Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
File: ThXfaIw66uP2he1Es5bCGYOVhh0.mft (raw, json)
Hash identifier: Fpj76YjuwG4TplRvQPUL/aTRrBYwdVWYJgOGuXEYRfc=
Subject key identifier: 3D:09:F3:59:B6:7C:C4:93:D2:D8:55:DB:6A:22:88:BA:4E:DE:41:E8
Authority key identifier: 4E:15:DF:68:8C:3A:EA:E3:F6:85:ED:44:B3:96:C2:19:83:95:86:1D
Certificate issuer: /CN=4e15df688c3aeae3f685ed44b396c2198395861d
Certificate serial: 01976CCFADEEA647C6D80FA248A6E69D2C60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
Manifest number: 0B37
Signing time: Sat 14 Jun 2025 05:00:39 +0000
Manifest this update: Sat 14 Jun 2025 05:00:39 +0000
Manifest next update: Sun 15 Jun 2025 05:00:39 +0000
Files and hashes: 1: B5ArzT5S5sMxKfyjCyP1n1jxI-I.roa (hash: GYazD0XUED0Lzoqp0JRsmv1Wdv3MWiNL0orAYJkGs0s=)
2: GTFBgv2tNjcuxAQIe01brH4jwTk.roa (hash: Mc8ui7CXRHASlbfIuKweFLL2cR+DG52g7wgx3xsTD/U=)
3: MVWQHZ7poQZSNaxcXHSkE1cM3ac.roa (hash: tbC0zEQlc9n1vwOMWAcwfJO+Pz8J+NOLSdpR6f+1vt4=)
4: SeVKeWDlifWewWLGV-ux3X3eP-U.roa (hash: iAr3BiSouxw0/1U0gfsb+0eTpsmeqPEqcNVOd7duq/I=)
5: ThXfaIw66uP2he1Es5bCGYOVhh0.crl (hash: M2BnHMTLmlbvdx/o0ozCS+0/EbK1+oc96vnNmi8VJXo=)
6: VQHe2S-7j8SMoLbiYSjz9IrWVbc.roa (hash: 4EmRDMW6ZpVFVYfLs3GRzG+ePL4wqHpJMD783K3OCFc=)
7: r34i9MogSBxeDWHyGIhH_hkNvH0.roa (hash: /LsOtQwuG5S1pPv/GDxv95WqbubjE7D9iX5jL74tvxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:ad:ee:a6:47:c6:d8:0f:a2:48:a6:e6:9d:2c:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e15df688c3aeae3f685ed44b396c2198395861d
Validity
Not Before: Jun 14 05:00:39 2025 GMT
Not After : Jun 15 05:00:39 2025 GMT
Subject: CN=3d09f359b67cc493d2d855db6a2288ba4ede41e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3b:09:9e:de:7f:22:d6:e9:17:7b:3f:7d:eb:
98:6b:d4:45:2b:91:26:62:20:df:8b:b6:73:74:72:
8f:04:11:8c:7e:0d:fe:99:1f:1c:a9:df:d4:59:d5:
c2:1c:8b:3c:0c:00:72:8d:6f:d9:95:b4:ef:6f:84:
e8:44:e9:5f:ce:aa:77:ae:40:0b:e1:af:a9:d6:02:
f8:4d:7d:52:38:fa:33:4f:fe:41:d5:2e:64:f8:90:
0b:61:72:51:cd:06:c7:62:f5:92:4f:81:78:4a:a6:
95:79:43:a1:b6:21:6e:16:1a:d4:1e:6f:a2:41:29:
aa:86:73:56:0c:9d:54:03:e7:2a:13:29:68:bc:83:
42:46:3f:38:10:63:ee:f2:f3:df:69:b3:a4:8b:ee:
29:ff:78:4b:a3:ba:a0:58:d9:f4:77:fc:b4:62:4f:
33:19:dc:5e:83:cd:87:f8:0e:c3:8c:6b:7a:18:3d:
52:8d:91:e5:3c:00:3f:71:c0:39:ff:db:d2:ed:bb:
06:9e:bb:30:f9:fa:ff:29:0a:a2:b3:29:c6:ef:bc:
0e:25:80:1f:5a:33:96:97:d2:bb:5f:75:b3:09:05:
cd:eb:44:17:87:31:dd:cf:98:a5:c2:05:2a:53:b4:
a1:42:40:5c:5e:8f:64:02:cb:90:df:04:d4:29:7b:
d1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:09:F3:59:B6:7C:C4:93:D2:D8:55:DB:6A:22:88:BA:4E:DE:41:E8
X509v3 Authority Key Identifier:
keyid:4E:15:DF:68:8C:3A:EA:E3:F6:85:ED:44:B3:96:C2:19:83:95:86:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:d5:3d:75:4d:87:40:32:a9:1d:e2:05:f2:ab:8b:c7:e9:02:
7d:d4:7e:07:e1:f7:91:3a:d0:54:4e:67:a0:9d:06:c3:39:3b:
9a:c5:8b:43:11:8e:1b:0e:7f:14:44:5e:36:92:8f:2c:33:d2:
ce:71:48:37:36:02:24:a1:55:aa:2b:53:93:b4:1b:06:a7:b5:
2c:18:db:f2:c4:81:47:8c:ad:56:7a:9c:ad:9b:44:85:ab:dc:
d3:8a:c0:c4:90:e6:aa:3a:cb:32:15:fd:11:d8:2b:19:71:aa:
c0:db:32:0e:b8:42:0d:9f:35:6c:59:3e:ec:75:9d:bc:5a:04:
0c:7a:02:7e:50:0e:72:99:0f:0b:53:e6:ab:1d:d2:c7:d9:25:
1f:3a:d5:f1:3f:24:61:97:1c:28:7b:5c:2f:40:45:84:9f:24:
42:c2:f1:2b:86:dc:cc:b9:03:d1:86:ea:6b:bb:f8:e8:c7:3e:
b5:35:9f:d7:bb:90:d7:f4:00:a7:b1:a1:ee:e7:16:bb:f8:28:
c8:a1:1c:04:09:a7:c7:4c:d8:7f:2b:50:a7:1d:64:70:f3:92:
62:1f:d4:62:2a:0f:9e:3b:6a:bb:b4:5a:a5:9e:8c:87:43:ca:
00:49:15:50:e3:5a:75:92:2f:14:12:4a:31:af:26:f8:1d:9d:
aa:85:9f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:08:25 2025 by rpki-client