Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
File: tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft (raw, json)
Hash identifier: 6LJ5rW7Klo1T3a4l4EbufcoA3OuDxUE4RQN1Sddb36Q=
Subject key identifier: E1:12:DA:A8:39:2C:47:DB:F4:DE:BB:29:B7:52:61:64:96:15:36:EB
Authority key identifier: B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5
Certificate issuer: /CN=b4714bfd982ed297e5c73ece74d222e5274c1fb5
Certificate serial: 01977ED5BCE412C240867732EC3708CB7753
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
Manifest number: 12BF
Signing time: Tue 17 Jun 2025 17:00:26 +0000
Manifest this update: Tue 17 Jun 2025 17:00:26 +0000
Manifest next update: Wed 18 Jun 2025 17:00:26 +0000
Files and hashes: 1: j1BO9Furs7_Q3tvlbetVSRlAckY.roa (hash: tdoQUM0H+jW+enIWtoFRlfboER49yX/MAZeA5JaKIMs=)
2: tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl (hash: DNkBpFPHaCLfMJ2v32SsarUjqxERltFQGasDl0Yuubg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 13:26:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7e:d5:bc:e4:12:c2:40:86:77:32:ec:37:08:cb:77:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4714bfd982ed297e5c73ece74d222e5274c1fb5
Validity
Not Before: Jun 17 17:00:26 2025 GMT
Not After : Jun 18 17:00:26 2025 GMT
Subject: CN=e112daa8392c47dbf4debb29b7526164961536eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8a:14:de:34:5f:f3:49:e8:a3:0c:0d:b0:8b:
d0:74:6c:c0:b7:82:0c:ca:9b:5e:29:e2:0f:eb:77:
ba:84:bb:37:f7:84:7b:28:a9:1b:10:be:43:86:7f:
4e:38:10:42:26:53:26:27:c6:8b:61:49:37:cc:d8:
4e:a5:4e:1b:ac:6c:ae:83:e4:dd:a6:e4:59:54:4a:
19:93:1c:20:41:d2:85:75:99:47:0e:7a:0c:19:d3:
59:c5:45:c6:cf:1f:29:69:cb:2c:af:bf:3e:e4:d7:
7f:62:bb:ce:a6:fe:52:3e:54:7e:4d:25:c4:86:b0:
3b:81:66:3b:71:21:1b:7a:6e:85:5f:50:74:70:ee:
4f:5a:d3:2c:74:8b:5b:8a:d7:a7:76:66:61:fa:57:
e9:bc:f6:4b:bf:68:a4:0c:ba:81:2e:0e:8b:bc:1b:
fe:70:24:f2:15:2a:bc:15:e0:ad:b5:0a:7f:15:ed:
01:6e:bd:4d:f9:8f:a5:28:db:1d:7f:9a:47:12:d7:
21:71:d6:49:0c:40:1d:36:b5:42:c6:f9:87:1e:93:
e4:41:73:9f:66:80:38:50:d1:29:12:35:c6:2a:65:
c3:de:38:e2:f5:ea:34:1c:33:4c:fc:ca:6c:26:fd:
35:de:bb:2d:cb:57:a3:b7:1e:0a:d7:88:88:3f:6d:
d6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:12:DA:A8:39:2C:47:DB:F4:DE:BB:29:B7:52:61:64:96:15:36:EB
X509v3 Authority Key Identifier:
keyid:B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:a0:16:30:92:77:a2:22:fd:15:d8:8a:f5:b8:ce:66:d2:e3:
8f:7a:bd:ed:5d:47:a1:10:89:2b:29:f6:b3:52:f0:42:cb:4a:
2a:4c:07:c6:68:cc:14:89:4f:a7:10:e5:69:c1:a8:f5:f5:39:
e2:4f:99:3a:cb:94:72:d9:74:a6:a0:ba:3a:44:98:3a:ee:f4:
24:3a:bd:01:34:9d:aa:a9:d1:ec:4f:a0:ad:35:12:18:63:3e:
b7:26:a8:4d:bb:bc:77:99:c8:59:d5:57:12:eb:6f:83:e6:a7:
cf:3b:15:c3:f9:11:d9:32:79:e8:a9:00:6a:4f:14:00:47:19:
09:a2:93:ff:67:ee:5c:83:1c:88:cb:f4:6a:61:c6:a8:1d:4e:
e9:2e:7c:73:50:e9:2d:c7:12:c6:8b:05:92:51:18:b6:54:97:
2a:63:fe:e6:66:50:38:3f:9d:2c:b2:10:08:6a:bb:32:55:92:
a1:d6:38:eb:12:0d:ed:2d:fd:fc:95:1d:7e:80:5b:22:9e:de:
fb:2a:b8:62:65:46:34:d2:c6:ae:34:7e:9a:f7:aa:b2:27:f3:
dc:a0:f1:e0:a8:fe:ee:97:c6:d4:ad:4e:e1:e0:cd:8e:fc:24:
99:8c:57:58:9f:17:2f:b3:4b:aa:4d:69:e7:cc:f8:55:8e:eb:
5e:58:7a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 20:01:14 2025 by rpki-client