Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
File: tPSWmNCOjCg8DfKoLxaZfmJZurY.mft (raw, json)
Hash identifier: jKXBKePwzvaRdhfCpPiaZPxAv8fttNn5z5bhAEj0U9E=
Subject key identifier: 7F:2E:5C:E3:AC:54:99:9A:D3:13:F4:54:54:0A:30:24:1B:5A:0A:8F
Authority key identifier: B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6
Certificate issuer: /CN=b4f49698d08e8c283c0df2a82f16997e6259bab6
Certificate serial: 01974967FF9A5D91AE28A92C6DF27DE36605
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
Manifest number: 0749
Signing time: Sat 07 Jun 2025 08:00:41 +0000
Manifest this update: Sat 07 Jun 2025 08:00:41 +0000
Manifest next update: Sun 08 Jun 2025 08:00:41 +0000
Files and hashes: 1: tPSWmNCOjCg8DfKoLxaZfmJZurY.crl (hash: j+5CcQYIJkzotvGynpiCyJJFm5UGQvy90jjKKcXjS84=)
2: xzawIGSZ9gaUq6klJYybOrl_u8k.roa (hash: 1673awjNQrA/kSjVn3AcQmjZN9mvF8MpaJPKmYa0E/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:ff:9a:5d:91:ae:28:a9:2c:6d:f2:7d:e3:66:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f49698d08e8c283c0df2a82f16997e6259bab6
Validity
Not Before: Jun 7 08:00:41 2025 GMT
Not After : Jun 8 08:00:41 2025 GMT
Subject: CN=7f2e5ce3ac54999ad313f454540a30241b5a0a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:08:24:ab:4b:ba:ab:74:e7:9e:60:ed:06:c6:
c2:73:65:02:b1:90:ed:d8:bf:1c:19:3f:15:ae:69:
a7:ad:0a:bc:f1:f1:c9:6d:bc:44:cd:b5:cc:1f:6f:
1e:a4:43:d7:d6:37:29:cc:ec:c5:2c:9e:c0:74:a1:
9e:a4:1a:a9:c8:6e:b4:23:aa:30:d7:8e:2f:50:98:
87:16:79:4b:e2:96:52:e2:f5:62:48:f1:d8:dd:7a:
8f:0d:7f:f8:1d:01:6a:47:f8:67:e1:3d:5c:dd:36:
8d:fe:99:e2:45:e2:3c:f3:a4:89:5a:7e:7e:48:dd:
45:bb:ab:41:bf:51:b6:48:28:d8:26:e8:1e:7e:50:
a5:1f:21:21:b9:0e:4b:88:ae:f8:ec:4e:0a:6d:15:
3f:ea:eb:ce:07:9b:aa:11:c9:46:3b:0d:c7:85:85:
70:ed:35:ff:56:e7:6f:0f:68:63:e6:02:d3:68:10:
aa:04:25:d4:d2:84:8b:5c:c8:38:97:9a:9f:13:fb:
14:1f:f1:df:82:b6:fd:37:0d:8d:eb:41:36:2d:f7:
60:bd:d5:eb:37:b7:75:4c:97:b4:5d:a3:4a:4d:2d:
73:87:1c:fd:81:c4:d6:df:4e:b1:09:92:49:4b:4d:
0b:48:f5:fd:43:7a:b9:f4:98:84:c2:46:de:19:80:
a5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2E:5C:E3:AC:54:99:9A:D3:13:F4:54:54:0A:30:24:1B:5A:0A:8F
X509v3 Authority Key Identifier:
keyid:B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:ef:58:f4:94:56:45:7d:15:1c:3f:d9:c9:6b:89:29:ed:c3:
6a:ec:b4:55:89:83:ea:80:1d:0a:ab:7c:ee:31:3a:d0:48:8f:
f8:5d:a9:4d:36:27:90:9f:1f:1a:03:a1:ad:0b:dd:e6:86:8b:
44:74:63:a9:17:36:f5:e5:71:c9:37:68:15:96:61:9a:6b:71:
be:35:d9:cf:55:3c:ee:7e:4c:47:d9:86:46:b3:92:4e:22:d7:
2c:25:19:d8:cf:da:89:f0:38:4d:5b:50:7d:20:51:a5:ce:aa:
df:23:3f:ac:05:55:84:20:3e:19:74:23:7e:e2:6b:40:61:ea:
6a:20:f1:f7:2e:e3:f5:d5:a7:33:00:fa:59:18:ea:86:a4:31:
1e:82:b6:a4:fb:d6:96:99:01:ff:5d:8e:3a:76:43:52:a2:88:
fe:43:d1:e6:89:8b:3d:96:0e:e5:b1:54:72:5d:44:23:a3:ed:
97:f3:ad:a2:6c:68:87:bc:02:b6:78:3c:6a:98:dc:de:1f:8f:
e4:ed:ff:85:36:c6:77:af:8f:e5:76:f5:79:7d:c6:5a:07:b9:
04:d4:ca:80:03:b5:ee:8b:12:1f:c9:1a:b5:96:0f:9f:be:5c:
c8:cf:06:bc:62:40:f7:8a:32:2e:1b:20:4a:04:95:49:a6:ce:
60:64:95:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:28:01 2025 by rpki-client