Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json)
Hash identifier: 3RnQ2mrmfUfVqem5/GZlW1pwPIpYZF9GteqEE4iacaY=
Subject key identifier: 2E:34:A8:69:F6:70:DD:02:14:6F:67:35:97:B7:3E:8E:72:07:A2:1E
Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Certificate serial: 0197684E676A3DE8D9F9DCD52FD844941FFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
Manifest number: 02BD
Signing time: Fri 13 Jun 2025 08:00:58 +0000
Manifest this update: Fri 13 Jun 2025 08:00:58 +0000
Manifest next update: Sat 14 Jun 2025 08:00:58 +0000
Files and hashes: 1: kdQZ4QS0sUqXnywKZ8M79hUmfTA.roa (hash: xGG3G4XfdVhcDuFzw8EOPzLUi5vn/b3D8pkyEY9PSkc=)
2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: +pLhp/cZ9ePDFrE3OilUepIgm953A8eRM8bKZaztogk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 08:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:67:6a:3d:e8:d9:f9:dc:d5:2f:d8:44:94:1f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Validity
Not Before: Jun 13 08:00:58 2025 GMT
Not After : Jun 14 08:00:58 2025 GMT
Subject: CN=2e34a869f670dd02146f673597b73e8e7207a21e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cf:70:46:9e:cf:b1:02:5b:e5:dd:3f:00:07:
ad:3d:54:e3:a4:c7:07:9e:91:0f:5c:4c:ba:2d:6a:
10:65:99:79:a0:54:eb:dd:7b:a3:69:50:e9:bb:10:
22:ea:4c:7e:88:ec:02:d2:2d:08:c7:c5:5f:ee:2a:
82:92:57:a7:9d:8c:3b:a8:93:be:01:b0:43:46:da:
f1:2f:ea:f4:46:8f:34:f0:ce:6e:2d:ae:a5:3e:36:
0d:59:23:18:68:54:7a:91:da:3a:a3:47:75:c2:5b:
ef:a3:d4:8f:57:7e:1e:09:1f:34:8c:57:df:a8:e9:
df:52:d3:57:34:6e:9e:26:f8:44:f3:58:a6:b0:43:
25:48:88:30:1a:2c:ed:20:b7:90:6f:ee:5f:97:61:
f5:48:3d:bc:83:1e:c9:18:42:99:d9:72:ac:a1:5a:
13:f8:cf:a3:6d:f0:7b:46:47:cf:f7:f9:52:64:73:
cb:f4:60:34:39:ea:5b:a6:43:c6:50:55:df:42:ea:
f0:a2:f5:ec:85:f3:14:cc:19:6b:08:44:12:cd:83:
8c:88:da:ad:ed:ad:1e:1d:84:18:04:cb:e2:01:a2:
be:9a:ec:22:15:d8:bd:32:c7:c2:f7:c1:06:02:d8:
8f:7b:87:3b:22:1c:47:47:fe:28:02:ff:15:22:4b:
ba:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:34:A8:69:F6:70:DD:02:14:6F:67:35:97:B7:3E:8E:72:07:A2:1E
X509v3 Authority Key Identifier:
keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:d5:cd:55:3d:5c:98:eb:44:b0:52:0f:db:12:6a:a8:5d:b6:
ab:0c:5a:b2:59:4b:f5:50:d3:26:9d:ef:61:7a:4a:18:2f:05:
59:da:50:df:bc:16:10:e0:50:30:40:ed:f8:03:72:1c:1f:f9:
5f:41:1f:59:aa:1c:e3:be:04:08:d9:65:e8:b6:ec:7c:e6:48:
2a:d0:1a:b2:bc:24:0c:d0:61:cc:38:bf:11:9b:cf:90:92:06:
fc:f2:37:09:aa:19:68:fc:b5:7d:6f:37:e7:01:7a:de:31:c5:
de:51:67:60:49:7e:0f:d9:ff:8d:73:71:cf:d4:95:01:a6:9a:
99:88:e6:c9:d6:1e:04:19:77:8b:6e:71:65:21:ae:99:68:2f:
a9:22:c1:e0:46:33:ce:ff:59:f2:34:e4:5a:41:dd:13:be:2a:
2e:a6:61:7b:a4:3d:c8:6f:70:bc:ce:d8:76:68:f6:92:1a:39:
15:af:28:57:37:05:a7:1f:21:ec:96:f4:50:83:37:28:9a:43:
b7:e7:0d:77:51:35:e6:d9:d1:af:43:1b:0f:fd:ca:04:92:37:
9a:ae:72:af:0e:94:5f:7a:c0:16:51:38:8c:39:a1:34:c1:fc:
71:30:93:81:aa:cc:a6:45:17:c0:1b:53:7f:23:a8:a9:20:1a:
80:65:e2:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:04:12 2025 by rpki-client