4:69:d5:96:93:74:45:8d:52:
f1:fa:86:94:85:21:44:7a:5f:c0:09:42:43:78:5b:cf:ca:a0:
b9:0e:73:bd:34:54:35:5a:e5:3b:fa:8f:f3:f2:1a:09:35:8c:
51:2b:32:2c:1c:8d:89:e5:fd:69:16:82:8a:46:19:af:0a:28:
ea:96:d7:06:38:3a:ce:14:c3:75:98:31:d1:34:4e:44:a6:1d:
23:25:d0:d9:92:a4:30:3b:b7:34:b0:6a:ba:ca:37:2f:c8:4b:
bc:ec:c9:06:fa:6a:e9:f4:3a:b9:87:61:61:7c:30:3f:3b:75:
31:ba:a8:ef:03:c3:9a:7e:a0:10:7a:24:a5:fa:9b:cb:f0:e8:
30:12:8d:d4:41:1d:04:5e:1d:47:9a:b3:d9:e8:00:26:df:a5:
2d:d9:8e:72:b4:cf:f7:d0:65:b4:e4:f4:9a:fe:a5:5d:9c:4f:
65:45:d3:d7:20:f9:bf:b5:7e:24:2f:48:01:6a:b6:de:7b:2d:
7d:db:b1:b6:c6:84:f2:40:00:f0:31:d2:27:91:e7:c6:81:2d:
46:41:15:91:dc:f3:98:9a:9e:75:b7:43:b0:6b:14:8e:63:7f:
ba:01:2a:c0:3f:5e:61:ae:df:31:ac:6a:f5:08:ac:52:c8:20:
ac:c6:23:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:05:24 2025 by rpki-client