Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json)
Hash identifier: tou6eMOP0Z365kY43E7VUcLURjITQOTu01hlNUqZmjw=
Subject key identifier: 1E:AE:EA:0B:C2:CB:0C:AC:98:B1:9B:55:C9:F8:60:AB:05:0D:52:6A
Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136
Certificate serial: 019749682BB5CE02143C5D87FBD263587AC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
Manifest number: 0A0C
Signing time: Sat 07 Jun 2025 08:00:52 +0000
Manifest this update: Sat 07 Jun 2025 08:00:52 +0000
Manifest next update: Sun 08 Jun 2025 08:00:52 +0000
Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: Akahd6eC5uhXBJS227ij8kutGI3Cqok9SB3tkVSzLgA=)
2: ELYZJGHcWhKUiY7ABJ-PY-iSroQ.roa (hash: XKv64QH5ODk1+MXzK56Lue/Lun/NuUmKCWEmKamL9J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:2b:b5:ce:02:14:3c:5d:87:fb:d2:63:58:7a:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136
Validity
Not Before: Jun 7 08:00:52 2025 GMT
Not After : Jun 8 08:00:52 2025 GMT
Subject: CN=1eaeea0bc2cb0cac98b19b55c9f860ab050d526a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:67:3c:59:27:cc:e6:50:58:e3:d1:cf:72:66:
33:b7:32:c7:7d:37:6f:7f:55:b4:70:d5:66:92:d2:
35:22:ba:5b:03:d6:9c:69:e3:06:89:3c:d4:35:3a:
48:e6:40:c1:6c:04:bd:01:89:ff:1a:7b:4b:87:8c:
46:f2:7f:04:13:45:4c:7f:12:50:43:14:d0:b0:39:
e2:4b:49:13:19:43:9c:0e:86:09:35:14:12:33:9d:
08:0e:1a:c8:77:83:38:7e:4f:4c:d8:54:d9:85:35:
5a:5b:87:10:4f:60:6d:82:45:3e:7b:1c:da:61:13:
0c:26:8b:58:f7:71:98:96:fc:8a:b4:50:21:b3:cb:
8b:28:84:56:36:49:60:b5:31:7a:51:1f:60:c9:79:
3e:1b:30:e1:6c:0b:f5:fe:28:d8:dd:b5:68:1e:e4:
cc:63:a3:86:38:c8:ac:9d:46:1e:a4:eb:17:f4:41:
de:ac:95:08:25:6e:e5:e8:26:2c:3b:28:d8:fe:c4:
87:62:d3:2e:6a:06:ac:3c:8b:a8:e2:16:d5:7c:76:
5f:a8:b4:b7:c2:a6:9c:63:28:3e:4a:89:d5:3b:89:
cd:49:74:c6:70:2d:25:55:88:cb:e7:16:67:91:9c:
ae:3f:ea:33:f4:95:15:eb:c9:98:64:46:b5:7b:70:
49:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:AE:EA:0B:C2:CB:0C:AC:98:B1:9B:55:C9:F8:60:AB:05:0D:52:6A
X509v3 Authority Key Identifier:
keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:e5:e6:24:69:6f:ac:ad:d1:ec:5a:5b:64:d3:c5:dc:f4:a8:
b3:52:1d:35:91:04:c2:b4:e3:56:5b:b5:1d:dc:1a:bf:f0:dc:
59:09:d8:08:0b:d2:2a:a7:71:d1:ac:74:9c:81:5e:35:b5:37:
80:9a:77:97:fd:f1:05:d0:2b:d1:e9:15:ef:5b:91:87:be:2f:
db:5f:90:81:99:a1:94:ad:42:71:fd:d0:a8:08:d4:e7:8d:9c:
6b:7b:31:9b:f9:c2:41:91:cc:4a:bb:d4:52:41:55:6d:83:90:
e0:02:69:55:35:a9:d2:33:9a:da:da:07:10:eb:77:f0:4b:dc:
ef:04:d7:16:3a:92:9b:67:5d:f2:73:88:e7:8c:85:47:1e:b1:
2f:da:c1:4e:4e:b8:48:53:e2:e6:91:1e:62:2a:4b:ff:63:b0:
c4:c7:83:c1:3b:ec:8d:98:72:22:57:81:4a:00:df:10:f4:a0:
c7:ff:ce:32:ca:4a:2d:aa:92:2b:a7:8d:b1:f8:a1:4a:af:50:
bd:65:61:a5:48:55:84:19:d0:22:86:6e:4a:61:01:4d:a6:35:
37:f5:6d:85:60:af:4b:22:32:52:d0:e1:74:dd:f3:b8:c4:bc:
e6:c8:a1:ad:f9:5e:65:d2:f3:4c:20:62:46:60:12:03:ad:70:
07:c7:14:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:38:31 2025 by rpki-client