Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/0cee34-5acc-42d5-a5bf-fc1c0ccbc0b7/1/tXikYahZ3cmGwIqI6VEtXD0iEOY.mft
File: tXikYahZ3cmGwIqI6VEtXD0iEOY.mft (raw, json)
Hash identifier: fI28UHaLgzWVgehxBflpnLGXK0gDCN2v0e8iANH/jMo=
Subject key identifier: ED:49:53:76:08:6F:E0:40:17:D2:10:06:4C:B8:9E:1E:3B:86:3E:22
Authority key identifier: B5:78:A4:61:A8:59:DD:C9:86:C0:8A:88:E9:51:2D:5C:3D:22:10:E6
Certificate issuer: /CN=b578a461a859ddc986c08a88e9512d5c3d2210e6
Certificate serial: 01977E3111631DE3AA537D33518F30013F30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tXikYahZ3cmGwIqI6VEtXD0iEOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/0cee34-5acc-42d5-a5bf-fc1c0ccbc0b7/1/tXikYahZ3cmGwIqI6VEtXD0iEOY.mft
Manifest number: 1271
Signing time: Tue 17 Jun 2025 14:00:34 +0000
Manifest this update: Tue 17 Jun 2025 14:00:34 +0000
Manifest next update: Wed 18 Jun 2025 14:00:34 +0000
Files and hashes: 1: fOeHWLSvpiv5KgmUiK2xlWpmRm4.roa (hash: 70iF+LPpbMiVmu1EBYdz2CkmI0h0sZ5SaRk5YWSmNI0=)
2: tXikYahZ3cmGwIqI6VEtXD0iEOY.crl (hash: Bpke3iJnIRRVcMz7To8EkkaD2pIBjhzopcPTEyDkUus=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/0cee34-5acc-42d5-a5bf-fc1c0ccbc0b7/1/tXikYahZ3cmGwIqI6VEtXD0iEOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/0cee34-5acc-42d5-a5bf-fc1c0ccbc0b7/1/tXikYahZ3cmGwIqI6VEtXD0iEOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tXikYahZ3cmGwIqI6VEtXD0iEOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 13:26:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7e:31:11:63:1d:e3:aa:53:7d:33:51:8f:30:01:3f:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b578a461a859ddc986c08a88e9512d5c3d2210e6
Validity
Not Before: Jun 17 14:00:34 2025 GMT
Not After : Jun 18 14:00:34 2025 GMT
Subject: CN=ed495376086fe04017d210064cb89e1e3b863e22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:63:bd:35:32:c8:c7:52:7c:04:91:b4:87:b5:
bb:d5:b9:cb:dc:c1:de:b5:a9:30:9a:3f:0e:56:13:
ef:36:8b:09:2b:66:54:44:a0:c4:3e:e8:92:fe:47:
09:86:ce:6d:73:6f:be:89:35:fa:cc:04:af:00:25:
76:db:92:dd:e0:29:b6:55:79:15:af:28:6c:a6:01:
0b:b0:f3:c3:f5:63:d8:71:88:b1:ac:e7:4b:02:27:
94:f0:f6:5f:93:f1:a5:72:b3:68:28:ea:a5:6d:91:
9e:97:f3:19:c1:15:e5:48:a2:78:fa:75:ff:d3:de:
b8:d9:52:ce:97:38:f6:2c:0f:f4:5b:2f:85:50:7d:
6c:43:d8:a9:22:a6:a4:8d:64:0d:bc:e7:b3:8e:74:
11:eb:1a:3b:96:f3:fd:4f:fd:78:c4:9f:a6:4e:4d:
99:65:2a:be:69:00:54:ef:87:76:c2:d7:21:90:7f:
28:fa:40:32:33:8d:c0:7c:10:30:2d:6a:a9:8f:df:
d5:44:a6:a9:e8:2f:76:54:08:a1:20:71:77:c7:6b:
6e:73:7d:de:e4:05:33:47:96:50:b8:ba:80:24:46:
b9:43:5b:dd:3c:77:57:1c:d5:96:53:f3:45:9f:13:
fa:1c:c2:3f:02:4e:3c:c3:6d:cc:d4:a4:65:fd:89:
95:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:49:53:76:08:6F:E0:40:17:D2:10:06:4C:B8:9E:1E:3B:86:3E:22
X509v3 Authority Key Identifier:
keyid:B5:78:A4:61:A8:59:DD:C9:86:C0:8A:88:E9:51:2D:5C:3D:22:10:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tXikYahZ3cmGwIqI6VEtXD0iEOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/0cee34-5acc-42d5-a5bf-fc1c0ccbc0b7/1/tXikYahZ3cmGwIqI6VEtXD0iEOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/0cee34-5acc-42d5-a5bf-fc1c0ccbc0b7/1/tXikYahZ3cmGwIqI6VEtXD0iEOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:e9:d6:60:8f:5a:60:4d:2d:ac:67:2b:d1:3a:13:79:ff:e5:
9d:90:e8:27:c1:06:f3:94:22:c7:20:65:e7:56:8c:83:7b:0f:
c3:a4:2e:b5:5c:fe:06:15:2e:1b:c4:95:1c:76:56:58:58:d2:
15:16:90:e1:3f:51:97:d4:e8:11:17:6a:8e:86:ad:1e:4d:34:
b3:c6:6e:8d:4a:53:e2:4c:e8:4d:e6:1e:cb:26:e5:6c:37:50:
92:35:ed:af:94:95:8e:4d:6e:52:0e:87:e6:85:1d:38:c5:52:
5c:16:1b:00:04:1b:74:7d:e5:fe:b6:2d:99:b2:18:c7:0a:74:
4d:4d:7a:24:39:9e:48:94:03:54:29:85:f9:53:63:8e:70:91:
36:48:f8:e9:59:c2:2d:51:24:f6:01:17:24:16:6d:e0:56:a3:
5b:20:a4:8a:c0:7a:71:8a:e7:75:c5:b3:33:ac:e8:a2:e5:5b:
49:a9:0e:e6:5f:30:d9:1b:b9:d3:4b:1e:24:f0:b2:2b:59:de:
ec:89:e0:04:2e:4a:15:b9:3d:3d:0e:6d:05:0d:ba:a5:66:06:
94:b5:de:03:f8:a6:4b:b2:aa:51:e3:37:87:59:64:40:3a:6a:
66:15:0a:26:e0:97:6e:2c:98:40:9f:3e:2f:58:dd:72:b4:a7:
c7:31:b4:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 23:24:11 2025 by rpki-client