Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
File: Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft (raw, json)
Hash identifier: DSKHQxh0cfm9aRxazdEqerOZXwAIMkLkYwx6SKvoLNc=
Subject key identifier: 96:B9:1C:E0:B3:8F:63:03:28:49:54:4E:9E:BC:F8:BD:46:AA:FD:E5
Authority key identifier: 4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
Certificate issuer: /CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Certificate serial: 01987ABFC403D819FD1A8CD7D154B8559290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
Manifest number: 0205
Signing time: Tue 05 Aug 2025 15:00:44 +0000
Manifest this update: Tue 05 Aug 2025 15:00:44 +0000
Manifest next update: Wed 06 Aug 2025 15:00:44 +0000
Files and hashes: 1: 2YHBxyZ_z4Fcrt68TQqMf0wkwmM.roa (hash: KMD/ALL2N2LqU8y7+1f9YpFqy5OsmhRXi+hfcZ2aIxY=)
2: Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl (hash: zk/CUL6gwkV0ptS6W1zfg2LLaPLwhBk4dQ4NpJZKgZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:bf:c4:03:d8:19:fd:1a:8c:d7:d1:54:b8:55:92:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Validity
Not Before: Aug 5 15:00:44 2025 GMT
Not After : Aug 6 15:00:44 2025 GMT
Subject: CN=96b91ce0b38f63032849544e9ebcf8bd46aafde5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fb:28:1f:c8:ea:4d:9a:50:12:5a:f6:17:4c:
f5:91:ce:6f:c5:47:2a:b4:be:cf:5b:3c:ba:d6:ae:
c6:06:bb:90:bf:57:f9:84:a7:82:91:89:90:3c:5b:
e6:47:8c:69:fa:11:c1:cd:08:95:bd:c4:e9:01:05:
4f:f8:42:e9:60:ae:a1:59:96:bb:f7:44:02:23:5c:
f7:73:88:cd:49:aa:54:a4:32:89:65:50:53:2f:73:
62:eb:a7:ae:ac:1a:37:08:08:7c:9c:2a:9c:b7:6f:
b2:4d:e1:74:fb:bd:e2:02:90:6a:10:45:8c:c7:87:
54:29:64:b2:22:1c:54:8c:2d:b3:75:4e:6f:fd:22:
a6:89:6b:36:95:53:c1:e2:a9:88:16:93:0e:8f:70:
0c:20:cb:cd:af:ae:63:6b:7d:a9:8c:8c:9c:80:cb:
a5:36:a8:fc:12:79:a4:f6:27:9a:07:84:f8:5f:21:
58:5f:5e:fd:22:f7:59:c0:ef:20:b9:29:ed:37:13:
18:76:da:5a:e1:93:2b:58:6b:3c:e6:c9:1d:b4:03:
0a:0d:42:1a:45:aa:e7:84:12:d2:85:37:f1:b4:f5:
fd:09:d8:09:62:37:c6:11:34:39:1b:4e:8f:b5:b3:
70:20:6a:09:e9:7d:5a:c1:46:29:b4:40:d2:e9:4a:
9d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B9:1C:E0:B3:8F:63:03:28:49:54:4E:9E:BC:F8:BD:46:AA:FD:E5
X509v3 Authority Key Identifier:
keyid:4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:73:c6:58:ee:58:9e:13:99:bf:d6:48:47:67:6d:77:1a:00:
73:9f:d4:d7:b5:77:15:85:e0:5e:7b:80:3d:fe:f7:20:58:fc:
9d:13:37:e4:dc:2f:bb:b8:8f:7e:43:3d:12:a3:03:5d:9e:e1:
47:59:90:dd:96:4b:0f:4f:e3:ee:53:d2:c4:9b:ec:0d:13:dd:
8e:3b:42:5d:61:e7:05:c7:e1:79:25:71:7d:29:cb:ae:9f:d7:
ca:61:ca:ef:ad:dd:24:67:ac:34:57:04:c7:e2:4a:c9:2a:c8:
fd:e0:b3:f3:58:72:e7:35:65:a3:dd:f8:55:ad:be:e6:db:2d:
14:02:12:b8:fc:d5:f1:36:2f:09:a6:d4:40:36:6a:6f:a4:4c:
f2:99:fa:c1:8b:74:fa:b7:45:44:e7:68:1f:61:61:ea:f5:c6:
46:93:63:1a:9b:a6:78:66:28:22:89:6d:2c:c4:9b:82:99:54:
2c:44:3d:c7:bc:b2:14:95:42:09:de:cd:a4:f5:19:17:e7:75:
c3:ca:1a:10:32:81:34:b0:92:22:7c:e9:8b:35:9f:ef:1b:dc:
d9:ac:0f:1e:81:aa:0e:63:bf:fe:51:e8:dc:9a:be:fa:ca:43:
9b:d3:1f:10:8f:bb:b7:5f:bd:4a:fa:50:7f:df:29:7a:4d:f1:
20:61:f1:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:08:13 2025 by rpki-client