Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
File: TMC300XPrlNH086YtCQbkA5KnvM.mft (raw, json)
Hash identifier: I19l/QFM2ONxVyBOTkJI0386M9kkVZmUriIY8hu3iac=
Subject key identifier: 12:DE:D5:4F:6B:B4:C5:2A:30:DB:E6:BF:2C:C1:37:64:DF:4F:42:BE
Authority key identifier: 4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
Certificate issuer: /CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Certificate serial: 01974E57AE0AE4F1BE8B85A04D5B9FC58073
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
Manifest number: 06F2
Signing time: Sun 08 Jun 2025 07:00:58 +0000
Manifest this update: Sun 08 Jun 2025 07:00:58 +0000
Manifest next update: Mon 09 Jun 2025 07:00:58 +0000
Files and hashes: 1: TMC300XPrlNH086YtCQbkA5KnvM.crl (hash: eTl2BAv2bVnSNihQPdOY1p7oOMIdaxKtBS8apn3+rIo=)
2: Vh_JUxD0F48NbjyYRcDhXuGyEXI.roa (hash: RX3aXV1jt4pV7znP3Nr6a04cOEHqVMLgDW/kqRB9jNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:ae:0a:e4:f1:be:8b:85:a0:4d:5b:9f:c5:80:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Validity
Not Before: Jun 8 07:00:58 2025 GMT
Not After : Jun 9 07:00:58 2025 GMT
Subject: CN=12ded54f6bb4c52a30dbe6bf2cc13764df4f42be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:2e:69:c0:fc:b7:88:80:21:96:6e:1d:ae:ba:
49:fe:3b:01:da:a9:48:33:0b:bd:10:03:cf:9b:c9:
d8:5b:2e:ed:d7:4c:1e:29:0b:be:bb:9c:fc:e5:31:
1b:3a:9c:15:36:1e:bb:38:c0:ac:c3:2c:c1:6b:33:
a2:4c:95:27:9b:f1:b0:78:96:36:00:81:95:f6:69:
a7:ff:b7:3c:77:6b:37:2a:20:cf:66:39:6d:72:d0:
40:6c:27:00:c7:00:45:da:a9:ed:b6:2b:40:3a:73:
b8:e8:41:6f:f8:a9:3b:41:f5:39:6b:bd:f3:8e:7b:
80:79:7d:84:05:f5:ce:20:ad:93:2b:dd:6b:55:c5:
cd:af:92:ac:2f:0a:05:47:d5:75:d2:2f:ad:f2:fe:
c4:d0:5d:4a:ae:53:be:5a:67:61:b2:b9:79:bb:6f:
5a:8b:5f:18:13:c9:66:e5:39:8e:10:b8:90:4e:6e:
0c:c3:86:13:28:12:54:6f:7c:78:77:6c:e0:f5:2e:
1d:ca:fd:32:3b:04:ca:85:e2:7e:69:32:61:0b:80:
cf:39:6d:7a:3b:85:a9:54:33:97:07:64:6c:a9:64:
7f:61:3b:e8:b1:4a:ad:da:4c:82:dc:44:8c:83:d2:
d1:12:bf:d1:05:d0:e2:b8:43:8f:e3:e9:76:62:45:
34:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:DE:D5:4F:6B:B4:C5:2A:30:DB:E6:BF:2C:C1:37:64:DF:4F:42:BE
X509v3 Authority Key Identifier:
keyid:4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:8d:84:9a:72:b4:69:e2:af:51:6b:6d:88:6c:f6:21:0b:d2:
a7:98:b4:b7:07:29:9c:46:92:e7:78:83:8e:9d:2d:3d:6c:29:
f2:e8:81:62:ae:01:14:a9:96:90:ed:a1:52:69:74:4f:ff:31:
79:58:30:bd:f6:83:c5:59:c9:c2:fe:9c:13:03:f9:30:38:4f:
38:63:68:71:05:70:76:88:15:6a:27:34:0b:db:f3:7a:ba:8a:
56:f7:93:e7:59:fc:99:87:db:20:5e:47:5a:82:2d:ea:5d:05:
9c:fa:58:fe:06:38:97:ea:12:99:20:05:58:14:db:69:36:98:
83:57:a7:3d:96:1f:39:c5:50:23:4d:a7:bf:8e:40:33:9c:73:
ea:d9:48:3c:6e:65:c3:e9:93:74:28:ce:5d:03:a7:4f:be:d8:
06:44:0c:07:02:1d:32:c0:d8:c6:0f:32:ab:5e:ea:e9:c2:ad:
81:99:fe:f5:04:76:f5:ed:40:79:d6:d1:a3:29:99:a7:c2:7d:
a1:c9:9b:8c:7b:f9:3e:ab:f1:75:74:3e:d2:ac:fb:dc:15:28:
e0:d9:c6:4f:c7:5a:37:86:ee:05:76:48:64:1b:10:e6:81:57:
72:ff:83:0c:63:e6:9a:f8:0a:fa:c7:d9:5c:7f:8c:b5:a1:55:
90:6a:21:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:04:18 2025 by rpki-client