Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
File: Ty87yZp5UD4JdXR36O9kPhGIbIs.mft (raw, json)
Hash identifier: 05GtlAoG2Shfbo8VezXFmtamIHpYBKRs9qi2plA5hx8=
Subject key identifier: D7:23:2F:6D:42:14:60:23:7D:2D:28:2A:1F:1E:C5:FD:92:33:E2:28
Authority key identifier: 4F:2F:3B:C9:9A:79:50:3E:09:75:74:77:E8:EF:64:3E:11:88:6C:8B
Certificate issuer: /CN=4f2f3bc99a79503e09757477e8ef643e11886c8b
Certificate serial: 01976D3DC57D04413628C543EC47C55727AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
Manifest number: 1440
Signing time: Sat 14 Jun 2025 07:00:54 +0000
Manifest this update: Sat 14 Jun 2025 07:00:54 +0000
Manifest next update: Sun 15 Jun 2025 07:00:54 +0000
Files and hashes: 1: DmY4OlpSGtRwQGNkVI6pwwKmQOM.roa (hash: QsmPHxvFnUbBb8Hdz5mPLnRJfO8cxjGYjuC9mmKC/hY=)
2: Ty87yZp5UD4JdXR36O9kPhGIbIs.crl (hash: 2qJu0d7u37OAMb59XgCnUQvV8meoFVaFGv6RSlw2BoY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:c5:7d:04:41:36:28:c5:43:ec:47:c5:57:27:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f2f3bc99a79503e09757477e8ef643e11886c8b
Validity
Not Before: Jun 14 07:00:54 2025 GMT
Not After : Jun 15 07:00:54 2025 GMT
Subject: CN=d7232f6d421460237d2d282a1f1ec5fd9233e228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ac:1f:7a:20:ee:13:36:fb:4c:a2:f3:ec:9c:
d0:f2:c3:03:ba:15:bf:00:18:04:63:cb:fb:5d:09:
77:97:e2:f7:78:e0:2f:f4:2a:f2:6a:a9:f8:62:85:
4e:0c:d4:7b:11:d4:da:42:0c:14:96:75:04:06:e9:
b6:94:53:39:ef:c2:f0:c8:20:d9:26:66:97:b6:09:
0a:72:d1:a7:f7:1f:a2:2d:ce:f5:9f:d4:d0:cc:a2:
71:32:ba:05:17:2f:05:6d:c4:36:b7:7a:15:b3:da:
d1:41:b3:dc:1d:81:98:b2:7f:b7:bf:4e:b0:ef:0a:
97:93:da:b3:0d:6b:0c:66:c6:bf:e1:04:8a:e6:dc:
1b:4f:7e:09:40:2b:97:5b:13:1d:d9:70:a8:7f:30:
f8:70:2d:c4:55:b3:bd:64:d2:b9:60:32:4e:ee:b4:
6e:da:0b:c5:f8:f5:b9:fd:01:88:d2:1a:c1:c9:c1:
35:d6:0d:63:91:7d:e5:d5:fc:2f:6b:ae:6d:f9:9a:
cb:59:53:6b:a0:47:f6:6d:8a:91:c8:91:07:19:4d:
19:ea:0c:31:1c:a0:6e:9d:ab:5a:5f:32:92:a0:c9:
c2:7a:af:e5:7a:a9:2e:09:ce:5d:5e:ef:29:fa:54:
14:14:8d:7b:75:4e:b6:e6:a3:c9:bd:83:47:da:f9:
ae:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:23:2F:6D:42:14:60:23:7D:2D:28:2A:1F:1E:C5:FD:92:33:E2:28
X509v3 Authority Key Identifier:
keyid:4F:2F:3B:C9:9A:79:50:3E:09:75:74:77:E8:EF:64:3E:11:88:6C:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:51:75:10:dc:52:9c:47:01:66:e5:ce:07:f8:d1:0d:b6:bc:
0e:a8:84:32:84:85:f4:6f:6b:a5:2e:2c:de:4c:f0:27:a5:17:
a7:1a:cf:86:4d:e6:81:07:84:1a:73:99:85:ad:e5:68:16:44:
0d:8d:c7:54:a6:91:21:88:82:7f:f7:d8:78:c3:b9:1e:4a:8b:
a4:1d:42:f9:3f:d4:ff:a5:bb:02:d5:4f:42:96:16:ac:33:6e:
a2:8a:7b:f7:7d:4a:e0:7d:11:f5:f8:06:eb:01:a6:99:8c:99:
fd:e5:e1:8b:9f:b4:e4:81:b5:7a:b4:6b:2b:e2:9b:31:65:56:
97:14:c3:41:5f:3c:72:63:7f:93:92:07:82:12:bc:7e:4f:ad:
ae:90:51:aa:ca:2d:2f:1b:2a:85:82:f1:2a:80:5e:3d:d3:83:
20:a9:a1:ea:31:62:b7:99:01:91:3a:89:a0:c3:fe:5c:9a:01:
12:15:b3:3e:2f:2c:a4:fa:ff:f5:b4:ab:b7:b1:44:d8:2d:de:
7e:d1:41:c1:ae:f7:3a:29:f9:72:8c:ee:7a:fe:0b:3d:fe:1e:
f2:16:64:96:f4:f7:ee:dc:f6:5b:f5:79:cd:e1:25:a2:e4:4e:
7d:0e:5f:fe:e4:fb:26:8d:81:37:cd:ff:c1:e0:da:dc:ef:1c:
7f:ce:31:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:16:32 2025 by rpki-client