Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
File: tSU8JVLUQD9DuDwl52IjjfEtroE.mft (raw, json)
Hash identifier: u7Z1Iw6pAjEHi/Psy9KVXVaI4oeMhMVOFPc2EyJg6C0=
Subject key identifier: 19:FF:69:59:D9:A5:C6:6E:A6:8C:39:5E:39:10:93:8C:EC:14:BE:92
Authority key identifier: B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
Certificate issuer: /CN=b5253c2552d4403f43b83c25e762238df12dae81
Certificate serial: 01976BF44C9AB76D768DDDF2FF6994467C6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
Manifest number: 0672
Signing time: Sat 14 Jun 2025 01:01:01 +0000
Manifest this update: Sat 14 Jun 2025 01:01:01 +0000
Manifest next update: Sun 15 Jun 2025 01:01:01 +0000
Files and hashes: 1: 6BgZvuvQdTTnHkpFXfURizE8XGQ.roa (hash: 78Xx7tAnFjhWDtWYiSHC9JJs2O6w1we6/J46orAWVbc=)
2: tSU8JVLUQD9DuDwl52IjjfEtroE.crl (hash: AjV/rdr0Qs2XfyDOaTmftlFS4A2RBRwxCzkz8Ow4/98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:4c:9a:b7:6d:76:8d:dd:f2:ff:69:94:46:7c:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5253c2552d4403f43b83c25e762238df12dae81
Validity
Not Before: Jun 14 01:01:01 2025 GMT
Not After : Jun 15 01:01:01 2025 GMT
Subject: CN=19ff6959d9a5c66ea68c395e3910938cec14be92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4f:f1:01:6c:97:f5:ec:be:46:ed:f5:b4:20:
1a:2e:93:54:47:4f:d1:ef:cc:41:9b:3a:13:ce:b4:
d9:a7:61:bc:43:53:37:1a:9e:5b:3c:80:83:12:41:
c7:1a:4e:0e:68:15:7b:c9:f8:32:19:6d:0d:4a:2f:
81:4a:ae:d8:d1:60:e5:2a:18:a4:02:62:bf:46:86:
19:a7:a5:69:48:c6:74:ef:01:9a:e5:bf:18:58:44:
4d:9e:2a:c3:45:50:51:2d:b4:2f:8f:20:43:f2:5d:
9b:e5:d8:10:89:58:e1:57:a0:6b:bd:64:8d:4b:08:
95:06:57:0e:f4:bb:3e:7d:1f:1d:56:9e:7a:83:81:
97:67:af:9a:47:6c:b1:37:1f:e4:e2:91:fa:d1:f1:
6f:bb:af:df:37:19:a8:3b:fd:0b:36:f7:28:ec:fd:
6c:fc:de:d6:d9:f9:52:46:a5:f3:6c:3e:25:49:fa:
56:d5:d5:76:dd:09:51:da:4f:43:20:b6:e6:13:b4:
dd:97:d0:fe:65:43:45:9c:e8:30:42:82:10:e6:b7:
07:b5:44:a2:ba:ad:9f:8f:c8:f8:b7:cd:b1:cb:62:
a0:40:3a:02:78:e0:13:e2:5b:e5:ff:d2:9a:20:8c:
28:df:b2:21:54:1a:d2:59:d0:06:79:d4:4b:16:83:
fc:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:FF:69:59:D9:A5:C6:6E:A6:8C:39:5E:39:10:93:8C:EC:14:BE:92
X509v3 Authority Key Identifier:
keyid:B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:d9:ca:30:13:b2:23:10:6a:e5:62:e1:77:11:93:d1:bd:20:
65:6f:37:3e:45:c4:4c:eb:35:64:9d:31:27:f6:ee:94:64:7a:
1e:36:8d:ea:a8:df:fe:40:4c:7c:6e:4d:78:f1:a3:69:18:f2:
cc:ad:de:2a:9a:aa:8f:68:9f:e5:7b:a7:8d:89:5c:26:85:d6:
17:df:72:8a:00:c3:2f:5d:6d:ae:e8:15:1a:42:2d:7e:a9:de:
cf:13:ed:08:d6:1b:8e:26:e7:6c:4b:21:1b:ae:ca:85:9c:c2:
06:9e:db:4c:bd:5f:90:41:43:95:2f:db:9c:f5:04:42:d3:b9:
0c:b3:13:8e:21:d1:be:a4:90:f4:8b:da:65:6b:06:d2:23:70:
7a:4d:9c:b9:6b:73:26:70:63:c8:8d:97:36:af:84:ac:49:56:
14:9d:fa:23:05:74:1c:b1:fc:a0:d8:bf:84:2b:90:a5:88:52:
be:10:4b:ae:87:b2:29:ea:4c:a0:d9:ff:d8:da:98:8e:3e:6a:
38:67:88:6b:44:15:0c:50:b8:fa:d5:62:9f:0e:68:71:0b:be:
d7:92:74:93:d9:ac:bb:14:63:8f:f2:65:1d:30:fe:34:67:04:
d3:0f:3c:df:14:4a:5e:28:75:0c:29:ad:d6:2b:88:f7:74:ee:
68:51:60:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:53:46 2025 by rpki-client