Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
File: _ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft (raw, json)
Hash identifier: MoNHwW12X4PErUjFUB/s9txrr+J01sR6RWouLbdcVPY=
Subject key identifier: 86:40:83:51:76:14:EA:EE:AA:4B:54:12:E6:E6:14:35:2B:B9:2D:DB
Authority key identifier: FD:E7:2D:43:F4:C8:2B:11:46:73:7B:11:61:97:23:18:30:BF:65:D6
Certificate issuer: /CN=fde72d43f4c82b1146737b116197231830bf65d6
Certificate serial: 01974E5865C75AB130BA4F1BCFCE81D2CB30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
Manifest number: 157E
Signing time: Sun 08 Jun 2025 07:01:45 +0000
Manifest this update: Sun 08 Jun 2025 07:01:45 +0000
Manifest next update: Mon 09 Jun 2025 07:01:45 +0000
Files and hashes: 1: NEbsKu77gYfpibY3_TC8dQH80XA.roa (hash: aeVQJbng3C7RHWncwne+AehQ3FDANQdssqp/Bjc9vag=)
2: _ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl (hash: AaTXwQ092SiJvKZypYlwkGm6GV8OXYD6i/QSIhFCqQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:58:65:c7:5a:b1:30:ba:4f:1b:cf:ce:81:d2:cb:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fde72d43f4c82b1146737b116197231830bf65d6
Validity
Not Before: Jun 8 07:01:45 2025 GMT
Not After : Jun 9 07:01:45 2025 GMT
Subject: CN=864083517614eaeeaa4b5412e6e614352bb92ddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f8:db:1a:93:7d:15:ec:76:db:7d:6c:1b:8f:
87:f5:d2:f5:4a:81:f1:6d:9e:45:b7:8e:8f:fb:72:
20:95:5c:77:68:fd:b5:ac:2e:ea:ef:a7:ef:09:7e:
27:78:e8:60:76:58:06:f6:5f:72:1d:5d:25:5c:25:
0a:84:19:25:59:9a:35:36:b7:c2:c1:f4:d3:57:71:
6f:3f:c7:0a:0e:85:e2:38:c2:6c:43:8b:8c:87:3c:
d6:ab:d6:3f:a3:49:9b:48:77:6c:15:43:de:ba:11:
47:06:70:61:5d:92:d2:7f:8e:d1:99:9d:62:0a:87:
68:b2:44:b1:ee:42:d1:41:e9:52:f2:7b:bf:bc:dc:
30:f7:f0:da:3d:f3:8f:64:4e:d4:bc:b4:8d:f3:26:
00:59:1c:4c:95:48:fe:4f:d9:a4:27:77:c6:40:02:
3a:ab:90:13:47:29:f6:e0:ba:7b:15:6b:a8:d4:23:
df:0e:5c:c9:80:4b:07:65:62:de:e7:c0:22:58:d7:
00:e8:b0:fa:47:24:3a:a8:6f:c4:1f:66:fa:8e:d4:
ea:bf:cc:5c:61:17:02:d6:c4:67:8b:1e:6c:62:60:
17:44:11:88:bd:47:1a:45:e6:0c:35:b4:13:25:fd:
82:50:69:b4:9a:7f:35:7f:ec:b5:b7:fb:ee:b8:b1:
49:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:40:83:51:76:14:EA:EE:AA:4B:54:12:E6:E6:14:35:2B:B9:2D:DB
X509v3 Authority Key Identifier:
keyid:FD:E7:2D:43:F4:C8:2B:11:46:73:7B:11:61:97:23:18:30:BF:65:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:06:1f:ce:f1:af:57:35:03:8a:89:b9:82:78:23:e8:e8:74:
c2:7a:8a:6a:69:17:23:72:a8:47:9c:fd:b6:2b:16:da:00:29:
18:88:1d:46:a2:a4:1a:38:5d:e8:46:9a:90:08:7a:e6:1e:d8:
0f:51:4e:f3:29:88:46:94:da:af:03:7f:5f:dc:55:fc:90:35:
d6:13:f8:b7:98:6f:bd:d8:db:0a:d6:56:f7:55:21:24:91:f9:
5b:57:c1:31:e7:a3:8d:7c:1d:20:08:98:59:9c:ad:1c:34:5b:
70:fc:5a:ca:e0:51:eb:db:84:20:ed:1c:11:cd:b4:b4:d5:9c:
3c:4d:cd:c1:0d:23:4b:e9:0a:9a:d9:ca:3a:c3:06:ae:c7:ee:
fe:47:87:b6:de:50:0b:d7:89:bf:3f:f5:83:45:09:69:ce:0d:
0f:fc:a4:19:0a:6b:ee:f8:4e:36:a3:33:d1:96:97:cd:20:7e:
48:aa:e6:34:bb:d5:64:4d:dd:65:e5:5a:a6:c8:d9:55:19:94:
99:3b:f0:ac:c8:bd:70:e2:eb:6c:b3:7d:d9:d2:3b:17:40:19:
70:6d:d5:28:aa:2a:c9:38:2a:4b:13:9f:64:14:16:11:c9:7c:
aa:64:a6:31:34:26:33:d3:4b:a6:60:b5:2f:e9:00:24:dd:77:
2c:ec:4c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:39:27 2025 by rpki-client