Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
File: tF9VYNefBKktehUPPtjaQwir6jM.mft (raw, json)
Hash identifier: z8ciGi+MgFR1PqpaBuVcrS97u6/2TXe6pQ+HeRPKDNU=
Subject key identifier: 54:36:52:AF:FB:21:B5:44:B7:34:65:F0:0F:E3:92:FA:B0:18:7F:C9
Authority key identifier: B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
Certificate issuer: /CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Certificate serial: 019746D48FCF86F01A80F70485BD8B8A10CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
Manifest number: 1103
Signing time: Fri 06 Jun 2025 20:00:24 +0000
Manifest this update: Fri 06 Jun 2025 20:00:24 +0000
Manifest next update: Sat 07 Jun 2025 20:00:24 +0000
Files and hashes: 1: rFHksT2fJAQ7epdh-sMDgGR2SM4.roa (hash: Z/iFpAzmqAm2KrlQVqRFy4X3KTo7SXYWoBA5a7g2HG4=)
2: tF9VYNefBKktehUPPtjaQwir6jM.crl (hash: /GbGkFaoZYdLABxDlvVhQNwD050UuoZ2oRYU3cmNOfM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:8f:cf:86:f0:1a:80:f7:04:85:bd:8b:8a:10:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Validity
Not Before: Jun 6 20:00:24 2025 GMT
Not After : Jun 7 20:00:24 2025 GMT
Subject: CN=543652affb21b544b73465f00fe392fab0187fc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:28:b2:44:9d:46:ac:f0:88:c5:2b:f8:b6:49:
d3:32:93:8c:93:75:a0:85:35:4a:89:c3:3e:4b:c1:
e8:60:ce:d4:55:38:31:2d:b4:0c:c3:ba:e3:83:30:
ee:d3:bd:93:35:bf:2c:79:8f:a4:55:53:66:86:6f:
f8:c0:a1:79:52:f8:1e:ae:c3:2c:8d:2a:ba:44:40:
76:46:8c:1c:ae:dd:fd:ec:c0:b1:5e:48:1f:53:37:
30:a5:56:b0:c0:31:67:07:23:7b:0e:b7:96:f2:37:
58:d4:c6:59:e9:7e:c0:ae:1b:90:74:a2:b8:b9:bd:
9e:53:cc:57:f2:03:18:49:d0:c2:5d:2e:84:c9:90:
86:9b:48:a2:b6:77:8e:ae:9a:f0:ef:99:46:63:8b:
0e:64:c3:a9:b3:d4:31:96:13:ff:c3:fc:f2:e7:eb:
8d:82:89:55:d1:61:b7:d6:a5:d8:8f:1b:9d:ff:5f:
5e:91:5a:a5:e7:48:be:fa:36:87:d6:8a:cf:7c:48:
af:38:65:58:18:f8:fb:cb:44:c0:3d:69:38:cb:86:
cc:86:21:a2:86:af:53:2f:a8:8b:b2:e8:7b:0c:fe:
78:59:a3:52:24:69:ec:5d:80:72:e3:f5:4f:80:37:
8d:6e:08:62:0e:af:29:8b:ab:fb:36:4a:59:9c:37:
c3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:36:52:AF:FB:21:B5:44:B7:34:65:F0:0F:E3:92:FA:B0:18:7F:C9
X509v3 Authority Key Identifier:
keyid:B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:8e:92:d8:4e:67:35:76:e2:e3:b5:7e:b3:0f:85:7b:bb:b7:
42:d8:4a:18:b2:dd:3c:b8:ac:c3:6e:ac:08:91:f7:3c:85:8d:
5e:db:59:3d:4a:9d:74:55:28:b6:5b:c5:f2:8f:c8:0f:85:92:
af:ea:9d:9b:e0:aa:f0:79:f1:29:99:8f:b5:d0:ec:ea:c1:bb:
bd:87:f9:bc:77:72:25:e5:74:74:3c:e5:6a:99:27:86:a8:89:
c7:53:f2:08:95:79:06:81:b4:0f:ee:b9:2b:8e:16:c3:c4:44:
c1:5c:7b:02:80:3c:d3:98:d6:44:3b:2d:67:f7:e2:62:46:73:
1e:d3:15:23:46:03:b6:a1:eb:b9:6b:29:7c:ae:d5:f5:d9:0e:
6a:f9:c5:09:c8:cc:6e:42:c6:68:3f:a9:bb:d6:fe:a8:56:d1:
c4:00:4f:22:e7:c8:77:d4:6b:68:4c:ad:82:33:97:e2:44:59:
0a:09:ef:51:c2:7c:1a:c3:57:f3:88:ae:b4:75:c0:6a:74:c6:
99:26:88:8c:fb:72:2e:49:f5:82:d6:66:62:f6:7f:f4:4d:76:
a0:d9:65:2f:45:b6:ed:46:73:09:8c:75:f4:6d:bd:8b:c8:4c:
06:ab:c9:1f:16:27:9e:cd:5f:cb:3d:d7:75:7d:6c:9a:d6:54:
b3:99:22:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:38:49 2025 by rpki-client