Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.mft
File: TlyvXlSV9UsDnx0PJHERJGfJeRw.mft (raw, json)
Hash identifier: SaPBxMlZhGxsb+YAWkVaAkghIG4ZOqSIeCgON2jRH84=
Subject key identifier: A1:D7:D8:AA:0A:A8:5A:70:9B:26:C6:96:C7:16:A2:1A:8D:90:F2:0F
Authority key identifier: 4E:5C:AF:5E:54:95:F5:4B:03:9F:1D:0F:24:71:11:24:67:C9:79:1C
Certificate issuer: /CN=4e5caf5e5495f54b039f1d0f2471112467c9791c
Certificate serial: 0197462FC319320EF6265423D09CD0A472FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TlyvXlSV9UsDnx0PJHERJGfJeRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.mft
Manifest number: 157D
Signing time: Fri 06 Jun 2025 17:00:24 +0000
Manifest this update: Fri 06 Jun 2025 17:00:24 +0000
Manifest next update: Sat 07 Jun 2025 17:00:24 +0000
Files and hashes: 1: Sjk-hMVz5Yq15653m82LHzN2q2c.roa (hash: v2IafRkq9Sg922Tj4NY8dbGZtPOD35/xpm6wAYKPODI=)
2: TlyvXlSV9UsDnx0PJHERJGfJeRw.crl (hash: nQjuOyZM9k9MpuaPd3tCfQmQPNuaBQSDgmERq/TA6UE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TlyvXlSV9UsDnx0PJHERJGfJeRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:2f:c3:19:32:0e:f6:26:54:23:d0:9c:d0:a4:72:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e5caf5e5495f54b039f1d0f2471112467c9791c
Validity
Not Before: Jun 6 17:00:24 2025 GMT
Not After : Jun 7 17:00:24 2025 GMT
Subject: CN=a1d7d8aa0aa85a709b26c696c716a21a8d90f20f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b0:92:91:b0:11:08:bd:74:1f:ae:2f:b3:41:
99:34:c8:a1:80:61:29:5e:c2:7b:29:f1:68:5d:82:
fe:51:8e:bc:30:ff:7f:1d:18:17:38:be:b7:7b:b1:
7f:02:5a:5f:25:8a:1d:1a:ce:f8:0e:bb:dc:c0:4b:
a4:dd:03:7e:6e:97:45:88:dd:34:ec:f4:e4:73:0a:
c8:ae:9f:4a:a3:79:1b:fd:f0:87:6d:f7:8a:11:84:
51:9a:ca:e9:11:9a:6f:98:b2:2e:24:44:91:83:51:
46:2a:0f:6f:f1:ef:58:01:1d:43:16:58:30:7b:7e:
5d:a8:23:04:cf:8e:ab:61:51:4c:24:6c:fa:10:1e:
01:f7:de:69:3a:f7:c7:03:b9:d8:85:7a:58:d0:60:
3a:50:bf:2f:38:d9:9d:42:f5:77:a9:1e:db:7b:c7:
77:50:1d:0e:25:23:73:48:35:6c:ef:bc:c7:e5:d2:
6c:73:f5:9e:7b:9d:84:e2:e5:50:2b:72:2b:81:aa:
9b:e8:fb:6a:33:48:00:dc:e4:97:ae:27:32:ec:64:
33:22:53:d2:bd:ee:fa:9e:0d:5e:86:19:c6:5a:ef:
33:a0:c5:59:b3:88:86:d6:01:3c:7a:1b:79:03:84:
7a:37:02:15:df:84:df:70:99:52:e1:90:13:37:dd:
20:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D7:D8:AA:0A:A8:5A:70:9B:26:C6:96:C7:16:A2:1A:8D:90:F2:0F
X509v3 Authority Key Identifier:
keyid:4E:5C:AF:5E:54:95:F5:4B:03:9F:1D:0F:24:71:11:24:67:C9:79:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TlyvXlSV9UsDnx0PJHERJGfJeRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:30:56:54:8b:d4:46:91:09:37:e7:df:f7:eb:a0:8a:b2:59:
38:0b:5a:4f:a7:be:9b:b3:67:d1:5a:63:f7:6b:d7:21:03:da:
b8:8c:e0:e2:7f:74:5f:07:f2:01:4c:6e:5f:16:58:07:8b:c9:
02:b1:46:a9:8d:3b:fd:c6:68:dc:34:68:51:7b:5e:ce:49:4a:
c8:bd:95:28:52:2e:38:fa:91:e4:99:87:bf:19:02:b6:89:65:
b1:e2:83:64:bc:86:a8:d3:6f:33:56:8e:70:1f:20:11:ca:59:
41:21:6a:10:94:2b:f5:e3:d0:da:f5:3d:5e:21:6a:42:bb:fd:
06:a4:c4:06:fa:53:82:ca:28:7e:f7:c9:58:14:c6:55:70:28:
61:ee:42:0c:e9:42:27:75:ff:58:3a:fa:4d:8b:94:dc:03:17:
4d:87:1e:de:40:65:5c:f8:db:74:78:93:19:cb:48:3b:49:87:
75:53:64:18:a3:e4:1f:67:83:b6:5c:0d:d3:d7:ca:8a:6c:ee:
64:fb:87:5e:d9:e0:c2:19:7c:d6:44:d1:8c:4a:b3:ae:02:58:
c9:65:44:7a:a1:01:30:1d:da:f0:75:49:11:ca:9a:83:9d:e2:
bb:58:5a:c8:19:64:e7:1a:f8:a3:0f:6b:0f:94:80:46:fd:a6:
8b:ab:a7:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:38:17 2025 by rpki-client