Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
File: tm6nNZIhwbd9bMAG97ZwapqQgpk.mft (raw, json)
Hash identifier: /OS9NXXODwiXgHigTDqV39iWQyjo/5dfHWScCRInhR0=
Subject key identifier: 35:AC:B7:5F:E9:40:93:42:74:6A:A0:AB:7E:A9:87:6F:45:5F:A6:4D
Authority key identifier: B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99
Certificate issuer: /CN=b66ea7359221c1b77d6cc006f7b6706a9a908299
Certificate serial: 019749683D46E9E6883058D780B2CA1CFA19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
Manifest number: 158A
Signing time: Sat 07 Jun 2025 08:00:57 +0000
Manifest this update: Sat 07 Jun 2025 08:00:57 +0000
Manifest next update: Sun 08 Jun 2025 08:00:57 +0000
Files and hashes: 1: P-haGLcvZvQGvLFpnob9lOaXmTs.roa (hash: 4zCg+GccZn/4aPxyfbii7VCbnRc/Ws0LuYTysih4ku8=)
2: tm6nNZIhwbd9bMAG97ZwapqQgpk.crl (hash: n1b7QtTWnAYG8Xn5xwM+WKObP7xZs6OOW8gVoMXM/Kk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:3d:46:e9:e6:88:30:58:d7:80:b2:ca:1c:fa:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b66ea7359221c1b77d6cc006f7b6706a9a908299
Validity
Not Before: Jun 7 08:00:57 2025 GMT
Not After : Jun 8 08:00:57 2025 GMT
Subject: CN=35acb75fe9409342746aa0ab7ea9876f455fa64d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d8:d4:27:10:62:69:02:3d:8f:a7:de:2b:a4:
71:e6:69:63:4b:84:1f:db:9d:10:16:55:f3:42:ed:
6b:12:fe:38:64:b1:a1:d6:c9:0b:2f:02:51:82:d8:
e7:03:df:a1:62:75:42:ce:4b:a1:f0:4f:d6:34:f4:
08:dd:8c:36:fc:03:51:a0:24:2f:91:0d:53:6c:3b:
a4:ab:17:c0:0d:0c:c6:e9:84:1d:a2:b0:2d:35:2c:
21:c1:72:6a:ab:6b:c1:8c:38:e9:59:b2:5d:47:98:
b2:e0:92:ae:ab:20:c1:8d:aa:55:85:94:09:4e:b3:
a8:42:a0:bd:78:71:64:94:8c:7c:b0:e2:1f:21:01:
5a:3f:6e:67:2d:c3:3f:c9:86:2c:58:0f:de:ec:a7:
04:53:32:f8:a5:14:30:7c:c2:7e:81:07:fa:64:a2:
84:1c:c5:5a:87:5d:d2:99:59:17:65:16:5b:66:d3:
e7:80:48:7e:c5:e2:ca:b9:29:8e:5d:78:55:ca:d2:
10:24:0f:69:43:74:9f:30:3d:1b:23:b1:f7:07:34:
61:4e:93:b2:10:2b:54:24:3d:3e:27:f0:b5:7b:42:
c9:f6:aa:6d:40:05:36:20:55:c5:47:70:6e:36:c9:
57:22:77:3b:43:c6:b3:7a:b2:e6:f0:29:aa:9e:51:
a7:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:AC:B7:5F:E9:40:93:42:74:6A:A0:AB:7E:A9:87:6F:45:5F:A6:4D
X509v3 Authority Key Identifier:
keyid:B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:81:f2:58:9c:4e:3c:44:f4:2a:76:24:32:34:5c:69:84:74:
4a:74:c6:e9:af:2a:ed:48:69:74:63:f8:83:36:a7:74:37:76:
e7:01:7b:8a:fc:4e:6b:c9:6e:8c:c2:04:0d:66:f1:ea:14:fe:
b8:51:ed:8b:43:3a:dc:80:87:9c:63:2f:cd:4c:f2:79:93:34:
8a:1e:2f:37:e1:76:f1:21:60:03:20:fd:41:dd:2d:67:e0:4f:
ba:00:f0:89:6b:9b:c4:c8:c2:f7:4f:6b:10:c3:00:62:51:c8:
b6:e9:56:4e:2b:81:2c:ec:7a:44:bc:fa:15:be:07:5f:60:73:
52:7a:7b:42:2c:73:0c:5a:8d:73:ba:27:3f:bf:ee:c4:26:d9:
41:6a:80:f9:ba:26:ff:8f:9f:1b:93:e8:65:f8:37:1c:73:7a:
01:33:9e:52:68:d8:24:78:99:9e:86:14:22:f0:fa:8a:64:48:
84:c8:56:6b:7c:64:30:29:a3:b4:5e:35:cc:39:26:b5:fd:0f:
3c:32:41:b5:42:26:74:ec:7a:c2:06:e0:aa:6d:7d:1a:88:51:
49:10:4b:1e:82:34:e2:73:2b:e5:cd:0a:93:20:ee:84:89:3d:
dc:57:8c:e0:48:ed:0f:aa:fa:14:1e:c2:63:c9:f3:80:a1:d6:
56:24:47:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:55:13 2025 by rpki-client