Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
File: tZXiFxdovJspQknw46U1kBecUu4.mft (raw, json)
Hash identifier: PF6lTlUJVpbHXQ8bI33oBXJWUr/Msnba7VBqmhkk+Uk=
Subject key identifier: 86:E6:67:F8:B7:94:DC:B3:09:BC:30:DB:08:CE:F1:AB:A4:69:23:3A
Authority key identifier: B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
Certificate issuer: /CN=b595e2171768bc9b294249f0e3a53590179c52ee
Certificate serial: 019778D3CA847B01B2FDCC0EB945D485385A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
Manifest number: 1596
Signing time: Mon 16 Jun 2025 13:00:35 +0000
Manifest this update: Mon 16 Jun 2025 13:00:35 +0000
Manifest next update: Tue 17 Jun 2025 13:00:35 +0000
Files and hashes: 1: tZXiFxdovJspQknw46U1kBecUu4.crl (hash: U5YjOINeYYsIf2zKdG4RFU8uzCo51GuN9OJYxlUy++o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 13:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:d3:ca:84:7b:01:b2:fd:cc:0e:b9:45:d4:85:38:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b595e2171768bc9b294249f0e3a53590179c52ee
Validity
Not Before: Jun 16 13:00:35 2025 GMT
Not After : Jun 17 13:00:35 2025 GMT
Subject: CN=86e667f8b794dcb309bc30db08cef1aba469233a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9f:43:22:42:8d:d5:e4:a2:02:eb:38:17:1e:
e8:d5:4c:36:c1:45:f0:37:58:0c:9d:95:b8:93:26:
b0:70:d6:56:82:d9:f0:9a:9c:43:fe:e0:0e:a8:26:
64:ef:f4:6d:15:64:0d:35:5f:e4:0a:a8:e6:81:b9:
70:ec:d7:63:97:cc:c1:ec:d8:ad:16:28:79:c3:3f:
8a:7f:d0:5a:75:9b:ba:98:30:75:0e:d7:53:da:04:
37:80:69:7d:74:fa:78:9d:97:4b:6b:8c:79:70:d6:
1e:02:9c:b7:c4:8a:cf:62:3d:87:51:05:53:97:6d:
56:5f:91:67:8e:35:3b:e4:4a:bb:0e:ea:1b:01:99:
2b:bb:a8:40:71:f8:a4:08:b3:f5:5c:21:05:ee:a3:
f7:7c:ad:3b:cc:2a:b5:ae:8d:d6:75:cb:a0:a4:76:
33:3b:cf:e5:71:24:c5:22:82:bd:62:64:e7:7b:08:
3f:f0:b0:8e:a2:21:58:c1:2b:6e:8e:84:7a:ac:dc:
0b:f7:23:89:13:db:4e:66:30:68:8f:bc:28:4e:66:
03:85:d2:12:1b:7d:a9:58:a8:ba:9a:72:9a:30:91:
b4:fc:1e:1d:64:09:8f:80:31:60:c3:9d:31:a5:85:
02:c2:fc:af:ad:47:ec:26:cf:55:d3:11:39:73:e2:
52:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E6:67:F8:B7:94:DC:B3:09:BC:30:DB:08:CE:F1:AB:A4:69:23:3A
X509v3 Authority Key Identifier:
keyid:B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:c7:c6:27:ed:05:2f:09:46:85:a6:73:28:c6:39:74:09:bf:
e0:3c:7a:89:a8:69:40:54:2e:44:23:d6:7a:7c:55:22:e8:f1:
af:cf:35:46:61:75:5c:42:f5:d9:fb:9b:2e:85:d3:9d:e2:58:
1a:57:e1:93:6f:bc:5d:d7:2d:5f:c7:2e:58:e4:68:3a:1b:e2:
5b:da:5a:91:8d:89:d5:5f:21:23:09:0c:62:2d:48:eb:a3:f5:
e1:3e:2d:4f:69:bf:9a:43:eb:6e:b5:b4:66:0c:a8:30:8f:cc:
84:f2:c1:16:fb:3b:b1:56:50:73:9c:54:08:a4:1d:ad:1c:0f:
c0:e2:43:5b:9a:2e:54:22:12:f9:00:6f:f0:55:14:c9:35:c8:
0e:65:ce:eb:f8:6b:7a:26:77:83:55:dc:c7:33:2c:f5:3c:e7:
f9:d1:95:67:dd:f9:da:4c:d6:98:e2:9d:23:10:2c:19:03:bf:
fc:0f:17:68:f4:66:b1:d6:3b:b6:ba:16:de:01:08:2f:5b:93:
78:21:ec:23:57:e6:58:ff:7b:5d:06:e6:ab:d8:bd:62:67:b2:
5b:90:47:29:ed:4e:83:f6:b0:ec:48:8d:67:23:b9:f9:8f:fc:
a8:3d:29:da:9d:1f:c6:38:e2:2f:d9:61:53:9b:b4:70:c7:73:
c9:ed:e1:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 16:22:35 2025 by rpki-client