Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
File: tu1iBVpRkcAuxREulRgaiawGDOs.mft (raw, json)
Hash identifier: ChDDyFnxASm03nJa6vgFVjcHWJBULhJ+0uLzfrvgM6w=
Subject key identifier: C4:CD:DF:D3:09:80:40:3B:8F:A0:24:C1:0C:F5:E6:FB:53:32:82:01
Authority key identifier: B6:ED:62:05:5A:51:91:C0:2E:C5:11:2E:95:18:1A:89:AC:06:0C:EB
Certificate issuer: /CN=b6ed62055a5191c02ec5112e95181a89ac060ceb
Certificate serial: 019746D4C1E53D8FE8DDB95D0F17BE17FEAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
Manifest number: 0AD5
Signing time: Fri 06 Jun 2025 20:00:37 +0000
Manifest this update: Fri 06 Jun 2025 20:00:37 +0000
Manifest next update: Sat 07 Jun 2025 20:00:37 +0000
Files and hashes: 1: iOo8WZeBs16BOwEjC7IsPMOtPO0.roa (hash: FC5R1Hrtvnbfsyec/XOyQavDbuFW5mY0wSOTHI+QutE=)
2: tu1iBVpRkcAuxREulRgaiawGDOs.crl (hash: kF3IuNI1qv63p1UaZj1nuUF+v3CxWIn+XANPyrXw/A8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 20:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:c1:e5:3d:8f:e8:dd:b9:5d:0f:17:be:17:fe:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ed62055a5191c02ec5112e95181a89ac060ceb
Validity
Not Before: Jun 6 20:00:37 2025 GMT
Not After : Jun 7 20:00:37 2025 GMT
Subject: CN=c4cddfd30980403b8fa024c10cf5e6fb53328201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:49:ea:3d:18:a8:ee:09:0a:3f:61:d8:87:48:
86:0e:53:4a:ae:ae:a4:5c:a3:27:0b:c8:b8:77:43:
c7:e2:2c:4a:5b:2a:46:53:97:05:7c:10:f6:1a:71:
6c:df:dd:81:ec:fa:79:9f:09:70:15:99:c0:a9:a5:
52:91:21:1a:eb:0a:6a:e0:83:78:11:bc:31:1b:3d:
f9:89:bd:89:15:f6:5b:6b:94:d6:db:fd:d0:49:bf:
54:57:c9:f8:da:6c:49:70:08:0d:13:19:47:ed:08:
75:c7:4d:30:56:47:36:16:c5:9c:05:f4:26:82:19:
18:db:26:8e:83:e2:e5:4f:4c:d4:19:da:2d:52:a7:
89:8a:48:a4:07:9a:2d:ed:68:77:ac:3e:e6:67:db:
06:ae:70:5f:e8:49:bb:02:89:4b:6a:2e:c8:fa:f7:
ae:d3:3d:19:37:29:33:39:b3:8f:e8:5a:e5:73:aa:
ef:e6:54:b2:fd:0e:b5:01:c9:04:12:12:45:2e:47:
d1:98:a4:33:a0:08:0f:ea:af:d2:06:ff:5e:1f:18:
96:66:0a:d0:c4:68:2e:d7:6c:10:4d:ce:74:36:54:
d8:7a:c7:3a:6b:01:47:95:9f:19:69:99:68:8a:bc:
e9:5e:7a:15:87:d6:a4:d6:c1:c8:fd:79:fa:87:9e:
de:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:CD:DF:D3:09:80:40:3B:8F:A0:24:C1:0C:F5:E6:FB:53:32:82:01
X509v3 Authority Key Identifier:
keyid:B6:ED:62:05:5A:51:91:C0:2E:C5:11:2E:95:18:1A:89:AC:06:0C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:7e:6f:dc:02:2d:b8:fb:bb:d7:9e:f2:b3:5d:5d:f5:24:d3:
b8:77:e4:a5:dd:ba:58:5d:fa:d3:c1:81:65:54:1e:e7:16:0e:
e3:5d:62:7b:42:6c:a1:35:c3:3e:02:69:c6:88:18:ac:d7:01:
8a:c0:70:bd:48:2f:5f:ae:98:ac:43:88:74:76:08:49:ff:a2:
a2:ba:66:07:4b:b7:64:91:50:a7:22:fc:44:e4:d8:34:97:f3:
76:1f:32:3e:d0:69:51:a5:03:f0:2e:c9:26:8e:b9:7e:5c:7c:
c4:32:7e:98:f3:26:a3:7b:ac:93:9f:99:21:a3:b1:fe:a8:c3:
4e:45:d7:c5:c7:aa:f1:58:77:6a:eb:9b:17:fb:8e:b8:82:e8:
9f:f6:52:29:40:ef:32:f3:45:09:81:5b:a1:6a:a4:99:99:f7:
f6:fa:e7:41:71:88:58:d6:44:56:7c:55:68:f4:c5:a4:bb:70:
b3:6f:b1:49:b6:06:0e:06:59:38:24:4b:93:a8:85:8e:00:df:
5f:ac:e9:93:1d:ed:ac:0c:20:56:d7:1d:c9:c5:69:63:23:80:
8b:d9:72:e4:5f:fa:e0:6f:78:6b:1d:2d:17:a8:48:be:87:49:
ab:ed:4b:b5:ad:74:12:e2:77:4f:b7:24:a9:da:73:3b:65:ad:
aa:d4:e4:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:26:18 2025 by rpki-client