Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
File: sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft (raw, json)
Hash identifier: 7RqlpvzlkAmK5iVD51wlEcW7OJKqc4noAXdbbQYQwQw=
Subject key identifier: 8D:E8:29:C9:D0:7D:05:03:A8:A1:C7:CA:F7:0B:03:6C:F4:BF:A0:D6
Authority key identifier: B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94
Certificate issuer: /CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
Certificate serial: 0197542311BD5B65707119B625C549277E57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
Manifest number: 0A66
Signing time: Mon 09 Jun 2025 10:01:13 +0000
Manifest this update: Mon 09 Jun 2025 10:01:13 +0000
Manifest next update: Tue 10 Jun 2025 10:01:13 +0000
Files and hashes: 1: Ewu_L9NGAMIn9J1bD2mKPYHfLN0.roa (hash: MPg//qxTuFJeVfIte2bOUUVJ5G8w+mQ6T68mV0V7xWY=)
2: sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl (hash: P85UX+f1Vu3WIZjO1YVbspjh32fA8/yS6/wTiDtdgOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:23:11:bd:5b:65:70:71:19:b6:25:c5:49:27:7e:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
Validity
Not Before: Jun 9 10:01:13 2025 GMT
Not After : Jun 10 10:01:13 2025 GMT
Subject: CN=8de829c9d07d0503a8a1c7caf70b036cf4bfa0d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:37:99:66:5f:e7:ad:25:d4:aa:71:c3:ed:c0:
52:98:bf:2e:4a:9b:49:7b:c9:33:6e:b4:b7:83:2c:
1c:7f:cc:c8:a2:38:55:24:b6:c7:dc:d1:6d:08:1c:
e4:1e:67:2e:c1:11:b3:41:2d:c8:a6:2a:dc:c8:96:
40:ba:8e:d4:86:df:14:1d:b6:a0:f1:cb:4b:e5:c4:
cc:32:6e:cb:a2:52:7e:b8:c9:2d:c1:ee:80:c7:28:
c3:c8:2e:99:44:87:82:55:b8:51:c0:0e:e6:ba:9e:
f8:63:f0:f8:10:37:d0:32:03:95:ba:4c:6d:99:a4:
24:f9:46:7a:09:74:c0:24:23:81:79:48:d4:25:59:
83:60:2c:3d:e0:16:31:f8:18:b4:56:8f:51:0e:99:
ee:6c:f6:b3:79:f2:ac:f5:49:14:fd:ad:2b:97:b4:
0f:d5:26:b7:5d:81:cd:b0:58:7c:9e:60:45:ce:58:
f3:0c:04:1f:05:89:36:43:45:c0:d0:80:ae:c3:5c:
8f:c1:0b:37:d3:fd:5a:cd:89:3b:15:b9:eb:cf:38:
db:d9:99:b2:c7:d0:c5:18:7c:77:a4:7c:77:e6:c9:
1f:82:33:f4:19:94:0b:8b:f9:27:b3:77:41:c7:de:
3a:7b:4d:ef:f6:b4:75:79:d0:53:fc:18:94:a9:e7:
c2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:E8:29:C9:D0:7D:05:03:A8:A1:C7:CA:F7:0B:03:6C:F4:BF:A0:D6
X509v3 Authority Key Identifier:
keyid:B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dd:b5:b3:29:4b:6e:04:98:c5:9d:d2:ba:69:d6:a1:54:e1:84:
9b:73:1b:fc:06:85:8d:9f:23:ab:fc:36:7c:08:44:e0:39:7d:
50:32:8f:7e:c5:c3:52:55:b5:d4:84:e7:85:5a:b5:ec:60:70:
bd:81:51:63:3c:e6:a1:f9:a8:44:cc:77:5e:bd:90:ff:d2:28:
6b:93:f3:36:f1:25:8a:73:b7:c0:2f:1a:40:4f:aa:db:2e:2c:
d5:d1:8a:5f:97:d8:be:c3:83:e2:84:50:3f:b3:f7:61:9d:b8:
17:a1:3b:5e:da:c5:ff:68:88:37:b9:3c:e1:44:0d:28:9d:c7:
5f:1e:24:ee:8e:05:04:a6:5e:cd:91:3a:5b:24:93:8f:1d:44:
f2:4a:f4:46:f4:32:b5:07:1a:34:3b:65:23:7d:88:c4:f1:0b:
63:30:a1:0b:1b:00:79:88:28:90:db:22:e1:4a:ce:dd:82:95:
dd:b0:48:94:5a:2b:8d:0b:c8:5d:ed:d3:aa:ee:e2:38:a1:5b:
bf:96:f2:5a:2b:17:67:96:c4:30:67:0a:ca:b4:eb:57:d9:30:
68:85:a2:a6:f4:b7:0c:17:4f:ca:42:90:d0:08:0a:05:ca:a7:
33:b8:66:b2:5c:8b:fb:c1:31:15:24:36:2e:13:be:2b:1e:8e:
1c:71:c1:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 13:05:02 2025 by rpki-client