Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
File: tDuXodIfY3tUkTDwhXpoHMf2iEw.mft (raw, json)
Hash identifier: fsud9b6eofZxYT3cFIi+2mk0mGJwIx9OCNJkl9PR04o=
Subject key identifier: 7B:A9:EF:8D:6B:36:16:0B:EC:05:8D:5D:90:30:62:1A:38:B1:3F:AF
Authority key identifier: B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
Certificate issuer: /CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Certificate serial: 01976D3DDD2F5C748A93CD45FD9B4CE3902B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 07:01:00 +0000
Manifest this update: Sat 14 Jun 2025 07:01:00 +0000
Manifest next update: Sun 15 Jun 2025 07:01:00 +0000
Files and hashes: 1: 3-CNHKGdJXMpTXntAh-s3qj--cM.roa (hash: 2BpPHYt1k/l10pBcIexz0ktK+xFvs5F87gVofFcEgls=)
2: tDuXodIfY3tUkTDwhXpoHMf2iEw.crl (hash: OgB5lhLQMkX20JVbro/cnMjfrtlcRj14EFshs5J1Nlw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:dd:2f:5c:74:8a:93:cd:45:fd:9b:4c:e3:90:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Validity
Not Before: Jun 14 07:01:00 2025 GMT
Not After : Jun 15 07:01:00 2025 GMT
Subject: CN=7ba9ef8d6b36160bec058d5d9030621a38b13faf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:82:29:c0:8a:7a:76:8b:a3:ff:ab:6f:44:00:
f6:b8:e5:44:77:a4:2a:8b:c4:62:bb:3f:b8:fb:e4:
94:48:a5:3f:4c:13:07:55:bf:68:99:bd:ce:b4:49:
2f:b3:17:39:c3:49:bb:f4:21:cb:0f:83:f9:d4:46:
95:7d:b9:ce:63:9b:ba:6b:ba:0b:d5:31:b5:34:2d:
2f:9b:84:d5:d0:5d:f6:72:a6:4a:65:dc:43:fd:ff:
2e:2b:66:a3:29:51:ec:61:8d:aa:21:b4:da:d4:88:
41:39:4a:54:47:76:24:13:25:0c:3d:2a:f7:91:0c:
e0:93:12:96:ad:e3:7c:1e:0c:16:18:9f:55:da:60:
ba:05:cb:f1:f7:eb:63:b5:6e:6c:cc:e8:47:e4:ce:
6b:46:03:f5:e4:48:03:4e:3f:15:81:da:36:b2:13:
cd:3d:2e:16:5e:2b:be:29:80:04:1a:ad:79:77:fd:
e4:26:2b:8e:bd:9b:b8:6b:4b:85:24:5c:4f:fe:19:
3b:d0:95:ee:bc:96:dd:f5:45:16:78:0e:cc:fa:dc:
22:e0:d6:3f:a4:a1:a4:5e:90:fe:85:7c:9d:c7:94:
ce:78:5e:79:ae:08:69:a4:c6:4f:63:47:45:a5:6c:
11:15:38:42:d0:91:0b:68:d0:5a:ea:c1:58:4a:c7:
81:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:A9:EF:8D:6B:36:16:0B:EC:05:8D:5D:90:30:62:1A:38:B1:3F:AF
X509v3 Authority Key Identifier:
keyid:B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:2a:97:28:2f:dc:0b:f0:f0:ab:97:d2:f4:ba:bb:d0:f9:1f:
a2:92:87:d7:7b:f7:2f:aa:46:bf:46:18:14:6f:40:cd:69:e7:
42:cc:22:0e:09:1c:8f:97:f6:07:6c:92:da:17:98:26:92:18:
77:5b:34:45:66:ec:48:82:ed:ca:e4:f6:32:72:e5:9f:08:91:
5d:e6:e5:e6:72:f1:25:64:7a:7c:75:af:15:97:d8:02:e8:be:
bf:30:d0:4c:88:d9:cd:b7:25:89:30:67:fc:5c:ea:6f:94:9a:
94:0e:69:ec:71:d9:78:c8:5a:9b:c6:19:9b:74:6f:5c:6a:36:
4d:6b:1a:f8:56:64:0c:53:1a:81:38:5f:e5:b1:a1:fe:bc:02:
ed:e3:40:3c:dd:a9:9f:40:c9:f5:8c:7b:34:8d:ec:47:79:10:
29:1e:33:3e:0a:98:ae:8c:39:ab:1e:ae:65:8c:bc:a5:1b:bb:
cd:eb:b1:30:38:5e:9f:3a:f2:12:0c:eb:79:88:e8:01:0c:8e:
a2:e5:b4:f9:6e:9d:61:eb:b6:24:0b:1d:bd:01:fb:2d:3f:c6:
25:48:1c:fb:8f:58:1a:14:0b:90:6e:80:39:18:6d:6e:8d:7e:
2b:f8:4b:f6:a0:97:50:4e:ed:bb:18:4e:19:7a:b0:3d:2e:73:
4b:02:54:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:57:21 2025 by rpki-client