Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
File: tkDbwv_PXWNFicBEAV1xdcuv8-0.mft (raw, json)
Hash identifier: +4qF53SIjyuZOqnCZgQTlTazfqFw5tz5yBsFwHEhTWs=
Subject key identifier: 2B:AA:F7:FF:DB:D1:9F:F5:8E:8E:42:0C:6D:FF:FB:4F:58:9A:B5:AA
Authority key identifier: B6:40:DB:C2:FF:CF:5D:63:45:89:C0:44:01:5D:71:75:CB:AF:F3:ED
Certificate issuer: /CN=b640dbc2ffcf5d634589c044015d7175cbaff3ed
Certificate serial: 01976A05DFD5746D6AFB8E3FD406F2C2B7E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
Manifest number: 102C
Signing time: Fri 13 Jun 2025 16:00:59 +0000
Manifest this update: Fri 13 Jun 2025 16:00:59 +0000
Manifest next update: Sat 14 Jun 2025 16:00:59 +0000
Files and hashes: 1: tkDbwv_PXWNFicBEAV1xdcuv8-0.crl (hash: CqhkCiooVt8M71W/U/bZkcNgDFQN85fuDynNV02vYCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:df:d5:74:6d:6a:fb:8e:3f:d4:06:f2:c2:b7:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b640dbc2ffcf5d634589c044015d7175cbaff3ed
Validity
Not Before: Jun 13 16:00:59 2025 GMT
Not After : Jun 14 16:00:59 2025 GMT
Subject: CN=2baaf7ffdbd19ff58e8e420c6dfffb4f589ab5aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ce:2e:f4:77:6f:9d:41:e1:aa:a5:86:56:32:
9a:52:45:55:18:32:59:0a:64:25:60:33:2f:8e:3a:
a1:a7:91:33:38:55:66:05:9e:ce:17:58:85:2c:61:
1a:14:9a:a1:c1:ff:7e:d5:0e:12:86:4d:e0:bb:8d:
4e:97:2b:32:ab:05:ce:0f:89:38:ad:fe:fa:08:08:
c9:fc:51:aa:df:5b:ca:06:9a:67:aa:b3:e2:22:6e:
4d:8d:f3:93:c2:07:eb:bd:10:88:f6:7c:85:23:01:
e9:2b:3b:92:78:aa:8c:9c:43:9a:d3:a4:11:45:42:
8e:4f:39:8b:b5:9e:93:0d:03:7e:4d:6b:10:93:c4:
15:71:6e:ec:63:39:f0:4c:4d:b1:26:b6:68:49:b5:
12:9a:01:a6:d5:dd:34:38:a0:cc:7c:5d:16:a3:67:
cf:cd:1b:5f:21:d9:34:07:90:c3:2e:5c:fd:77:24:
9b:0b:d3:29:83:0a:d6:75:8f:f1:80:c1:fc:a1:24:
68:5b:ad:f4:47:c0:d5:fd:38:6a:50:e9:ed:0d:8a:
bf:9d:85:0f:5e:0e:10:78:ee:aa:24:df:bd:25:02:
94:7c:13:d5:e6:3a:43:e3:76:b1:47:2d:94:eb:4b:
ba:0f:66:35:3b:5a:e4:7f:d3:2b:24:6e:2a:0c:d0:
c0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:AA:F7:FF:DB:D1:9F:F5:8E:8E:42:0C:6D:FF:FB:4F:58:9A:B5:AA
X509v3 Authority Key Identifier:
keyid:B6:40:DB:C2:FF:CF:5D:63:45:89:C0:44:01:5D:71:75:CB:AF:F3:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:ee:6d:a0:e8:6c:c7:4d:11:c5:03:95:d2:a1:ce:0c:66:72:
c2:70:20:a7:dd:67:2c:3e:80:0a:c2:fd:c3:45:ea:17:a3:d7:
d2:1d:28:4b:4b:66:ce:e8:86:70:9d:3c:c7:4b:45:a0:5a:cb:
a9:a6:89:76:70:68:fd:4f:d6:b6:29:91:e1:59:15:a2:e1:47:
c4:70:fc:99:1f:82:83:09:00:52:a6:87:a6:72:30:a3:33:1b:
a3:60:c5:94:95:fb:ad:f1:fe:36:c3:8c:00:c5:86:a2:f2:cc:
54:ec:6d:92:99:0c:f4:cb:59:1e:d5:fc:02:3c:6b:05:68:91:
d7:33:c4:5e:bf:83:34:8f:e9:5b:b3:2d:0f:19:1f:35:86:b8:
ab:23:84:5d:2e:c6:37:ba:db:94:6f:91:01:e9:cf:d5:b4:68:
3a:92:f3:94:88:1c:38:69:39:83:83:67:fa:5b:d1:85:e5:9d:
ce:ed:5d:2d:49:74:5c:b4:a2:ce:5d:63:67:c6:ef:d7:65:94:
84:a8:50:29:79:0b:1e:75:8e:0c:95:dc:30:f2:51:28:5a:d7:
e3:4f:80:68:e8:39:c1:9f:8c:c8:ef:22:c0:f4:6e:09:8f:03:
fc:0c:de:43:bb:e9:c9:e0:c9:e9:81:9b:6e:64:1f:64:fe:53:
ce:ce:98:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:01:50 2025 by rpki-client