Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: CLP+SXWduarIPwHgo12i29ED4ynlBnmR/BJInz4PHuE=
Subject key identifier: F2:B9:C3:CE:70:72:B5:86:A7:D2:9A:22:A3:94:37:F4:72:51:A7:BA
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 01974C321214F4346BDBDCA58DD487B9CF29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 1127
Signing time: Sat 07 Jun 2025 21:00:39 +0000
Manifest this update: Sat 07 Jun 2025 21:00:39 +0000
Manifest next update: Sun 08 Jun 2025 21:00:39 +0000
Files and hashes: 1: M5OG91JsCAL60eSIC9Ad8J1tKCQ.roa (hash: 1YIYjfLNUonn/y5DvRwWqNtN3UGauHay3fPvlHRKB78=)
2: NLZJeEG7B459T5HRjzbaryRo4U4.roa (hash: D+Zc3p+KtPQCrkhD8NK/RsRz3Ozk8j3l3fx+in8YU8k=)
3: SX0Et8xCJ-oQPSZhA1vLwpgECss.roa (hash: GtBoUqmPl7+e01rEjLRBIu11uahmgFfyYOp4+G1ts2k=)
4: g3mWLx3QHER7jvUWO9_K86XjFvg.roa (hash: CQjC54kUHdxygPOZtU3D7Ni2Q4FQ2f8Z6SwCWy0D9f0=)
5: hvqfOijr6dDuZ5bH5DmTLJBSNC0.roa (hash: wnrweN82zW3L/i2kjShP1DGJ6lX6f745nj23KDLcERg=)
6: pkTSWC0kyyJmikpwefrKy0hYNBc.roa (hash: uJAe5aUPI71DUshehwa1+fSKLZdP9CODCdcESePQJgY=)
7: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: /6rJQtwico6eivjj8SnFZVnDUzhrSUEzbN8zJAYJq2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 21:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:12:14:f4:34:6b:db:dc:a5:8d:d4:87:b9:cf:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: Jun 7 21:00:39 2025 GMT
Not After : Jun 8 21:00:39 2025 GMT
Subject: CN=f2b9c3ce7072b586a7d29a22a39437f47251a7ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c5:cd:97:f2:61:7d:14:84:4e:38:d5:6d:76:
37:b1:2d:7a:4a:13:cc:12:6f:6b:41:31:78:d4:9d:
e4:89:d0:80:89:0b:d5:95:5d:98:08:73:dc:d8:29:
cc:d3:07:51:34:7f:ca:37:32:0d:5b:a9:c5:b2:9d:
40:71:03:b9:08:e1:70:a3:21:2a:97:6c:36:ce:26:
fc:e5:04:38:54:16:39:a3:a1:b0:dd:3c:54:b7:de:
9b:fc:ae:a1:7d:be:0f:13:da:14:33:44:35:64:5b:
62:9d:8b:f7:bb:ca:5e:c9:5e:70:ee:cf:d7:d4:e7:
32:b4:06:09:61:71:48:1a:52:e2:10:e5:9f:05:cb:
fe:f0:c9:26:4f:fb:8a:db:4e:28:15:75:5b:8a:db:
5e:6c:7f:2c:26:44:60:d3:6f:13:1f:9c:3d:ae:34:
5d:ef:24:cd:49:37:8d:b6:4b:06:8f:c1:84:38:08:
b3:5c:07:06:a7:a9:e5:02:24:d5:d0:0a:be:b0:dc:
5e:93:81:ce:3a:e2:22:26:06:b5:c7:c6:d8:4c:35:
61:c2:78:9e:46:07:7a:92:fe:50:7e:94:7d:7a:01:
06:f0:3c:b4:dd:3f:e8:74:7e:d5:4f:88:68:e3:e5:
11:12:50:c4:49:e5:3c:06:12:59:8b:75:f1:5b:64:
9a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B9:C3:CE:70:72:B5:86:A7:D2:9A:22:A3:94:37:F4:72:51:A7:BA
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:54:cb:ae:47:3c:06:f7:5b:9f:76:67:ff:32:07:61:4b:89:
7c:48:26:c4:61:88:38:3a:cb:90:8f:d4:2c:72:2f:e2:bc:8c:
92:31:d8:cf:38:41:84:68:aa:de:6f:77:35:d1:1f:21:a2:35:
bb:0e:aa:d9:3e:2a:5d:ea:c2:6f:78:5e:e4:2a:04:a5:26:26:
0c:66:c9:3a:4f:96:98:30:e1:e5:37:48:8a:4d:1f:ef:08:16:
1f:7c:7d:38:6c:2b:6d:4e:76:dc:f2:13:bd:c5:66:92:95:1d:
d4:6b:02:4d:8b:16:5d:92:84:eb:59:22:53:99:3e:d9:53:f2:
81:00:e2:d9:81:64:1e:0b:45:15:bb:17:21:02:fe:b6:8d:33:
77:f5:c7:79:03:b6:a1:2d:28:f4:fc:1c:0b:89:d0:1d:0e:5e:
29:4f:ef:8c:86:b5:af:20:89:df:38:d8:5f:c9:3b:1d:05:f2:
4b:b2:f4:be:1b:96:74:04:25:bb:f7:f0:a8:1c:22:8d:4b:9e:
2c:d9:23:ae:d6:ef:33:89:e0:69:30:ab:4a:1b:9d:6b:b3:70:
9d:02:dd:47:1e:0f:d0:03:ce:ac:41:10:10:68:cb:a0:47:cb:
a1:43:98:b6:aa:f3:24:72:24:2d:18:3e:35:22:53:1e:2b:a5:
7f:52:05:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:24:54 2025 by rpki-client