Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
File: TzvVbotU5tonu-ZiLaxny_Aqgeo.mft (raw, json)
Hash identifier: BNZX7XhJ+5L2LtrOxLlec693k2Ap8gdJepigLoT9J34=
Subject key identifier: C2:EF:94:7B:E0:3C:04:D5:BA:73:E2:B2:60:B9:4A:72:CB:6F:CC:85
Authority key identifier: 4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
Certificate issuer: /CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Certificate serial: 0198CBDDB39AB2A7D57310A460CE04389F3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
Manifest number: 1646
Signing time: Thu 21 Aug 2025 09:02:40 +0000
Manifest this update: Thu 21 Aug 2025 09:02:40 +0000
Manifest next update: Fri 22 Aug 2025 09:02:40 +0000
Files and hashes: 1: 6aBtyL1HCBLQz8Fcxx2-wbI-JSY.roa (hash: s+Yjky9WV0WGtiJ2UXV97kZc6gRv1napm2o37+mL6NI=)
2: R0B0S-Vvq6PSGq8IAqKsdnjdNUo.roa (hash: jZBNXVMhAxnq4wWzeXUVcxAP1mha5zeShrdHGeYvBL4=)
3: TzvVbotU5tonu-ZiLaxny_Aqgeo.crl (hash: 6fkfVuKAQk02LqMF5hc7735lY1TSNCeZZqqfdlhlgWY=)
4: snxuxsWrIVBOH4PJX-798Ws3-_I.roa (hash: eUyKfNa1R42Kf80mOcHHq43jou6WV27ocUUMJBjr/10=)
5: wnKhG27ddvv9DbopEcZ0e8BfSyE.roa (hash: 5bhpzUqfkiYr3WyfWoYZHsfUt3MVDy9FbR7pi02+AvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Aug 2025 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:cb:dd:b3:9a:b2:a7:d5:73:10:a4:60:ce:04:38:9f:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Validity
Not Before: Aug 21 09:02:40 2025 GMT
Not After : Aug 22 09:02:40 2025 GMT
Subject: CN=c2ef947be03c04d5ba73e2b260b94a72cb6fcc85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f9:b3:67:11:79:48:28:b5:7c:d3:59:3e:ad:
94:b9:15:5c:3d:9c:09:5a:e5:15:22:ce:84:19:71:
81:03:c1:4e:47:e1:33:f2:4d:65:a5:dd:63:67:7d:
15:0d:f7:b2:10:aa:55:14:59:d9:ff:2c:6d:03:06:
35:e1:0c:c0:d2:ed:66:f6:13:1e:6b:64:17:14:19:
d7:c0:3a:30:e8:46:76:e9:40:46:f9:90:96:ad:a7:
51:4d:6f:e8:73:ef:13:eb:e2:fc:b6:38:e1:bc:c6:
ff:f8:d8:67:61:20:43:eb:18:03:7a:90:63:d9:ab:
c3:e2:da:d1:bc:1a:96:10:f3:9e:c2:ee:8a:9e:bf:
ba:60:c6:0f:27:c0:d3:fc:58:84:18:bb:1a:c7:95:
a3:d1:47:4f:1c:5d:b5:cf:60:89:a8:45:43:37:a3:
72:57:7a:f3:85:b7:69:42:9f:2f:7f:17:2f:e2:70:
06:0a:2d:34:29:98:58:5d:4f:19:4d:f2:72:f1:2e:
8e:a2:9c:e5:61:9a:39:ff:e0:76:3a:8a:0e:c1:9f:
2f:6f:d3:31:5e:d6:98:37:59:48:f5:d4:e1:dc:6f:
29:22:ea:09:04:8f:c3:e9:5e:bc:86:ca:14:c8:fd:
ee:4a:8a:05:ee:77:74:bf:14:cb:df:1e:0b:75:10:
71:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:EF:94:7B:E0:3C:04:D5:BA:73:E2:B2:60:B9:4A:72:CB:6F:CC:85
X509v3 Authority Key Identifier:
keyid:4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:58:1f:b5:1f:a6:ec:85:26:e3:28:95:59:a1:46:58:c6:c6:
d4:a9:79:a5:52:2b:62:74:fc:79:a9:28:25:19:08:da:8e:38:
86:b8:4e:ab:77:d4:7b:d0:19:cb:ae:f8:5a:66:66:11:d5:91:
a0:05:a9:bf:de:6d:bb:13:ac:a0:69:40:95:6f:f3:8d:9e:1b:
55:48:15:0e:98:25:93:6d:b2:6b:ee:ef:38:b3:f4:8c:27:b5:
60:28:d9:13:6c:3d:9f:ce:de:af:bb:91:5a:c3:c1:81:44:e7:
5a:fb:d9:b9:61:b7:86:c4:d3:4e:0b:2a:b8:66:b8:82:bf:ad:
80:e2:b9:4f:d4:fe:dd:7b:bd:20:99:69:46:48:37:28:db:19:
ab:14:c5:14:ab:19:2b:74:b5:04:d3:c8:bb:ca:6f:6c:e3:73:
32:ec:54:fb:e6:8c:9a:49:46:c4:b2:7e:e7:ef:e8:86:0b:d7:
05:64:9b:2d:69:2f:9a:19:d8:c6:1e:a0:24:b0:60:0e:7a:18:
33:bb:de:e2:10:24:47:0c:8e:18:01:c8:6c:da:3d:32:cc:2a:
c8:48:f6:d7:97:67:0d:65:d0:40:fd:97:15:ff:28:5c:1c:dc:
74:68:3c:48:3d:36:1b:1d:47:e7:af:73:4a:62:cd:3b:65:16:
6a:1c:a3:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 13:55:42 2025 by rpki-client