Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
File: tIENfJv8WLngoeWRacPdMi3p9zc.mft (raw, json)
Hash identifier: 3plk12nybmJAUlHDj3BPDrDar+hsy5Lk9h+PfMk/Q/o=
Subject key identifier: 72:A3:FB:C2:B1:3A:F6:2A:3C:2D:54:1D:9F:59:86:23:0D:EA:D2:B2
Authority key identifier: B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
Certificate issuer: /CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Certificate serial: 019748FA76CFD0A263118A273843D2F3A478
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 06:01:03 +0000
Manifest this update: Sat 07 Jun 2025 06:01:03 +0000
Manifest next update: Sun 08 Jun 2025 06:01:03 +0000
Files and hashes: 1: jHERjwHQQByovrguIT9kNAenUlw.roa (hash: fC13Nqgu9Ca7tsn1KpGgJ5T6X5W9BeqrdrYm3SZE1Rs=)
2: tIENfJv8WLngoeWRacPdMi3p9zc.crl (hash: R4IRRLJCI7rZrAVYU6LqCA9w5iQJLHm4nbcgV3j5ndE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:76:cf:d0:a2:63:11:8a:27:38:43:d2:f3:a4:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Validity
Not Before: Jun 7 06:01:03 2025 GMT
Not After : Jun 8 06:01:03 2025 GMT
Subject: CN=72a3fbc2b13af62a3c2d541d9f5986230dead2b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:16:6d:f1:67:9b:33:b3:64:d5:56:6d:6c:f1:
eb:92:1e:1f:34:75:74:87:7c:6c:9d:fd:46:de:10:
9d:97:f2:e4:83:0e:ef:76:a3:90:f6:12:9d:36:c1:
39:5e:0a:9e:94:50:00:84:eb:09:8e:c3:53:75:7a:
2d:04:6b:0c:80:92:8e:4f:f6:ed:ca:31:d8:f8:cf:
a1:0e:a6:f7:c4:d7:16:26:e9:fd:04:6d:e4:61:71:
4c:98:73:9a:a2:dc:25:73:8d:e6:d2:aa:4a:eb:85:
34:e6:b9:ef:35:e7:da:8c:d6:c6:ba:86:51:ac:49:
5d:c6:10:38:32:23:18:73:b3:ce:e4:aa:c9:63:50:
f0:7f:af:df:a7:4a:38:67:39:a5:8e:fc:47:08:59:
4f:cf:49:f0:9e:c2:13:f5:1e:8f:34:99:12:e9:d1:
9d:10:bd:bf:e0:d5:9b:03:8b:f8:97:45:fe:be:5f:
19:bb:13:d5:24:b4:e7:37:84:5c:5d:a6:c3:cc:3c:
e5:77:ce:22:54:6c:9c:56:f5:53:3f:51:e7:79:a6:
78:84:31:94:34:bf:fc:b6:42:02:e3:86:71:ca:32:
b8:56:77:eb:bd:7b:f7:cc:b8:ce:f5:93:7c:59:34:
1a:68:35:c3:ce:4e:c0:9e:ec:da:af:d6:df:b0:75:
0e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:A3:FB:C2:B1:3A:F6:2A:3C:2D:54:1D:9F:59:86:23:0D:EA:D2:B2
X509v3 Authority Key Identifier:
keyid:B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:ed:5e:b1:a8:d7:b0:54:1c:a7:12:71:44:51:08:02:b1:07:
35:0c:17:b5:05:dc:14:a1:e7:a4:9d:de:77:17:9f:fc:a0:fd:
67:c2:7d:46:86:09:3b:14:ef:3a:5f:cf:62:f1:e3:9f:d5:24:
4e:79:5f:48:88:e4:c4:a4:ff:ac:05:21:d6:d9:45:c0:71:70:
4a:9e:83:c6:6b:00:a3:e7:09:7c:04:03:99:3e:d2:27:d8:ba:
40:85:c7:8d:97:b1:df:71:89:35:9a:12:3c:92:83:17:71:55:
39:44:e8:d3:05:da:fe:4b:8a:e2:c9:cc:22:fd:b3:ea:58:b3:
2b:a8:5f:d7:96:23:7d:9e:67:78:8e:41:07:4d:24:95:98:71:
51:f6:95:97:cf:d7:fe:a0:38:23:a9:2a:f9:1a:00:85:64:39:
27:fa:46:5e:97:aa:68:3f:b3:7c:eb:af:3a:82:f6:cf:84:42:
d1:66:6e:5b:a2:6c:3e:62:e2:e1:18:a3:ae:25:73:b2:4b:f2:
d2:a3:e2:ec:76:c8:23:97:c2:de:84:53:13:3e:4e:f3:b2:81:
ee:e4:12:10:eb:69:ff:3c:a9:04:00:20:03:ca:0e:e9:f7:d2:
c1:f2:c2:25:64:3a:de:b8:c2:62:6b:fb:62:82:f5:d2:47:db:
dd:ed:5d:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:00:13 2025 by rpki-client