Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft
File: ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft (raw, json)
Hash identifier: cvGQF19WNhoTWb4b8J77EWkMvx0M3N8oRAMLOW20wHE=
Subject key identifier: 89:98:0A:53:27:36:AE:FF:AE:44:FF:40:D8:65:F0:7A:71:D8:3F:69
Authority key identifier: B5:AD:09:67:CA:00:02:DD:9C:E4:5B:C4:3B:B7:01:B4:17:3D:79:BD
Certificate issuer: /CN=b5ad0967ca0002dd9ce45bc43bb701b4173d79bd
Certificate serial: 01976C990B6E78115C755BA2C9FB24F4A249
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft
Manifest number: 0BB3
Signing time: Sat 14 Jun 2025 04:00:58 +0000
Manifest this update: Sat 14 Jun 2025 04:00:58 +0000
Manifest next update: Sun 15 Jun 2025 04:00:58 +0000
Files and hashes: 1: ta0JZ8oAAt2c5FvEO7cBtBc9eb0.crl (hash: R8j6raXacriBqeTUihh9XgTllIIUtSftKmry1FILglQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:99:0b:6e:78:11:5c:75:5b:a2:c9:fb:24:f4:a2:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ad0967ca0002dd9ce45bc43bb701b4173d79bd
Validity
Not Before: Jun 14 04:00:58 2025 GMT
Not After : Jun 15 04:00:58 2025 GMT
Subject: CN=89980a532736aeffae44ff40d865f07a71d83f69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cc:80:d9:19:17:3e:7c:9a:d6:4e:45:c1:05:
42:8c:7f:99:28:94:29:a7:33:80:ec:68:df:e8:a5:
c8:d4:11:df:0f:55:f6:bf:f8:a3:26:f3:fe:c8:63:
07:39:bf:ec:4c:c3:d9:a8:a4:8c:db:fa:8b:dd:be:
98:e1:36:90:bc:e5:90:30:0b:1b:73:62:e2:a7:0f:
0c:1d:61:3d:45:20:8a:85:c7:bf:85:fe:b8:e1:a9:
d3:88:02:74:f5:21:b0:66:9f:65:fb:aa:96:1f:f8:
30:2b:ef:71:a9:ee:86:71:45:b8:07:55:a7:2d:48:
e6:c0:c3:91:df:c8:b7:53:d9:4d:5f:c6:a5:81:7d:
ff:3a:94:2c:5a:b6:bc:84:84:c3:ad:ef:4b:b0:5e:
83:16:1a:4a:dd:c8:f6:fb:39:a9:69:4d:61:10:75:
57:92:a5:4e:b0:4f:0b:6e:ec:77:7f:79:ee:2f:60:
03:ea:e0:21:55:fc:66:67:f6:6e:ce:d7:d8:07:4f:
64:87:65:04:cf:d0:29:88:1c:c0:c8:9f:d1:03:c8:
0d:e8:35:18:93:29:d3:47:e6:1c:41:e2:52:71:64:
1a:af:f0:19:42:65:ac:27:26:db:4c:46:67:28:37:
35:f4:e4:9e:01:23:a3:78:e4:5c:cb:d1:c6:c5:92:
09:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:98:0A:53:27:36:AE:FF:AE:44:FF:40:D8:65:F0:7A:71:D8:3F:69
X509v3 Authority Key Identifier:
keyid:B5:AD:09:67:CA:00:02:DD:9C:E4:5B:C4:3B:B7:01:B4:17:3D:79:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:75:8e:32:75:e4:28:e5:f6:1a:d2:6b:58:5f:99:67:32:f2:
09:b4:e0:3d:d7:b3:ac:04:fe:d0:76:27:f2:5b:cc:49:11:53:
b7:e1:78:22:2b:f4:20:71:ce:ef:40:ba:0a:7d:2a:44:e2:03:
a5:26:a1:60:d8:4e:aa:a2:58:2c:37:ef:10:01:b8:48:72:ed:
59:c6:57:d1:57:f8:5d:f6:e7:b8:00:3a:85:41:6f:3c:e4:54:
db:26:a3:e2:c5:51:41:e3:39:e2:f1:8f:3f:08:57:e8:6e:5a:
e2:c7:ef:f0:b5:5c:34:59:7f:19:59:d8:b3:20:87:9b:42:73:
c7:db:24:d8:f6:5a:98:76:ef:5c:14:87:a9:79:d6:51:2b:1a:
aa:f0:ae:9f:3a:1c:51:6b:2c:5e:40:a1:68:b4:32:84:d9:82:
85:e3:45:e6:71:ff:4f:d3:27:29:e4:55:57:60:2e:0e:4c:ac:
7d:ed:05:61:ed:df:c3:e4:90:a6:cc:96:67:c5:fa:ca:3e:cc:
88:eb:9a:34:05:7c:e5:c2:26:10:f0:4c:fa:df:7c:73:1e:81:
65:3b:5e:25:81:8f:a0:c3:4f:6e:27:25:12:c3:c1:ff:f2:8b:
2a:bc:34:70:b5:16:ee:67:2b:9f:15:6a:c3:40:a1:83:b6:c4:
f5:c2:b0:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:44:44 2025 by rpki-client