Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
File: TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft (raw, json)
Hash identifier: T8FJOXo08y2p2M8rd/629VrNk4kSvoMKQ4Y2UT1ssM0=
Subject key identifier: EC:FA:04:B3:59:EF:8C:8F:ED:5B:81:6A:66:21:29:39:E3:A7:7E:68
Authority key identifier: 4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE
Certificate issuer: /CN=4da3711dc5de45f2f5b47901659e956d938272fe
Certificate serial: 019747E799B29F9D0003A95CCD6016EF4C03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 01:00:49 +0000
Manifest this update: Sat 07 Jun 2025 01:00:49 +0000
Manifest next update: Sun 08 Jun 2025 01:00:49 +0000
Files and hashes: 1: 7YKaewqyZbI9lVFIivFUL2FPVzU.roa (hash: wf42n7crwFg9XaXHUPxEE3NTHiwbzXO1xRDVNEMLG6A=)
2: TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl (hash: 60B2Mta8AsKxNjUJnrYfVTS/OHcnY8SYf3a6pZA0edA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:99:b2:9f:9d:00:03:a9:5c:cd:60:16:ef:4c:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da3711dc5de45f2f5b47901659e956d938272fe
Validity
Not Before: Jun 7 01:00:49 2025 GMT
Not After : Jun 8 01:00:49 2025 GMT
Subject: CN=ecfa04b359ef8c8fed5b816a66212939e3a77e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0f:51:68:56:61:92:87:a2:b8:f2:58:2d:6e:
e9:43:4e:b4:03:91:9d:ed:b1:7d:2c:9e:fb:05:1f:
73:d9:88:f8:a8:4d:cf:3d:18:09:e9:2e:cd:9e:b1:
a4:ee:0e:84:9a:b3:ca:fa:6f:fd:10:b4:07:0a:e5:
3b:fd:3f:88:c5:42:ed:d3:7c:a1:33:2d:8e:91:f0:
b0:33:e6:a0:62:9d:bd:ae:ca:be:7b:72:f2:a1:ca:
82:bb:2d:b8:13:d1:7f:29:8a:02:87:b7:5b:e6:91:
ef:69:0a:99:81:1c:1e:85:b2:2f:b6:31:cf:e6:52:
cf:16:d5:a9:cf:ff:e7:21:aa:ee:87:f2:50:d0:f7:
71:82:f8:82:22:71:ee:08:42:c7:16:8f:ea:28:e0:
82:13:fd:8a:51:7b:93:e0:95:a7:a6:bd:5c:de:14:
5b:68:e2:e2:3f:36:5a:65:e3:76:c9:83:3f:a6:3e:
11:7f:31:3b:50:89:dc:c5:85:fb:e8:68:94:f3:16:
d5:ae:f9:04:5d:9e:82:a3:ad:b5:63:c1:6c:b6:29:
6d:ac:61:0a:54:b7:53:0f:7b:5e:f4:ad:60:66:e4:
41:da:4a:75:f5:65:f4:68:aa:d9:31:ba:d5:ba:8c:
10:a3:d6:c5:8d:35:5a:dc:13:b3:4c:d5:f0:4d:e8:
ce:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:FA:04:B3:59:EF:8C:8F:ED:5B:81:6A:66:21:29:39:E3:A7:7E:68
X509v3 Authority Key Identifier:
keyid:4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:6b:8d:f8:fc:98:b6:1f:88:eb:21:20:08:15:b9:7b:43:c2:
12:1b:0b:09:20:94:f6:c9:d0:5f:e2:5d:0c:55:9b:d6:23:ed:
e8:34:1b:97:b9:17:99:0a:af:db:7e:e4:ae:ba:cc:f3:cc:e9:
30:14:13:93:5b:76:1e:a7:ed:ed:65:64:af:b3:1c:07:f7:b9:
43:bb:2b:a4:b4:4d:58:92:35:0d:52:9b:2f:a4:08:2e:6a:d1:
3d:35:2e:52:5d:75:2e:43:42:11:0f:24:e7:7f:c6:d3:43:c0:
f9:52:9d:c8:7a:70:42:f4:a1:94:12:0e:81:65:4b:62:76:ec:
ed:0c:f7:7d:c8:a4:df:de:b6:60:b4:7b:47:70:5b:93:2e:c4:
3b:b5:0f:17:db:93:6b:56:30:77:ce:c6:36:ef:21:76:b1:23:
d2:e2:d7:3f:0a:35:76:40:4b:62:3d:73:1f:39:dd:ec:b1:0f:
1a:e3:f3:0b:d2:d3:dc:d5:35:3b:d7:2f:09:ea:40:07:86:cb:
09:21:70:94:04:0b:0f:55:9d:56:13:4d:e6:92:d4:05:cb:49:
6d:79:14:9c:d5:c3:76:ad:a4:be:0d:c9:93:bd:31:bb:d5:2e:
34:65:f9:de:a5:3e:92:9b:b0:8d:c5:dd:33:c9:1e:3f:48:b1:
4d:c6:e1:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:07:58 2025 by rpki-client