Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
File: TvMzZvDPXk-oBO730eKSlO6lFIw.mft (raw, json)
Hash identifier: c/CTfWg9nIbgQqbSsERvhQ6O281rMmhHdPe3ygpYW84=
Subject key identifier: 28:B4:E2:1F:C6:B7:50:8C:AB:1B:2B:EB:19:88:F5:02:C6:8F:3C:1E
Authority key identifier: 4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
Certificate issuer: /CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Certificate serial: 01974BFB5141D9EE42EC583E8BAC7123266F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
Manifest number: 0217
Signing time: Sat 07 Jun 2025 20:00:50 +0000
Manifest this update: Sat 07 Jun 2025 20:00:50 +0000
Manifest next update: Sun 08 Jun 2025 20:00:50 +0000
Files and hashes: 1: TvMzZvDPXk-oBO730eKSlO6lFIw.crl (hash: IvS767Cel9TjgMqN1NU1BtMxyEAND9foNDl5X6rYFnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:51:41:d9:ee:42:ec:58:3e:8b:ac:71:23:26:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Validity
Not Before: Jun 7 20:00:50 2025 GMT
Not After : Jun 8 20:00:50 2025 GMT
Subject: CN=28b4e21fc6b7508cab1b2beb1988f502c68f3c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a7:bf:b1:a0:ca:a3:47:ec:94:f2:17:28:26:
aa:51:60:84:ce:e2:25:5c:7b:ee:bd:5c:bb:5f:bf:
e7:78:97:bc:e5:f8:62:57:80:08:97:52:f4:d3:8e:
5f:f0:bb:f3:51:dd:fe:37:3c:41:0a:ac:5e:55:12:
05:d1:5f:3c:ab:13:da:75:03:62:37:94:a6:1c:b0:
f9:24:aa:5c:68:41:19:cd:43:68:c3:8c:3b:55:56:
74:d8:8a:2d:8d:30:55:d6:24:18:f8:18:81:85:46:
30:39:ab:5f:27:97:07:81:10:48:7b:c5:5a:b0:38:
14:04:17:79:00:bd:50:3a:60:ef:0c:f0:d6:48:dd:
e6:b6:32:1f:a0:97:a2:03:ba:b5:e6:6a:05:bb:55:
27:16:bd:0f:a0:89:94:1d:4e:eb:02:d0:db:11:51:
77:08:3e:92:6b:47:4f:fb:9e:3b:d2:fa:48:54:6c:
db:25:d0:73:cd:71:2d:8c:c2:16:fc:72:d0:db:68:
a9:3e:e7:f0:48:7d:35:4d:30:60:e6:f0:3e:2d:d9:
5d:01:c8:37:cd:f7:6d:b8:d5:1b:53:9d:ea:08:39:
d1:0f:10:7e:25:54:0d:04:51:c7:34:2d:84:dc:d5:
04:a0:cf:82:b0:69:b7:95:59:ba:2c:90:b4:78:0e:
a5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B4:E2:1F:C6:B7:50:8C:AB:1B:2B:EB:19:88:F5:02:C6:8F:3C:1E
X509v3 Authority Key Identifier:
keyid:4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:b0:da:12:8b:b1:c5:d2:ee:bf:8c:9a:bd:05:8d:43:00:48:
d5:0e:1f:39:78:a7:f4:eb:aa:63:a7:da:a0:a7:1b:90:62:a9:
43:5e:4e:17:08:f7:c8:3a:37:95:43:08:d4:ae:11:e0:52:54:
02:46:21:b8:36:06:ae:44:33:2d:96:9c:d9:5d:0a:bf:21:2f:
d0:75:50:10:ee:a9:8d:26:69:b6:9d:13:49:c4:c8:2e:82:8d:
0b:2c:38:90:74:51:d1:44:be:a5:59:16:72:0c:dd:24:8b:47:
45:7c:12:ed:40:d6:3a:0d:74:4d:5a:38:fb:32:7c:ee:46:fe:
c5:83:a5:1d:0e:e0:27:5c:c8:d1:89:ff:3e:fd:e5:a0:55:d4:
d2:71:22:fe:f4:2b:73:23:ad:f3:5d:d6:7c:07:2c:77:68:27:
15:3d:bc:ef:b2:3e:40:69:e9:2b:55:ca:32:ab:16:88:b4:91:
c6:ea:c7:bf:be:fd:9b:1f:55:ec:80:75:ca:64:b1:60:ca:52:
40:f5:07:c0:7b:c7:1a:3d:28:81:ee:52:19:80:bf:31:48:6a:
af:64:b9:ff:fa:64:92:21:38:e1:d3:57:77:16:c8:32:0f:3c:
2a:37:d3:07:64:84:46:e7:7c:e0:27:77:1e:8c:de:40:1a:aa:
c1:38:f3:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:55:15 2025 by rpki-client