Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
File: TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft (raw, json)
Hash identifier: mNsOKT6FUWkg6NcLIUm2UC1tmSvxYT/n50LNE060a7k=
Subject key identifier: 0E:16:00:77:26:92:8E:73:49:40:88:89:53:2C:62:D8:28:A2:47:F6
Authority key identifier: 4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
Certificate issuer: /CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Certificate serial: 01976FD0A6EC08E7DE0BFEB67C8045EA7536
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
Manifest number: 1522
Signing time: Sat 14 Jun 2025 19:00:34 +0000
Manifest this update: Sat 14 Jun 2025 19:00:34 +0000
Manifest next update: Sun 15 Jun 2025 19:00:34 +0000
Files and hashes: 1: TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl (hash: 2N61cNZqEvkIHE23+2puhUboLbfYKzXoXik0USVtTFM=)
2: ilNe5KDmG0o6LZVjHMLtOGd-0DQ.roa (hash: JkEgQ36ayeHC4m0mo3MRV7E4gABrbKLeaaxVJdDM2eE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:d0:a6:ec:08:e7:de:0b:fe:b6:7c:80:45:ea:75:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Validity
Not Before: Jun 14 19:00:34 2025 GMT
Not After : Jun 15 19:00:34 2025 GMT
Subject: CN=0e16007726928e7349408889532c62d828a247f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f7:7b:18:0d:4b:38:cf:90:96:6a:ef:06:3a:
a7:0c:a7:f2:0e:cf:28:ce:28:46:27:3b:d5:89:cc:
d0:a3:ae:eb:a4:74:b0:57:ec:79:01:99:61:1f:50:
23:b8:c2:2b:b4:4f:51:36:a5:99:6f:77:45:3e:b8:
09:36:15:ce:96:50:35:fa:de:46:1b:33:f4:3f:f4:
74:51:0d:ec:56:b3:7c:e0:fa:22:91:7f:e8:8c:97:
aa:10:e3:21:c4:cb:44:55:6f:05:21:12:f5:59:ce:
26:0e:57:2e:76:d4:57:e0:27:ad:09:6e:db:49:34:
b7:e3:63:84:c3:b2:c6:65:0a:5e:d5:88:dd:8d:08:
98:2d:d9:33:fd:1c:1d:16:b1:b6:9f:07:dd:32:fb:
28:b5:4d:a2:0e:c7:8d:c5:63:77:cc:02:54:6a:bd:
4b:4a:a0:00:1d:c2:99:73:68:f8:1a:91:12:48:a3:
9d:4d:e5:e5:ac:0a:fc:db:16:56:71:5b:cd:05:2b:
11:89:fe:d4:80:a9:69:87:b6:0f:2f:e1:fe:60:8b:
02:d2:75:89:56:46:6c:42:c5:98:52:5f:e8:af:70:
ae:ac:25:3a:75:41:da:15:62:e5:9a:cd:71:72:eb:
0f:1f:fe:ea:db:bf:ff:31:37:0a:b5:6f:4f:49:84:
59:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:16:00:77:26:92:8E:73:49:40:88:89:53:2C:62:D8:28:A2:47:F6
X509v3 Authority Key Identifier:
keyid:4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:8c:bb:c9:80:db:c1:0b:d4:f2:83:2c:fb:14:41:a4:a6:df:
b4:dc:7b:a2:8b:b7:5d:76:12:c9:1f:96:95:03:30:3b:dc:22:
a5:36:37:02:1f:25:ac:ef:97:98:9a:4e:cc:2d:b8:54:a7:31:
4b:21:4c:95:99:6f:20:fe:2a:68:d0:b4:f5:bd:8f:ec:41:3d:
db:62:b4:ad:7e:97:bb:08:32:50:85:6d:00:5c:98:ba:e1:cf:
b7:87:84:60:a3:c9:0f:0d:5f:0d:59:ad:03:61:e0:14:16:a9:
f7:64:89:34:26:e7:ee:3d:97:91:9b:2d:7c:fc:2f:aa:9d:74:
e9:41:7a:55:80:93:26:30:57:97:49:0b:07:c5:2b:dc:85:12:
38:43:43:c1:9e:3d:48:3c:62:b9:5f:88:3b:38:d2:d1:0b:0c:
3d:39:d3:1c:5e:a9:36:50:05:64:ae:13:d8:86:df:64:ec:56:
68:fc:60:db:02:bc:57:40:c7:d0:14:7f:68:2a:e0:19:df:a4:
dc:7a:94:8f:7f:c5:b7:7f:31:d5:f4:bc:82:6b:37:9b:d0:24:
ac:f9:6d:a7:22:97:3a:0c:31:2c:d7:4d:d4:a2:cd:b5:72:14:
72:69:0c:29:d1:bc:8d:ff:15:9e:c3:60:e2:27:9e:33:54:95:
71:c0:cc:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:01:56 2025 by rpki-client