Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
File: txRZXFDDUZIbDemldUChXlwcYYo.mft (raw, json)
Hash identifier: swwI+OjEQGUWhi00MNorBhfClaO/8+NbJRXnyec8+HI=
Subject key identifier: 1D:56:53:2F:2F:2B:1A:1F:23:9F:C9:07:8A:9C:EC:F8:43:6B:52:A1
Authority key identifier: B7:14:59:5C:50:C3:51:92:1B:0D:E9:A5:75:40:A1:5E:5C:1C:61:8A
Certificate issuer: /CN=b714595c50c351921b0de9a57540a15e5c1c618a
Certificate serial: 019771F64E911D74DBBD48C4C5E427747063
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/txRZXFDDUZIbDemldUChXlwcYYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
Manifest number: 0FF3
Signing time: Sun 15 Jun 2025 05:00:56 +0000
Manifest this update: Sun 15 Jun 2025 05:00:56 +0000
Manifest next update: Mon 16 Jun 2025 05:00:56 +0000
Files and hashes: 1: 2m5iIAK03n8_QUvPwXckjr2TMEU.roa (hash: ZU7+W8vWoLJfyvrECJJAIJpcDrdAhqoCYTZBjsh+l9c=)
2: txRZXFDDUZIbDemldUChXlwcYYo.crl (hash: u605iss0WjYD20NFTJ/V2syR7z636et1WtmYorSRdIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/txRZXFDDUZIbDemldUChXlwcYYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:f6:4e:91:1d:74:db:bd:48:c4:c5:e4:27:74:70:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b714595c50c351921b0de9a57540a15e5c1c618a
Validity
Not Before: Jun 15 05:00:56 2025 GMT
Not After : Jun 16 05:00:56 2025 GMT
Subject: CN=1d56532f2f2b1a1f239fc9078a9cecf8436b52a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5f:1d:30:10:88:8f:e8:16:3f:2e:52:8e:b4:
13:a7:ab:24:20:fd:16:bb:83:7a:10:40:b7:26:7c:
29:a8:eb:63:ce:76:cb:d2:99:2b:6b:ee:0a:49:df:
63:a9:46:7b:e8:aa:91:0a:d2:16:cf:0c:d2:89:69:
05:50:77:8f:74:e0:e2:79:fa:b2:ae:58:0f:d0:a7:
0d:1a:dc:88:38:18:13:85:60:2c:ac:0e:d8:8a:68:
1c:fe:4c:6e:be:2e:eb:b1:c7:d2:b7:56:f6:d4:4f:
ff:9b:f1:1a:4d:6f:13:7e:69:14:7f:85:2e:a1:0e:
18:66:43:8b:4a:ae:3a:92:7f:ef:b5:47:2b:60:eb:
d7:f2:76:c6:18:83:30:9d:a4:3f:a1:0a:d8:70:17:
92:cb:6b:0d:08:9e:43:dd:8c:8f:4d:ff:1f:00:a9:
d5:6c:22:49:81:9c:45:0a:41:5c:19:66:3b:4d:91:
d5:df:2d:e1:2e:12:d0:02:6a:d9:c2:34:89:62:21:
a8:93:39:a7:be:a9:02:94:89:3a:5d:45:b1:93:25:
3e:15:2a:09:c3:ca:0c:c1:99:ee:ff:5a:af:63:d4:
81:34:47:34:8d:a9:d1:65:90:d6:09:92:a0:ab:4c:
0b:e6:c9:64:06:25:15:2b:2b:54:04:e1:8d:4f:89:
f1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:56:53:2F:2F:2B:1A:1F:23:9F:C9:07:8A:9C:EC:F8:43:6B:52:A1
X509v3 Authority Key Identifier:
keyid:B7:14:59:5C:50:C3:51:92:1B:0D:E9:A5:75:40:A1:5E:5C:1C:61:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/txRZXFDDUZIbDemldUChXlwcYYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:6e:34:6b:29:1b:94:ed:16:1e:e4:c6:ac:7b:23:5e:1c:f0:
ac:45:1f:5d:be:1d:06:7c:7f:b4:33:9a:bb:8f:99:6a:fa:ca:
09:d3:75:8a:09:1b:99:23:c9:3e:2c:27:97:a4:8c:8e:13:15:
a1:52:d5:ae:95:61:38:a7:7a:7b:a1:67:06:e0:1d:91:5e:04:
62:50:cc:46:c5:23:3e:e1:39:07:89:6a:ab:f3:a8:56:98:ea:
11:69:ec:61:50:96:99:06:3c:61:67:79:d0:e7:ef:9f:32:e0:
c0:c4:cb:67:61:94:33:06:43:de:7d:8b:e6:03:d4:37:e0:90:
a3:93:c5:a4:86:8d:9e:c3:87:80:a6:1f:8b:47:b6:1a:76:c4:
96:a1:cf:d5:8a:28:f6:b3:85:90:12:94:c3:50:a5:2d:d7:65:
49:a7:3c:fe:66:9d:4a:39:b4:07:f9:23:be:13:38:05:28:38:
4e:50:9d:23:73:ea:37:25:d0:3b:36:a6:63:59:dc:e2:7e:a7:
31:1d:3c:aa:29:87:0c:2a:58:17:09:2e:d6:14:53:f7:9f:c6:
ef:b4:d1:93:e7:9a:66:b7:98:25:33:75:e5:5e:e9:20:1e:59:
4e:63:a7:87:07:2e:6a:1d:20:4f:0a:c4:9c:75:e0:3f:c0:b6:
61:9b:f8:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:03:09 2025 by rpki-client