Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
File: Tom7FOgJr_PsljCL2a6GUafndio.mft (raw, json)
Hash identifier: EEXyNJGo8laXKNktWCAQTMwN3p9YPHanA0t/XwTXVPE=
Subject key identifier: 24:3E:30:8C:C7:0D:DD:96:78:E2:63:EC:AE:E0:59:4D:10:83:0F:D8
Authority key identifier: 4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
Certificate issuer: /CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Certificate serial: 01974AE8F94A12FB0055E143A12BB0372B34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 15:01:11 +0000
Manifest this update: Sat 07 Jun 2025 15:01:11 +0000
Manifest next update: Sun 08 Jun 2025 15:01:11 +0000
Files and hashes: 1: Tom7FOgJr_PsljCL2a6GUafndio.crl (hash: iWbW7+i2vEK4CExDVTe8arGxGDUcXp9YQWkLhmEh0mk=)
2: fxuqWXx_O_zewgAff6HXjyvgKp0.roa (hash: cm4JBhg0Zq8hHGX0z/7BWc/vnIZVK86NCDFtwq+RrhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:f9:4a:12:fb:00:55:e1:43:a1:2b:b0:37:2b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Validity
Not Before: Jun 7 15:01:11 2025 GMT
Not After : Jun 8 15:01:11 2025 GMT
Subject: CN=243e308cc70ddd9678e263ecaee0594d10830fd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ac:b3:ab:d5:88:5c:9f:b1:42:41:97:da:cc:
9d:6d:f0:fd:d3:20:0e:49:b0:8b:67:33:08:4f:f8:
34:f4:0e:b3:41:38:01:7e:9f:e5:c6:88:63:5f:df:
c1:eb:59:59:3c:fc:b8:20:ff:f0:90:bd:9e:f5:15:
34:d0:36:d7:5d:55:ff:08:1d:ca:7a:d0:3a:78:ab:
fe:cf:38:7d:22:9d:d2:16:67:09:da:31:01:d3:e1:
38:0e:42:7d:2d:2b:28:3e:33:3e:d9:aa:a4:c9:1e:
7d:45:2b:ec:49:b3:d7:0e:89:c4:74:98:77:c3:b7:
2f:cf:65:61:7d:22:51:ce:28:06:fd:2b:3b:07:38:
30:b2:c0:51:c0:89:0b:d7:3c:9d:51:79:c5:97:66:
8c:45:15:6a:2d:48:7d:af:08:61:ec:9e:c7:d9:83:
90:68:7f:1a:a2:aa:01:96:44:c7:05:61:76:d5:3b:
dc:b4:5d:c6:f4:67:51:fd:81:15:6c:06:74:23:6b:
7e:c4:a7:31:5c:0c:03:cd:b0:cc:12:9c:34:e9:1f:
4c:3d:1f:d6:67:b4:7b:0e:9a:3a:de:d9:0c:57:9d:
a8:4a:cb:5c:20:ed:d5:7b:96:28:25:bf:8b:ec:95:
89:e3:5c:02:3f:12:15:b9:76:7e:9c:65:ba:55:47:
32:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:3E:30:8C:C7:0D:DD:96:78:E2:63:EC:AE:E0:59:4D:10:83:0F:D8
X509v3 Authority Key Identifier:
keyid:4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:7c:f7:40:5e:ac:db:33:ee:37:7c:7c:b2:69:28:13:c3:a6:
07:8e:d2:ac:c0:43:6f:31:8d:28:ef:3e:90:16:20:d9:e2:83:
5c:19:7d:6f:d4:0f:86:c6:25:5d:09:cd:24:1f:01:f9:16:29:
af:01:6e:44:44:a2:17:49:95:6c:1f:e8:1f:c0:0f:88:5f:5e:
c4:f4:d7:4a:0a:93:4d:fb:90:db:8f:88:26:bd:93:55:08:51:
27:35:7e:4d:d9:15:19:c9:6f:ee:ae:19:2f:b1:f5:61:8c:36:
9a:9f:dd:be:78:47:33:86:38:58:73:51:24:0c:93:ae:22:3d:
29:54:69:0e:86:9e:0b:d1:ba:54:6c:28:b1:ea:5d:a0:ba:e9:
83:56:fb:38:5d:9e:0f:16:88:f7:9f:78:ab:a8:a5:fd:3b:4a:
d0:28:5c:e4:2b:28:e8:35:f1:f3:b4:66:4c:c1:ae:b3:5e:65:
82:90:68:a7:af:e0:b5:c8:21:fa:8d:3b:da:74:12:e1:06:ef:
a7:d6:3f:dc:ba:6c:6b:9f:65:3e:b8:0d:7f:60:00:6e:b9:be:
53:3e:e4:af:1a:24:5e:58:06:ae:e2:6d:37:9d:0b:fb:be:15:
2f:2f:7f:89:f5:08:7e:47:58:1f:62:ae:95:8a:0e:2a:86:9b:
57:fa:d0:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:55:26 2025 by rpki-client