Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: onuEtvgVmS5EfeWHtlH1l5IFQAixr93AvaOfKdiiYds=
Subject key identifier: A7:6E:9C:E5:0B:47:E2:EB:A4:E2:88:61:A1:FF:DC:CA:50:77:9F:E2
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 01976C61F473472887FFDCB9397622C9ABBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 03:00:48 +0000
Manifest this update: Sat 14 Jun 2025 03:00:48 +0000
Manifest next update: Sun 15 Jun 2025 03:00:48 +0000
Files and hashes: 1: DvRXNlTCR35yGxJPggKI6LQ1TXY.roa (hash: uCs5edSvBBj2KY6s6HL8wAMD7pMX49G3e3NvxavAQGo=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: +xUf2zsgL8GxfiE/45WYSedMBfZK9UAYDUrtur29V2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:f4:73:47:28:87:ff:dc:b9:39:76:22:c9:ab:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: Jun 14 03:00:48 2025 GMT
Not After : Jun 15 03:00:48 2025 GMT
Subject: CN=a76e9ce50b47e2eba4e28861a1ffdcca50779fe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:98:49:4b:15:7c:98:02:03:8b:95:9d:9e:fd:
13:5a:40:69:2d:3b:f8:ac:4f:1c:6c:dd:f9:3b:33:
64:fd:13:61:1c:cb:f7:09:62:d8:db:ed:a7:07:1f:
4f:c9:db:31:5e:79:bf:e9:a4:53:99:bf:0d:fa:e6:
35:72:5b:dc:40:5c:3c:85:f9:4f:20:c1:f3:79:fc:
c0:0c:ed:f5:8b:a2:bc:25:d4:a3:b5:1b:1f:e2:2a:
3c:29:00:c1:a2:f7:04:1d:34:c1:b9:3a:b1:69:e3:
f3:a7:62:c5:16:f2:10:b3:18:5d:76:e7:02:27:b5:
4f:e8:be:7a:60:70:ee:6d:3f:8f:61:30:e1:6e:26:
b7:03:9f:e5:ea:30:11:c8:8d:35:d5:01:73:3e:03:
9a:a6:c2:e9:f6:04:97:15:c0:d5:6f:1f:7d:7e:55:
81:cb:aa:ca:9c:e0:8f:a4:c3:25:7d:87:c6:83:52:
08:e4:f0:e1:a7:87:1e:ae:95:6e:a3:bf:87:cd:63:
ad:9a:bb:5e:50:9d:e2:b1:28:e2:a1:e1:9f:ed:39:
f8:30:1e:ff:00:b8:47:e9:e5:46:f3:08:be:b7:f7:
fe:81:43:07:b6:81:e3:2a:26:ee:80:4d:64:c5:42:
03:88:80:2a:c0:b0:eb:4c:e9:8f:e2:0f:8f:1d:15:
cf:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:6E:9C:E5:0B:47:E2:EB:A4:E2:88:61:A1:FF:DC:CA:50:77:9F:E2
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:1a:06:88:7a:67:54:4a:43:9d:29:3d:b2:1d:e6:22:44:c7:
a1:7b:0f:eb:18:bf:9d:70:52:79:7e:f9:87:fb:b8:45:b9:db:
7f:81:ba:a7:a4:db:7f:99:a6:1e:9c:27:8f:39:07:ed:6f:67:
74:a1:b2:39:02:8c:a1:23:9e:0d:08:ed:50:49:14:86:d3:ad:
71:83:c6:07:76:63:5c:86:02:3c:6c:1e:9e:af:49:60:2b:e0:
3e:8f:91:9f:5a:07:4d:fb:a0:5a:ae:3c:12:22:a6:c6:29:ab:
13:69:1a:89:7e:29:40:c3:ef:22:97:84:2a:a4:e2:75:5c:ef:
47:02:e9:c0:43:84:99:67:8a:ab:b9:49:ac:00:9a:7c:0e:f0:
e2:2b:32:1a:28:57:c1:20:b4:a2:98:66:e9:0e:39:0e:ac:aa:
7d:e4:c3:2b:89:1d:a7:0c:82:8c:43:b7:34:ae:2f:76:f8:79:
bf:7e:4d:96:f3:8b:99:3b:33:15:b7:54:b2:78:c0:26:b4:52:
04:fd:75:5f:0f:a1:01:48:5f:3e:b5:79:d8:78:03:13:29:c5:
4a:0a:49:e8:89:d4:11:64:57:81:2a:7e:f1:9a:43:07:77:0c:
ed:de:29:b3:55:35:dd:f0:7e:6d:96:91:25:e6:bb:d0:f0:8d:
41:60:88:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 13:06:14 2025 by rpki-client