Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
File: tIENfJv8WLngoeWRacPdMi3p9zc.mft (raw, json)
Hash identifier: YWF2QGLe4hEM5qX/C2BWuDa8sazjjTZZ2nlV4zQI8Y8=
Subject key identifier: 28:FE:2B:2B:2F:4C:D7:CF:4E:2A:D8:1A:02:7B:B3:78:DB:43:63:57
Authority key identifier: B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
Certificate issuer: /CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Certificate serial: 01976DABEA76467855A495253B9BFC2832A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 09:01:12 +0000
Manifest this update: Sat 14 Jun 2025 09:01:12 +0000
Manifest next update: Sun 15 Jun 2025 09:01:12 +0000
Files and hashes: 1: jHERjwHQQByovrguIT9kNAenUlw.roa (hash: fC13Nqgu9Ca7tsn1KpGgJ5T6X5W9BeqrdrYm3SZE1Rs=)
2: tIENfJv8WLngoeWRacPdMi3p9zc.crl (hash: ZwEfmoiYS/KEBIXrou6yKZY5FCNbe27I3sYE2IQe3B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 09:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:ea:76:46:78:55:a4:95:25:3b:9b:fc:28:32:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Validity
Not Before: Jun 14 09:01:12 2025 GMT
Not After : Jun 15 09:01:12 2025 GMT
Subject: CN=28fe2b2b2f4cd7cf4e2ad81a027bb378db436357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:28:51:94:22:45:e4:dd:97:fe:a8:76:bd:23:
17:1f:c4:a8:3d:53:b2:67:45:e1:a1:62:b6:52:5b:
53:01:b7:58:53:13:f3:0a:aa:bc:0c:01:38:9e:c1:
66:42:a3:de:1b:bd:17:c3:16:36:7d:4f:53:31:59:
55:d9:f1:d1:ab:b4:a4:9e:65:c5:28:7e:b0:8a:39:
db:46:66:fe:e8:cc:d5:1c:73:2b:0d:48:7c:fb:41:
c7:d6:c9:55:7b:5a:99:e4:88:0d:23:bd:ee:1c:10:
ac:18:9e:b2:26:6a:fd:9f:fd:bc:47:d6:85:69:bd:
de:df:5f:82:9e:54:f7:a5:83:fa:08:45:fb:40:34:
57:18:d3:46:86:32:02:9e:c3:21:c7:3a:83:70:de:
bc:8e:89:93:13:62:37:4f:c1:c0:39:31:16:54:8c:
9c:9b:a4:cf:77:53:b6:43:dc:7b:8c:7a:95:6f:9c:
99:fc:08:41:fb:08:47:a2:3e:82:51:51:b6:2f:65:
cb:a3:54:94:78:41:69:ca:35:e0:7b:76:a9:8c:8c:
3c:dd:9a:64:77:2c:1f:ed:53:25:5d:1a:1b:da:a8:
57:52:29:dd:26:6a:2f:72:86:af:6e:f2:4d:8f:90:
86:1c:85:7b:45:22:14:3f:59:fa:ae:60:1a:e0:19:
b4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:FE:2B:2B:2F:4C:D7:CF:4E:2A:D8:1A:02:7B:B3:78:DB:43:63:57
X509v3 Authority Key Identifier:
keyid:B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:47:44:6e:98:72:e6:7a:05:5e:80:eb:7f:b7:fd:db:b3:af:
c5:e7:be:ea:f3:3c:c4:8b:4b:57:77:ce:ea:1a:1d:3e:aa:c5:
89:dc:51:8c:95:fc:eb:2f:d9:80:5e:3b:d1:08:93:bb:94:2f:
77:86:c0:34:71:42:ae:cf:37:ac:65:05:c3:05:20:5c:8f:47:
cc:cb:b7:24:ca:b4:00:f9:40:7e:dd:72:01:a2:1c:65:21:ef:
1f:af:45:fc:25:1a:0b:e7:c2:5b:96:35:ec:4d:08:08:06:20:
db:d8:47:0d:8f:95:ba:da:27:ac:10:3b:7b:19:45:5c:7a:2b:
f9:8c:d3:5d:39:79:d8:df:54:32:00:7c:e2:96:aa:bb:b6:21:
b1:35:4b:c9:37:f3:59:47:d7:b3:2e:1f:8f:46:85:df:0b:18:
b2:fd:99:d6:1e:93:07:88:33:44:60:77:43:b4:a6:47:f7:d4:
28:26:5e:0c:88:3c:99:43:dd:8c:b8:f8:60:a1:b4:4e:c6:d8:
f9:c4:93:c6:8e:26:98:1d:af:4a:23:d5:91:45:e7:87:e7:5f:
48:00:68:2b:77:ad:33:3f:a4:4e:88:90:e5:bf:eb:5d:9d:74:
c0:ff:2e:a8:0e:43:ca:ed:3f:0d:15:c6:95:14:c9:9d:62:48:
8d:c4:7c:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:55:04 2025 by rpki-client