Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
File: rwlQP8rAF2lRWhny3CZX2S_TUN8.mft (raw, json)
Hash identifier: oyCDMoZfy9qcQr8rnzluQesQJ1soyt+h1dQsvg+7hsY=
Subject key identifier: 26:B1:F4:AF:96:23:C0:33:52:15:A1:8F:5A:AD:07:40:F1:0A:3A:E9
Authority key identifier: AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
Certificate issuer: /CN=af09503fcac01769515a19f2dc2657d92fd350df
Certificate serial: 01976A0617FD618159BF8BDC2DEA57A38528
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
Manifest number: 1520
Signing time: Fri 13 Jun 2025 16:01:13 +0000
Manifest this update: Fri 13 Jun 2025 16:01:13 +0000
Manifest next update: Sat 14 Jun 2025 16:01:13 +0000
Files and hashes: 1: bI5hqVT8m0qS2JmySaAVyieiKDc.roa (hash: Ur47592mLsTtDVQWZDc8e3eMtHnqyDHoxs3kpjL/ez4=)
2: rwlQP8rAF2lRWhny3CZX2S_TUN8.crl (hash: Fky4Y0+iBYNkqjt9oKKfKmODhKO7Zudwhx+EBz8iRlk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:06:17:fd:61:81:59:bf:8b:dc:2d:ea:57:a3:85:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09503fcac01769515a19f2dc2657d92fd350df
Validity
Not Before: Jun 13 16:01:13 2025 GMT
Not After : Jun 14 16:01:13 2025 GMT
Subject: CN=26b1f4af9623c0335215a18f5aad0740f10a3ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:03:b6:d8:6b:f0:87:d4:a4:c8:03:3e:51:7d:
28:62:f8:72:1a:dc:ae:f7:a1:06:d5:0a:b0:8a:23:
78:80:99:6f:24:16:55:ec:e8:19:f2:67:64:c1:7b:
6e:81:55:5f:74:65:55:96:18:60:dc:51:60:44:a7:
e7:89:e5:d8:bf:cb:63:e3:73:ed:9a:7a:35:03:00:
a9:74:69:60:67:88:b4:74:04:5f:3d:c1:95:82:97:
91:d3:f2:5b:41:e7:86:40:54:74:c0:7c:98:41:30:
c5:78:29:64:99:f7:15:3f:32:8a:17:a0:87:5e:77:
79:82:0a:20:ee:48:15:7f:87:b6:15:1f:fe:a9:40:
aa:71:cc:de:aa:cf:d2:ba:01:d1:43:79:84:ba:27:
0a:b3:32:13:1a:25:99:14:3b:db:c2:e9:68:7f:75:
e2:95:53:69:52:b7:48:5c:42:d8:07:b6:03:a7:ea:
00:03:07:9c:94:00:48:27:76:4d:a4:b1:60:22:22:
2c:74:f3:34:1e:04:b9:fe:c3:53:d7:83:1e:e9:bf:
45:46:9c:8c:fb:c4:4e:3b:33:3f:1c:a6:f5:1f:7a:
14:d5:81:ce:52:65:b9:d4:38:43:c9:f5:24:ef:4a:
78:32:ec:1f:ea:e5:b6:f6:67:53:7b:3b:5e:03:01:
1a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B1:F4:AF:96:23:C0:33:52:15:A1:8F:5A:AD:07:40:F1:0A:3A:E9
X509v3 Authority Key Identifier:
keyid:AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:07:2d:d3:df:0b:ca:eb:8d:82:f6:ad:db:38:c7:da:d7:48:
29:63:88:18:97:57:60:53:f3:23:f0:b2:a2:f3:ca:f4:3d:30:
9d:c3:13:de:51:22:29:77:a4:97:02:24:d2:aa:73:27:a5:e0:
99:da:9f:91:0f:e3:d9:93:3a:1d:e5:0a:e9:9b:82:31:17:50:
ac:96:2b:41:09:96:b1:16:34:e3:0d:33:3a:b0:f5:67:a9:52:
90:25:68:0c:1d:0c:2c:cb:76:4b:0a:59:09:83:23:08:03:84:
ce:27:ec:87:55:49:0d:09:40:8c:6b:da:4e:0e:35:94:c3:60:
38:20:76:87:35:a5:20:94:64:e7:ae:5d:48:8e:5e:b7:76:25:
e9:86:0c:6d:ca:90:be:49:23:03:23:eb:95:5f:5b:11:31:64:
88:6e:a0:a6:2d:42:0e:d3:9d:28:ee:77:e5:59:3a:70:bc:75:
e0:cf:e5:5b:30:f0:cc:57:9a:01:ae:8b:6c:e4:1c:43:1a:90:
81:bb:18:9e:9f:34:84:31:88:84:06:d6:b7:ee:68:b4:72:1b:
07:b9:70:c9:f4:c3:68:12:13:93:4c:fd:64:33:c6:66:44:37:
e2:eb:26:80:d5:13:2f:13:7e:f1:16:f6:62:b1:41:29:6a:e9:
3f:14:f7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:22:38 2025 by rpki-client