Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
File: TBdAzvl0ncKw9fiM3xA02oHWBtw.mft (raw, json)
Hash identifier: mpvkcJWVSDBmvifOfrTz1KtJjSjWrkSwqh2AiqFAcdc=
Subject key identifier: 2C:C4:7F:D0:82:C8:EF:E2:92:61:21:86:89:26:A8:72:F7:DF:C7:2B
Authority key identifier: 4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
Certificate issuer: /CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Certificate serial: 0197722CC9EFCFF2EC915BA8D728020D6352
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
Manifest number: 0F10
Signing time: Sun 15 Jun 2025 06:00:27 +0000
Manifest this update: Sun 15 Jun 2025 06:00:27 +0000
Manifest next update: Mon 16 Jun 2025 06:00:27 +0000
Files and hashes: 1: 9UfG7ZfqsnxXdNjOVBB4EufGuiU.roa (hash: nBGGqWZhxqHLJh+Oq/1SCIlZ0ENh9e+rLU6y/LQvQNA=)
2: TBdAzvl0ncKw9fiM3xA02oHWBtw.crl (hash: yrCm3af3Zb3DnwZJ0QFIzyVVB895FY52wwctbs/1RiM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:2c:c9:ef:cf:f2:ec:91:5b:a8:d7:28:02:0d:63:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Validity
Not Before: Jun 15 06:00:27 2025 GMT
Not After : Jun 16 06:00:27 2025 GMT
Subject: CN=2cc47fd082c8efe2926121868926a872f7dfc72b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0c:b6:55:08:a0:96:43:f7:73:5f:87:4e:40:
84:c9:21:a7:81:1e:74:6f:9d:c9:3e:1f:38:77:79:
28:4f:a6:cb:02:d9:09:17:cc:6a:89:3f:06:68:ea:
bf:e6:5e:5b:8b:0d:1b:17:14:99:41:2d:33:12:84:
59:6b:07:6c:5b:31:10:4b:01:19:ce:42:31:fe:40:
72:f9:af:a2:e8:3c:0d:bf:37:21:a2:a9:48:ea:9f:
2a:1d:e7:2b:d1:93:58:6f:55:40:06:6a:4c:cb:01:
6f:1b:42:1e:db:3b:4b:f4:e4:25:8f:dd:1b:92:9c:
a9:2a:3e:75:8e:dc:c6:b5:25:2d:76:0c:10:a5:5f:
d6:30:81:0a:f6:32:99:7d:2e:24:09:c8:3f:88:55:
89:99:b6:2a:6a:61:c2:16:22:52:f8:e6:b0:9d:40:
e1:27:6f:b9:07:dc:60:54:5b:bc:77:7e:3b:0a:5c:
48:8b:f0:ef:12:46:6b:d3:f6:f4:d8:76:c0:e9:65:
4e:63:97:38:cf:32:2a:09:5b:90:38:ee:59:6f:75:
c5:d3:f5:91:81:3d:01:56:d5:84:94:48:47:db:f5:
2b:b6:46:fa:fe:6c:51:f3:53:1f:8e:d8:8a:aa:c7:
ac:ab:cd:2a:6b:af:5d:ca:52:e6:53:26:0b:aa:ff:
45:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C4:7F:D0:82:C8:EF:E2:92:61:21:86:89:26:A8:72:F7:DF:C7:2B
X509v3 Authority Key Identifier:
keyid:4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:12:93:86:72:52:f6:28:ee:23:b9:f4:03:38:1b:3d:db:3d:
59:d6:c3:45:96:13:27:cb:3d:ec:a3:68:52:51:0d:09:5d:3a:
1d:29:8a:5d:68:4f:dc:39:60:fd:fd:23:e8:17:cd:09:f4:80:
6e:77:56:f9:a7:0c:ce:ca:1e:f5:0b:fa:88:e4:5a:c9:e7:3f:
84:c4:57:ba:ee:86:f1:25:96:1b:6f:25:83:53:98:8d:19:78:
5d:09:83:1f:c0:df:f3:06:da:ab:6d:b5:a8:a3:48:9e:e9:73:
a9:9b:a9:2a:0f:94:52:d3:f7:70:f0:39:95:a9:a6:1b:2e:b3:
1b:4e:ab:b0:6b:65:16:b6:4c:43:a4:81:a4:d1:5a:9f:bb:4a:
24:cc:e2:78:1e:95:06:37:72:01:48:23:ca:35:13:58:c3:9f:
04:86:4e:33:f6:57:2b:99:fe:57:21:b2:c6:8a:75:93:35:aa:
1a:89:02:55:cc:20:0e:3e:9c:bf:0c:33:4b:0f:de:e2:09:be:
c7:71:0b:8f:06:b1:0f:1a:a3:f0:c4:47:0b:8a:24:91:b7:e1:
86:a6:e5:33:22:75:86:9e:16:0d:e0:e3:e5:95:fa:28:25:9a:
b1:50:d6:10:30:86:31:ef:13:36:8e:5f:1e:ad:e0:7e:65:15:
09:50:3d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 13:11:31 2025 by rpki-client