Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.mft
File: tDycG90eFSiKuTDUAFGzZTywnno.mft (raw, json)
Hash identifier: mp+TVWs3wgrvifVAt4NnjN1vNgQaj6rGFSP1oww1yMA=
Subject key identifier: 5F:38:2B:D6:8D:0E:3A:95:3D:FA:C1:DD:2C:C8:F1:3F:6C:53:47:FC
Authority key identifier: B4:3C:9C:1B:DD:1E:15:28:8A:B9:30:D4:00:51:B3:65:3C:B0:9E:7A
Certificate issuer: /CN=b43c9c1bdd1e15288ab930d40051b3653cb09e7a
Certificate serial: 01977753444CE33F62F43170A3FDBB129918
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDycG90eFSiKuTDUAFGzZTywnno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.mft
Manifest number: 1594
Signing time: Mon 16 Jun 2025 06:00:35 +0000
Manifest this update: Mon 16 Jun 2025 06:00:35 +0000
Manifest next update: Tue 17 Jun 2025 06:00:35 +0000
Files and hashes: 1: tDycG90eFSiKuTDUAFGzZTywnno.crl (hash: 3q232TwWVUNWLVCWEaLKzYTKjqRaCImzbpj+ozEttHE=)
2: yUpCnFh46Tqx7sCXg4QHc_cNe3o.roa (hash: cp+PmQthE9hblxpquCO9Uz9at9P5Zu4kvGvMw6tU+Ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDycG90eFSiKuTDUAFGzZTywnno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 06:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:53:44:4c:e3:3f:62:f4:31:70:a3:fd:bb:12:99:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43c9c1bdd1e15288ab930d40051b3653cb09e7a
Validity
Not Before: Jun 16 06:00:35 2025 GMT
Not After : Jun 17 06:00:35 2025 GMT
Subject: CN=5f382bd68d0e3a953dfac1dd2cc8f13f6c5347fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:17:f8:c7:32:e0:15:c2:09:d8:6b:ea:61:17:
1e:1e:36:0d:0f:fc:bd:c7:ee:02:cc:f6:c5:98:d5:
1c:8f:7b:0e:05:60:4e:53:0d:55:5a:59:97:83:59:
c3:f0:c6:a6:c7:66:a2:ab:bd:78:d5:c5:1d:a0:c0:
32:75:a2:14:ab:eb:00:1a:8a:93:44:57:b4:e2:72:
7b:38:9b:e9:2a:80:de:45:55:e1:f3:a4:41:b8:11:
93:26:cf:dc:61:fa:3f:c4:5c:d7:4e:d4:15:fe:23:
06:b1:1b:5e:60:ef:e2:99:7d:0a:b4:ad:e8:1d:d9:
07:e7:a2:d7:04:82:d1:f1:9b:3b:25:d2:11:2c:bf:
d4:dc:93:de:e3:25:d1:fa:a1:c0:8a:c5:8c:32:7e:
b4:2b:22:65:1a:49:f9:df:de:b2:95:2e:1b:ca:1a:
01:3b:58:9b:d0:83:bb:77:36:ba:3a:b5:d2:67:25:
f1:0f:22:fe:11:85:98:5d:44:6b:27:23:38:67:64:
9e:a9:9c:21:34:09:84:76:cf:d2:a5:e2:4a:89:05:
ca:31:e2:15:50:6e:e1:c7:b8:5e:58:49:aa:db:60:
83:22:af:50:f7:49:26:35:00:ae:c8:37:88:93:04:
fa:1a:ca:81:0f:00:d4:78:2b:88:7c:44:84:0a:02:
66:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:38:2B:D6:8D:0E:3A:95:3D:FA:C1:DD:2C:C8:F1:3F:6C:53:47:FC
X509v3 Authority Key Identifier:
keyid:B4:3C:9C:1B:DD:1E:15:28:8A:B9:30:D4:00:51:B3:65:3C:B0:9E:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDycG90eFSiKuTDUAFGzZTywnno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:e3:7c:60:c6:f2:24:a9:57:12:1a:f4:5b:55:35:e0:2d:09:
db:24:55:43:0a:3a:c1:d3:c8:e7:f6:f5:38:8f:d0:69:50:25:
48:33:c8:f2:b7:c3:fd:f1:6b:8f:6d:16:16:c7:48:4e:c5:f7:
11:ec:2f:fe:11:51:c8:33:02:3a:b7:2d:71:72:f5:5b:51:ac:
54:c7:9f:5d:f6:c5:1e:e7:39:9e:0b:74:96:d7:28:01:57:da:
5f:b3:96:63:13:e6:0c:7c:e4:65:d3:a3:4b:3e:94:e6:87:1d:
d9:3d:a2:fa:f6:71:2c:b2:68:2c:cf:54:d4:fa:8c:b8:ae:24:
98:e2:44:54:bf:9a:43:c5:89:4b:f8:eb:2d:1d:11:07:8b:89:
cd:d0:ab:84:2f:bf:eb:be:01:da:b7:bd:cf:dc:9e:3a:ae:22:
98:98:98:0f:15:87:e4:0c:19:fd:a9:27:8d:e5:f1:39:d6:ad:
0b:ec:df:2c:23:fe:27:93:6f:0f:d9:16:e4:16:19:0c:86:07:
e6:ea:fd:41:e7:d1:23:3e:3a:01:55:b2:ac:49:2b:fe:cf:c3:
82:66:dd:9d:45:7f:0a:f2:ce:4e:af:41:eb:2b:ae:f5:6d:04:
d9:ce:f5:0f:ca:5f:18:83:96:9a:a1:f0:d7:08:ab:b7:49:24:
46:f3:5c:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 16:08:56 2025 by rpki-client