Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
File: tDlfbOqaAYpMyEgY5qo1INMiIYs.mft (raw, json)
Hash identifier: iSwpztwE6HOsBP8eZBFNLMzOfjbd0PjIBSjehSGUe7U=
Subject key identifier: 3A:D7:E6:EC:C4:6E:63:E6:E3:A8:94:00:BB:26:2E:65:12:15:D4:59
Authority key identifier: B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
Certificate issuer: /CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Certificate serial: 0197488D2958B48ECC88E460304F237DE743
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
Manifest number: 0BFE
Signing time: Sat 07 Jun 2025 04:01:40 +0000
Manifest this update: Sat 07 Jun 2025 04:01:40 +0000
Manifest next update: Sun 08 Jun 2025 04:01:40 +0000
Files and hashes: 1: UoFhfe1D4fv5504pD16hAMtOHqM.roa (hash: f5OjLqYpJfmM6P+Sc+etueFJmxpiBV6zei8gZZWeXpE=)
2: tDlfbOqaAYpMyEgY5qo1INMiIYs.crl (hash: ue6tW1CsKbcYer5P4CVHu4eD+L2k3/L2uqW/qJlfMI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8d:29:58:b4:8e:cc:88:e4:60:30:4f:23:7d:e7:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Validity
Not Before: Jun 7 04:01:40 2025 GMT
Not After : Jun 8 04:01:40 2025 GMT
Subject: CN=3ad7e6ecc46e63e6e3a89400bb262e651215d459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:df:9a:8a:24:ba:ba:76:ea:7f:d2:17:fd:eb:
5a:7d:af:74:a8:7a:82:5b:3e:26:4d:72:f7:c0:4c:
ef:a1:e1:66:f3:ac:76:28:83:75:17:f9:31:8d:bb:
1d:7a:fc:b8:67:a0:9d:13:04:07:1c:b7:fc:1f:97:
47:2a:6d:8b:12:af:f5:d5:d7:c7:e6:b9:6c:a4:7a:
95:ce:62:bd:04:7e:be:7e:07:af:fe:5e:db:fc:27:
ba:17:8f:10:4a:53:d1:83:cb:f0:60:62:39:67:52:
ee:4c:08:a1:20:01:3a:7a:18:f7:bd:af:60:80:78:
f9:6d:77:7a:0f:15:a3:65:85:5e:3c:a1:d5:7d:23:
20:6c:42:b4:43:5e:60:44:de:1e:3c:c1:f2:ee:d1:
9c:cd:4d:83:be:12:52:40:f3:e8:e2:85:55:e7:b8:
2e:b5:47:cf:25:76:bd:6a:8e:d9:ae:fc:aa:e0:2f:
bf:4f:1e:af:62:33:7a:07:60:44:8e:10:61:31:c6:
2f:bb:07:a5:37:86:9a:8a:a8:ad:68:3c:0d:1c:49:
f5:6c:6f:7c:b2:85:8e:d7:5b:a1:b0:4a:2c:0c:6a:
dd:9e:cc:6d:9f:06:aa:f8:50:ac:3e:b9:d6:17:90:
e4:9a:a5:db:e1:7e:6a:b4:15:9f:4a:1f:35:34:ac:
b6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:D7:E6:EC:C4:6E:63:E6:E3:A8:94:00:BB:26:2E:65:12:15:D4:59
X509v3 Authority Key Identifier:
keyid:B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:a2:a5:c0:4b:03:4c:61:29:97:83:b0:cf:ad:50:02:4a:b4:
04:eb:0b:ec:f1:20:62:0d:f3:db:38:0b:08:ff:8a:e2:73:67:
10:d6:2a:1c:63:ea:81:b4:f5:c6:71:84:5d:15:fb:c0:8a:36:
37:e5:1b:5a:eb:ff:4f:cf:3d:92:02:33:83:9f:d0:0f:6f:e9:
24:82:0f:04:88:8a:8d:de:c0:71:39:0d:dd:ca:f2:09:f3:ac:
3a:ec:a5:0b:aa:f9:c4:39:38:b8:83:34:f5:c0:01:68:31:4d:
3f:a0:fd:e2:ee:47:eb:08:76:06:72:62:3e:74:3e:b1:aa:10:
aa:d1:ce:3e:58:5e:ae:34:4c:1e:8b:57:2c:ef:48:49:48:49:
81:60:85:c1:36:d8:ad:43:1e:26:9c:51:1b:dd:1d:cd:9e:63:
f9:06:1d:03:1c:a6:c6:fe:d3:0c:46:82:c1:18:66:10:4f:23:
17:bf:9f:c0:6c:b9:8c:67:98:50:9a:58:2a:a7:60:48:e5:a5:
86:de:3f:1e:f2:37:36:93:2e:6d:2b:3b:75:00:04:6e:e9:31:
70:ed:58:f5:01:44:a5:75:b5:d4:c5:19:5d:8e:73:50:82:6a:
d0:90:19:d7:01:5c:5e:37:19:4b:f2:e5:0f:f2:07:3e:f7:bd:
ea:2d:b7:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:55:07 2025 by rpki-client