Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
File: TK0YVBTBauXSKaiqK_oV_vxxoiI.mft (raw, json)
Hash identifier: 5PNiL0Wc/sgjB5t/9KcEKX/HLV/cXDD14arjxxMH35Q=
Subject key identifier: C5:ED:CD:51:7D:0A:E4:2E:31:49:E8:1F:57:B0:37:6A:FD:0A:AA:12
Authority key identifier: 4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
Certificate issuer: /CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Certificate serial: 0197741B42BE47D688263DFE709EA185D8A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
Manifest number: 1526
Signing time: Sun 15 Jun 2025 15:00:32 +0000
Manifest this update: Sun 15 Jun 2025 15:00:32 +0000
Manifest next update: Mon 16 Jun 2025 15:00:32 +0000
Files and hashes: 1: TK0YVBTBauXSKaiqK_oV_vxxoiI.crl (hash: OZEOZGDbWzjsPv7+Ts1m2W/heIRrQKafkkfruJC5hGQ=)
2: dxfaqcbOBYRpYzoiD3a-nfzNgyI.roa (hash: 9S4UtPoorxm2Y5jeo5Ht7EgjOkb+pCS05uOlyENLKPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:74:1b:42:be:47:d6:88:26:3d:fe:70:9e:a1:85:d8:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Validity
Not Before: Jun 15 15:00:32 2025 GMT
Not After : Jun 16 15:00:32 2025 GMT
Subject: CN=c5edcd517d0ae42e3149e81f57b0376afd0aaa12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:09:93:e3:8b:3e:7d:c2:60:37:e7:09:2e:dd:
3a:ef:c4:d8:e6:0e:34:09:60:f5:c3:25:ea:1a:bc:
01:98:c8:ad:50:bf:d0:b4:2d:df:b0:9e:90:de:52:
3c:03:c7:df:01:6f:1b:69:48:0f:a4:6c:07:a5:24:
58:2b:65:cd:1c:46:3c:1f:fb:3a:84:aa:22:e8:f9:
ed:6c:0f:a3:30:3d:6c:f4:fd:95:30:06:12:95:f4:
36:3c:c3:b8:27:a1:b8:58:95:5e:1d:02:90:98:9b:
43:26:2d:71:12:98:65:c6:0e:5c:42:f0:66:dc:d7:
5b:d3:63:d7:dd:f0:70:e8:d9:46:47:ee:4e:65:af:
dd:da:d3:3c:a9:30:cc:6d:23:ce:af:d6:26:6d:d0:
05:d0:ca:ac:20:6c:8b:62:88:ba:a0:0b:eb:93:48:
ca:45:60:ed:a1:54:da:f5:5d:59:03:e2:f1:1b:fb:
e6:87:52:7e:d5:89:93:11:80:5a:76:2f:9a:e4:4e:
98:26:ae:75:19:16:ad:d6:b0:59:a4:7c:69:ad:2a:
e8:c0:9b:38:e6:3f:0a:d9:97:79:b2:a2:bb:45:39:
a4:70:7d:03:f7:6c:02:1a:5e:0d:69:f0:88:a9:a3:
88:b9:94:72:ab:12:9b:c5:20:66:22:23:9b:90:25:
e0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:ED:CD:51:7D:0A:E4:2E:31:49:E8:1F:57:B0:37:6A:FD:0A:AA:12
X509v3 Authority Key Identifier:
keyid:4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:31:e5:2e:6b:10:f4:ce:81:41:ab:06:87:94:25:e8:14:7c:
72:d3:0c:08:ab:e2:3f:dd:9c:57:c0:85:37:89:91:bd:11:49:
c7:6c:f3:9e:7c:67:65:af:12:20:40:7c:1d:d9:cd:b2:aa:9e:
89:52:5a:ef:5a:6b:20:2c:aa:fa:d7:8f:8a:df:f7:a4:63:a7:
32:19:70:e1:37:db:33:2a:8f:e9:a0:8d:32:d5:28:44:75:d6:
bb:34:6c:ac:0d:62:59:c6:52:d9:34:e2:25:f8:37:ee:19:4e:
82:12:e2:5b:0d:fe:a9:8c:e5:bc:36:33:0c:4e:03:d7:a6:f0:
b3:40:c8:10:dc:65:4e:f3:af:67:62:34:26:25:fc:77:0d:0f:
48:8e:bc:6e:ce:8b:40:c1:ed:d5:2a:29:6d:ff:13:75:1a:ca:
d5:11:05:c3:18:81:35:72:1a:56:23:b3:12:11:d5:3d:6b:2f:
31:be:57:1a:f2:1f:c1:6d:82:e5:d8:be:1d:03:72:c1:12:f7:
dc:43:6a:d8:2d:a2:eb:ed:84:33:43:45:11:52:dd:d4:66:32:
e3:af:a5:77:f0:d1:35:25:fb:df:ed:dd:4d:39:0a:9c:3d:68:
6d:60:5f:dd:9f:5f:b5:a7:b9:ef:41:cf:e2:e3:28:0b:49:1b:
30:93:09:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 20:32:54 2025 by rpki-client