Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json)
Hash identifier: 76bR8VAyMcQHGKaFbam6S0gitFlhaCknbBcKDI0J3Lc=
Subject key identifier: 2D:B8:4F:33:D9:9B:1C:1E:7C:48:DF:BA:25:B1:EC:D9:BB:0F:96:1A
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 01976F2D1F95C12EAFCA77705861F56081C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
Manifest number: 06D3
Signing time: Sat 14 Jun 2025 16:01:57 +0000
Manifest this update: Sat 14 Jun 2025 16:01:57 +0000
Manifest next update: Sun 15 Jun 2025 16:01:57 +0000
Files and hashes: 1: 1SqAG3Japdqs2uBvGFHguJLvhqE.roa (hash: tRLIPOPh9GLi7wL54w2K0S63l5p5YYde2YPqeJx3wD8=)
2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: CWYE1STSF7oTSr9YriBukUUbUn1JOnbY/kcywLFIsnc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 16:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2d:1f:95:c1:2e:af:ca:77:70:58:61:f5:60:81:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: Jun 14 16:01:57 2025 GMT
Not After : Jun 15 16:01:57 2025 GMT
Subject: CN=2db84f33d99b1c1e7c48dfba25b1ecd9bb0f961a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1a:e9:d3:14:97:a8:c6:ec:06:29:82:7d:15:
df:fe:90:20:76:01:93:69:31:bb:8b:a6:2e:c8:5c:
05:95:5d:a1:ad:b3:b9:4b:ec:e4:4d:ef:6a:5b:d9:
36:33:22:88:9f:dd:12:e4:36:fc:f0:79:25:ae:53:
a4:23:3f:78:0e:d3:a1:93:d5:6b:2a:7c:da:16:88:
d3:c8:b4:b8:c4:41:ad:df:df:e0:9e:30:0b:57:5c:
3a:34:b3:12:bf:8a:be:e4:88:dc:b1:88:86:db:2e:
69:65:00:9a:86:81:26:91:9b:d4:b4:a6:bd:85:59:
eb:9e:c0:5f:19:96:68:b3:76:4d:59:37:9c:08:1c:
ab:d5:c7:53:08:38:f9:3f:e4:69:5e:67:9b:18:47:
7d:67:91:af:3c:0d:90:8e:73:8b:6b:1d:4d:30:9b:
20:0a:0e:22:bc:01:17:47:95:93:63:ff:6c:fc:9d:
b2:60:3b:5c:8e:03:a9:78:95:5d:49:2e:b8:55:61:
10:1b:fa:f3:17:90:db:67:7c:59:74:ed:a4:39:48:
2a:7c:df:fc:d4:53:90:c6:6d:98:9f:58:b0:b8:9a:
f9:7e:cb:75:a8:2e:91:06:5d:61:4b:1e:a8:af:08:
b2:66:89:32:88:ed:4e:77:d5:5c:bf:20:bb:ff:7b:
16:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B8:4F:33:D9:9B:1C:1E:7C:48:DF:BA:25:B1:EC:D9:BB:0F:96:1A
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:f6:58:86:78:55:81:d4:b9:8a:99:eb:a6:cf:db:00:7a:fc:
6f:df:c0:46:1a:20:8e:bd:e5:fd:53:78:d0:e1:37:c7:eb:10:
d6:93:d4:4c:a7:c4:dc:4f:5c:66:c8:39:54:3d:94:97:24:83:
1f:7e:88:b0:7c:88:97:f5:0f:9b:67:93:91:1c:89:51:48:8f:
af:db:1a:fc:96:2a:28:a0:48:5a:0c:c8:ba:4e:5b:b6:28:9d:
66:53:c7:5b:d6:98:b9:24:a0:34:61:f0:f0:85:a4:4e:6b:2d:
24:cc:74:81:dc:cc:ef:eb:ca:48:cc:6c:35:ec:c6:ff:b0:81:
66:fd:8b:cd:2b:02:5b:2e:92:6d:56:32:ff:0d:a3:bf:80:2e:
dd:86:97:03:95:3e:5c:af:a2:4b:eb:1e:3e:fb:8f:a7:7f:81:
c7:94:df:67:c4:f6:bc:46:51:89:b7:e7:f1:19:d3:c1:47:19:
b2:9c:55:e0:1b:f6:af:8a:43:45:b8:f8:18:48:85:ea:99:d6:
e1:76:2c:82:6b:f0:1a:b0:75:21:72:41:77:ec:8a:d6:39:4d:
d0:80:6a:cb:6d:20:29:d7:3c:a6:36:60:f6:a0:fe:d3:40:4f:
41:b5:25:cb:d0:e9:84:7e:5e:36:54:a3:17:cc:8d:21:88:42:
e4:f3:a6:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:10:34 2025 by rpki-client