Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json)
Hash identifier: AGvdC0kFHBd7K8rKvTDtuXmsAgEekTrngCx4aiVfECo=
Subject key identifier: ED:EE:21:DF:0C:3E:6B:2B:30:EF:8C:0B:A5:F2:3E:1F:AE:54:C5:CB
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 01974E580D0677BB24F0D63A5617AEDFBFED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
Manifest number: 06C2
Signing time: Sun 08 Jun 2025 07:01:22 +0000
Manifest this update: Sun 08 Jun 2025 07:01:22 +0000
Manifest next update: Mon 09 Jun 2025 07:01:22 +0000
Files and hashes: 1: 1SqAG3Japdqs2uBvGFHguJLvhqE.roa (hash: tRLIPOPh9GLi7wL54w2K0S63l5p5YYde2YPqeJx3wD8=)
2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: 0o5Zo0QKuGU1VG5h6lB+Wic5s5WukIj2sB73J3hg5Ds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 07:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:58:0d:06:77:bb:24:f0:d6:3a:56:17:ae:df:bf:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: Jun 8 07:01:22 2025 GMT
Not After : Jun 9 07:01:22 2025 GMT
Subject: CN=edee21df0c3e6b2b30ef8c0ba5f23e1fae54c5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f8:04:cf:bf:75:f0:ba:8e:55:9d:10:01:31:
8e:5b:49:73:3d:93:cb:9d:4a:b9:f4:8d:9e:34:05:
bb:0d:eb:6f:19:6c:fb:5c:48:87:45:f0:bb:77:67:
72:2a:7b:d8:04:eb:c3:55:ce:24:1f:a0:34:a6:aa:
d6:a9:ce:38:91:eb:35:7c:6c:37:74:7b:95:35:3b:
eb:bd:3d:9b:88:18:46:76:be:e2:63:be:3d:2f:85:
f8:ba:58:1f:c9:1b:53:f1:e0:c0:f3:f2:4f:79:9a:
48:46:22:72:02:d1:c1:97:5f:3e:01:fc:68:98:49:
32:28:51:0b:1b:c1:be:00:0c:a6:8b:32:bf:e4:61:
70:4c:40:74:6e:d3:6e:09:9c:d7:1d:49:4f:b6:c2:
c5:4f:05:8d:8a:03:04:98:83:59:71:b6:59:0f:8e:
d0:1e:0f:46:cf:34:6d:37:df:06:f8:09:5b:ab:ee:
60:4a:f8:ee:6f:63:86:c2:71:2a:e1:19:46:e7:8e:
f0:ff:5c:40:df:d9:65:89:dd:ea:2f:5b:d1:7c:02:
03:da:c1:cd:85:d3:b7:30:63:41:7d:7b:72:01:b3:
dc:de:34:57:12:20:20:3e:a8:44:78:30:fe:ba:50:
ce:da:f6:fc:d8:90:3b:6a:77:89:70:ce:4b:06:12:
64:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:EE:21:DF:0C:3E:6B:2B:30:EF:8C:0B:A5:F2:3E:1F:AE:54:C5:CB
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:07:1b:6d:60:d5:45:9f:9d:c5:74:eb:83:a0:7b:d2:a4:9c:
1f:fe:9c:96:e9:fd:c9:73:95:65:e8:3c:92:7c:c0:7a:3b:1e:
24:56:2e:d8:ff:77:75:42:f9:36:71:70:ac:6e:cc:2a:b4:8f:
a7:56:db:ae:3d:20:fa:93:41:35:9d:01:3e:90:11:25:6d:a6:
f7:62:00:d5:b1:69:8b:83:b6:f1:d2:34:ae:cb:21:6e:29:97:
7c:de:91:d8:4c:09:4a:97:17:67:eb:0c:f3:29:34:c1:36:b3:
60:13:90:58:22:d3:e0:07:28:f3:34:30:a2:e7:ca:a0:77:25:
18:6e:b4:e9:d1:6d:17:3b:85:f0:bd:2a:c8:ca:94:f8:a4:a9:
96:31:7c:0f:a0:de:34:75:c6:cd:5e:0e:9f:cd:d1:34:7b:42:
34:3d:3d:04:fe:8b:18:16:c7:fc:a0:6a:ed:ca:aa:cf:a2:72:
cb:e8:64:b6:59:7e:65:29:f7:ec:78:29:0d:39:a0:83:54:4e:
82:34:84:ab:8b:ff:54:3c:8d:17:d2:35:46:b3:30:b1:f9:63:
33:f3:54:b3:0f:d2:44:b3:3a:07:f9:b6:99:ff:dd:da:11:1e:
79:5e:d0:ea:97:01:05:c7:55:aa:ca:4b:e2:8b:6a:f7:99:25:
81:67:76:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:36:58 2025 by rpki-client