Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
File: tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft (raw, json)
Hash identifier: d/lezSxBTsjsLRg1KeNi33W7heAOTjtvsp58VW112Xc=
Subject key identifier: C5:A9:EE:78:4B:15:18:4A:74:9B:79:5F:6F:D6:3E:C0:0A:84:8D:66
Authority key identifier: B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
Certificate issuer: /CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Certificate serial: 0197481E8C8392A2EBE743018E1DC2EF8365
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 02:00:50 +0000
Manifest this update: Sat 07 Jun 2025 02:00:50 +0000
Manifest next update: Sun 08 Jun 2025 02:00:50 +0000
Files and hashes: 1: AwMEJfGD-_TNRZ72c5x-9dIRsd4.roa (hash: 6UVDM1JqxHmjbnJ4pDDIOsD2r8EQyy1bF6KNp9ocKGg=)
2: VJtvXDXYtAcS9C4LIbmlaqXh4Co.roa (hash: THcKGdc9aA5a+OjJYNnV65xxowh1d3kb8KQrHqiCPq4=)
3: fUXrv6-AqG-Sdl9xICl4cQAU7yA.roa (hash: jv2v4x0octz1D9witRg3iiWbwIrgi4wxjje3xLewI+U=)
4: tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl (hash: rRD6HRo8tmBT5BiQjG1ci9ZGcnlJA6lbMIYsQftSRP0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:8c:83:92:a2:eb:e7:43:01:8e:1d:c2:ef:83:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Validity
Not Before: Jun 7 02:00:50 2025 GMT
Not After : Jun 8 02:00:50 2025 GMT
Subject: CN=c5a9ee784b15184a749b795f6fd63ec00a848d66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f8:8a:32:9f:04:cb:aa:08:f1:b9:3a:78:ae:
c1:da:60:4d:0c:02:5e:9f:95:d4:21:1d:8a:7d:e9:
e0:f0:6a:33:d1:8e:a1:35:10:0b:69:dc:a8:a6:45:
d4:aa:d6:5c:54:ba:08:fb:60:1c:5b:18:27:ef:2d:
9a:fc:3a:39:63:13:28:f7:b2:da:43:d3:7c:26:1d:
5b:ae:51:81:be:2a:d6:01:79:36:a3:6a:6f:f9:33:
fc:e3:ed:6b:13:0e:62:9d:4a:fd:80:63:5b:3c:12:
a9:08:59:c2:6f:b8:84:d9:f5:c2:33:42:bb:7f:d5:
cf:d3:e7:c9:f6:d2:f9:7c:10:9f:bb:3a:10:d8:22:
dd:bc:c3:1f:f2:e8:87:62:c7:86:0d:6e:39:17:0b:
cc:95:2e:93:58:38:cc:35:3f:3e:66:2e:28:d5:7b:
c2:ca:b9:ab:21:e7:f7:81:c7:36:20:76:f9:88:af:
61:14:71:0e:1b:bb:8d:a2:e1:25:00:14:64:87:d6:
1c:70:6a:a7:47:09:1a:49:0e:8d:b5:c5:da:97:d5:
98:a1:0c:05:4d:37:df:ef:3b:fb:12:05:a2:5f:16:
a9:ed:75:6a:82:29:53:63:7c:4b:dc:4c:85:3d:ec:
f3:e8:55:28:a2:18:0e:f2:18:7d:68:af:36:3a:7a:
43:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:A9:EE:78:4B:15:18:4A:74:9B:79:5F:6F:D6:3E:C0:0A:84:8D:66
X509v3 Authority Key Identifier:
keyid:B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:e0:cf:46:c8:67:af:41:b8:d2:b4:42:a2:63:0b:84:7c:2a:
2d:5e:60:a1:72:c8:37:8c:c6:6b:70:b4:df:0b:3b:03:76:20:
05:63:31:40:29:af:d3:c1:56:90:37:11:c0:b1:a7:ad:c3:2e:
9b:79:c6:af:61:6a:34:a5:ac:e2:23:78:ab:87:6f:f2:04:5c:
ea:94:42:21:2b:75:59:6f:9e:ac:01:04:bc:d4:e1:5f:af:3a:
a2:33:09:12:da:36:aa:d5:71:a3:47:f4:f9:1d:4e:fe:af:0f:
2c:15:5a:b4:89:d7:e9:45:f5:44:cb:3d:59:fd:73:38:fb:9b:
d6:a0:fb:5b:86:88:c6:8b:59:37:f3:fb:8e:38:11:0e:85:70:
e1:9d:8f:e9:0b:96:58:4b:a8:2b:74:95:14:10:f0:5c:56:2c:
a5:89:7e:9d:fb:4f:bd:bc:a1:67:58:0d:5a:43:37:46:72:a0:
78:d7:a9:50:82:78:67:bb:2c:06:84:65:6c:16:09:7f:43:30:
aa:ff:45:fd:23:3b:86:6d:1c:c1:1d:05:af:a6:fc:a9:31:03:
15:a3:ae:6c:14:69:39:02:aa:03:41:1e:2a:ec:de:71:78:7f:
c1:55:c5:d9:b6:89:e8:e0:36:04:df:0b:04:aa:e0:57:9d:b7:
fa:29:b5:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:12:55 2025 by rpki-client