Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: HHU9wHaMhWks/mxzevk7RfQrMf5egJrav64WZ/GzUAE=
Subject key identifier: 3C:20:97:6C:E7:7C:8F:A3:03:61:18:A1:1B:47:A9:82:F8:6A:59:1F
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 019771BF8A37B2ABA2C2A5D6FEE15B81A187
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 158F
Signing time: Sun 15 Jun 2025 04:01:07 +0000
Manifest this update: Sun 15 Jun 2025 04:01:07 +0000
Manifest next update: Mon 16 Jun 2025 04:01:07 +0000
Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: QplpAzxFo6Z9OV0GYmhh67X0TP7koM/kaYEzE3SVEa8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:bf:8a:37:b2:ab:a2:c2:a5:d6:fe:e1:5b:81:a1:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Jun 15 04:01:07 2025 GMT
Not After : Jun 16 04:01:07 2025 GMT
Subject: CN=3c20976ce77c8fa3036118a11b47a982f86a591f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:df:fb:20:cb:ff:1a:4c:f8:ba:54:b9:f4:ce:
a4:4b:ac:40:c2:9d:6b:df:e0:e3:93:ee:38:3c:8e:
9a:bb:19:32:c1:1e:d2:4b:cc:6a:67:ee:30:70:f3:
28:e2:21:9c:78:75:2e:53:d2:8b:73:e2:8f:9e:17:
b6:ea:0f:8b:e4:e4:e0:fb:9e:25:53:c4:2e:c8:08:
c8:6d:e3:8b:78:c7:1d:66:23:b3:0d:c4:bd:4a:78:
17:7b:5b:54:c2:da:d8:b6:68:77:58:ea:27:b9:c4:
5e:79:35:23:20:4b:fc:96:b4:ba:79:c3:a7:2f:90:
f7:97:71:a9:22:99:9e:cd:f3:a3:ec:47:fb:55:02:
f3:1f:09:54:83:08:72:44:ac:40:9a:55:b2:00:01:
e1:a8:85:47:a6:52:c9:aa:d8:c4:06:dd:7e:32:d2:
bd:1f:73:ac:48:2e:fd:cd:56:ca:fa:95:80:a4:e2:
19:b0:34:fe:9c:16:93:e0:66:4f:73:75:7f:1e:37:
3e:44:17:11:ff:97:78:b2:9b:19:f6:a6:b6:b5:b1:
07:ab:bd:95:b1:31:85:8d:9a:81:26:90:45:9e:ef:
ce:25:bc:32:75:99:bd:cb:e7:1f:72:78:b3:8c:c7:
e0:ec:d8:c0:ac:8b:b8:22:c7:88:5b:ee:c3:90:0f:
c3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:20:97:6C:E7:7C:8F:A3:03:61:18:A1:1B:47:A9:82:F8:6A:59:1F
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:0e:7e:b3:f3:cc:6a:09:4f:dd:9b:b5:4a:6e:33:a6:a5:41:
8f:40:02:43:3e:aa:09:05:23:51:c4:29:a8:b3:90:d5:89:80:
f9:17:29:35:e1:0e:1c:f2:32:9f:bc:48:4b:2d:1a:d3:59:ad:
02:50:61:9d:2f:29:48:57:25:4f:18:dd:8c:54:7d:17:a8:1a:
db:cc:17:df:aa:4c:fe:e4:29:26:89:75:4f:98:ad:29:39:df:
cf:75:b8:f4:aa:64:c0:84:b0:79:f2:cd:59:f3:7c:0e:02:4c:
9a:8a:b0:c8:d3:17:1a:a3:74:3a:64:0e:ff:3a:ea:1e:c3:70:
3b:30:c8:62:c1:02:63:9c:dd:f0:3f:63:f2:ad:ee:ae:cc:4e:
35:29:ba:4b:55:aa:fd:f8:9e:83:0a:7f:cd:aa:3f:49:3a:84:
08:ae:bd:8b:8f:c0:8d:2b:89:0a:ec:b1:39:b5:90:23:81:74:
ff:18:1e:04:80:0d:57:d0:65:c0:e5:50:30:65:6c:be:bf:3f:
32:61:f3:6d:cb:7e:ad:09:db:ab:c2:d4:37:7c:43:58:7d:64:
13:47:ef:8d:7d:1d:20:da:df:46:3a:1e:c9:1e:be:22:4a:37:
bf:94:30:33:af:97:fb:bc:41:07:14:8c:f0:d8:d5:0c:5e:04:
99:01:df:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdxv4o3squiwqXW/uFbgaGHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0YTdkMDU0ODJiODRkM2JiNjA0ZjA5OWJjYWY5ZTdlZDM0
Njg4OWEwHhcNMjUwNjE1MDQwMTA3WhcNMjUwNjE2MDQwMTA3WjAzMTEwLwYDVQQD
EygzYzIwOTc2Y2U3N2M4ZmEzMDM2MTE4YTExYjQ3YTk4MmY4NmE1OTFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqd/7IMv/Gkz4ulS59M6kS6xAwp1r
3+Djk+44PI6auxkywR7SS8xqZ+4wcPMo4iGceHUuU9KLc+KPnhe26g+L5OTg+54l
U8QuyAjIbeOLeMcdZiOzDcS9SngXe1tUwtrYtmh3WOonucReeTUjIEv8lrS6ecOn
L5D3l3GpIpmezfOj7Ef7VQLzHwlUgwhyRKxAmlWyAAHhqIVHplLJqtjEBt1+MtK9
H3OsSC79zVbK+pWApOIZsDT+nBaT4GZPc3V/Hjc+RBcR/5d4spsZ9qa2tbEHq72V
sTGFjZqBJpBFnu/OJbwydZm9y+cfcnizjMfg7NjArIu4IseIW+7DkA/DlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDwgl2znfI+jA2EYoRtHqYL4alkfMB8GA1UdIwQY
MBaAFLSn0FSCuE07tgTwmbyvnn7TRoiaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAt
YzUzMjE5NWVlZjQ5LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAtYzUzMjE5NWVlZjQ5
LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiQ5+s/PM
aglP3Zu1Sm4zpqVBj0ACQz6qCQUjUcQpqLOQ1YmA+RcpNeEOHPIyn7xISy0a01mt
AlBhnS8pSFclTxjdjFR9F6ga28wX36pM/uQpJol1T5itKTnfz3W49KpkwISwefLN
WfN8DgJMmoqwyNMXGqN0OmQO/zrqHsNwOzDIYsECY5zd8D9j8q3ursxONSm6S1Wq
/fiegwp/zao/STqECK69i4/AjSuJCuyxObWQI4F0/xgeBIANV9BlwOVQMGVsvr8/
MmHzbct+rQnbq8LUN3xDWH1kE0fvjX0dINrfRjoeyR6+Iko3v5QwM6+X+7xBBxSM
8NjVDF4EmQHfrQ==
-----END CERTIFICATE-----
Generated at Sun Jun 15 13:18:03 2025 by rpki-client