Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
File: tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft (raw, json)
Hash identifier: TzlesRfEIjJWIvQXfexKZFavHbBgOeBWa59x5rZNpvA=
Subject key identifier: 8E:D2:AD:2F:DE:D7:76:4B:6B:F1:2F:C0:24:6E:8B:4B:97:92:F6:E6
Authority key identifier: B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
Certificate issuer: /CN=b4dd6d658e14571e839f7813da31f2217422818e
Certificate serial: 019768BC4414F60580F4D761A7B9700B413A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
Manifest number: 158D
Signing time: Fri 13 Jun 2025 10:00:58 +0000
Manifest this update: Fri 13 Jun 2025 10:00:58 +0000
Manifest next update: Sat 14 Jun 2025 10:00:58 +0000
Files and hashes: 1: i7TTR0PMX6DAq8x2EEX7tvYEy2w.roa (hash: iWmz0ZT2uDCkIA/K5JDubPnWXPlf7zxHizjmswntW2Y=)
2: tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl (hash: VTQ+dbxzk7LPViycyDd6c9XU+lIfey2i9P/cFhg/9k0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 10:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:bc:44:14:f6:05:80:f4:d7:61:a7:b9:70:0b:41:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4dd6d658e14571e839f7813da31f2217422818e
Validity
Not Before: Jun 13 10:00:58 2025 GMT
Not After : Jun 14 10:00:58 2025 GMT
Subject: CN=8ed2ad2fded7764b6bf12fc0246e8b4b9792f6e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e4:bc:b2:32:19:3c:9f:42:c3:84:e1:5a:74:
07:36:e3:7f:bc:27:38:7e:73:1d:ff:e2:75:7e:62:
0a:c9:32:60:80:b2:e6:e7:c3:c8:d9:e1:f8:13:b4:
80:a8:88:2a:24:48:69:c3:6d:76:62:54:31:2a:7e:
f4:f8:d0:23:81:85:e9:fc:0a:f6:c9:82:e3:61:44:
4b:ba:42:f4:52:56:e7:e2:3a:98:33:9e:82:53:2f:
bf:0e:30:87:11:71:f4:74:f7:68:7a:d4:e6:50:2a:
1b:68:c4:6e:cf:a6:f3:8e:0e:29:d4:77:26:e3:a6:
68:99:10:c6:8d:f8:22:94:80:27:fe:e9:4f:0e:1a:
31:e4:bc:9e:c0:0d:5e:bf:f0:6f:41:29:18:90:2f:
70:e9:8c:00:b1:95:86:57:d5:cc:08:89:bd:18:41:
5e:c9:fa:5b:86:50:f9:bf:b2:b8:36:a3:d2:29:50:
84:3b:bf:83:2a:e5:bc:c3:9f:b8:1e:5f:25:d2:77:
45:0b:81:8d:8e:99:09:a5:be:9e:96:32:70:09:f0:
3b:e4:16:00:62:88:ff:0b:15:9e:7b:ef:69:d4:d1:
33:93:c7:67:9b:ae:0d:26:29:c2:cd:da:93:9c:62:
75:74:bf:4c:3d:53:ce:5a:63:93:1d:46:6c:e2:12:
88:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:D2:AD:2F:DE:D7:76:4B:6B:F1:2F:C0:24:6E:8B:4B:97:92:F6:E6
X509v3 Authority Key Identifier:
keyid:B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:23:01:24:c0:db:4e:68:2b:35:31:69:9f:45:11:c3:90:af:
fa:7e:b5:6b:a0:c4:c8:5d:cc:cc:7c:6f:7d:eb:30:21:06:de:
5a:0d:27:6a:35:37:cb:17:ce:4f:67:b5:f3:99:a6:48:05:e6:
79:3e:8a:4d:6d:42:18:e3:bd:21:91:00:8f:7a:29:97:44:2a:
6a:96:22:2a:9e:1a:92:fc:a1:86:8c:47:f2:85:b5:d7:f3:27:
dd:2c:60:89:d3:6a:63:a7:b3:18:c1:47:d8:12:14:aa:fa:0b:
84:c8:7f:24:86:8c:b9:1e:41:ee:e1:e5:bb:60:60:1b:be:fd:
12:8b:a9:68:92:c2:ca:63:de:9d:7f:57:d7:cb:17:28:fa:b0:
a0:30:43:c1:81:db:6b:d3:15:f2:e0:f0:3d:80:5b:36:75:ca:
05:d4:bd:97:38:96:03:01:07:57:b8:f0:c8:9c:8d:65:6f:17:
7d:1a:44:4a:bb:1d:4d:2a:e0:41:5a:68:36:55:53:20:70:a1:
af:d3:c2:97:7d:b3:52:cf:b6:b7:21:95:af:2f:ee:ef:fd:5a:
7a:97:19:e4:1f:be:c5:b1:35:43:c4:d6:a8:d0:8b:e8:eb:78:
3d:89:73:8f:5f:ae:4b:48:f9:61:9b:b1:bd:20:6c:95:3c:74:
38:de:d5:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:01:04 2025 by rpki-client