Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
File: TRMSiBUQNXRBfKenBBLaOrO4RRE.mft (raw, json)
Hash identifier: JwUfMGvylDRbO5bMJWNS3lvkUUpnZ64qXYT+JYY6ER0=
Subject key identifier: 88:4B:CB:30:FC:5C:48:BC:CC:28:43:4A:6A:7A:66:1C:FD:70:1C:D3
Authority key identifier: 4D:13:12:88:15:10:35:74:41:7C:A7:A7:04:12:DA:3A:B3:B8:45:11
Certificate issuer: /CN=4d13128815103574417ca7a70412da3ab3b84511
Certificate serial: 01977564BB7FA74D1F82F3A33C8BADC9983C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
Manifest number: 1596
Signing time: Sun 15 Jun 2025 21:00:25 +0000
Manifest this update: Sun 15 Jun 2025 21:00:25 +0000
Manifest next update: Mon 16 Jun 2025 21:00:25 +0000
Files and hashes: 1: RbRcN6wl0nEFVsWYx8c9XyFYSpY.roa (hash: BVR+Y8S7WJeuusRjWoFe5ZeYBx8jVE+CDBxd/rFYYkU=)
2: TRMSiBUQNXRBfKenBBLaOrO4RRE.crl (hash: eCFT+ftZAfb3Q1erPYWx11lKaHNW8BfSkpDVIKFGBOs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 20:59:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:75:64:bb:7f:a7:4d:1f:82:f3:a3:3c:8b:ad:c9:98:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d13128815103574417ca7a70412da3ab3b84511
Validity
Not Before: Jun 15 21:00:25 2025 GMT
Not After : Jun 16 21:00:25 2025 GMT
Subject: CN=884bcb30fc5c48bccc28434a6a7a661cfd701cd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:23:ad:25:92:3d:41:69:85:bb:0f:44:f6:80:
5a:4f:d4:a9:ff:e1:09:02:ae:4a:b1:1e:a6:11:8b:
f1:df:2b:30:67:b7:ff:b8:d3:f5:14:8a:b3:c9:64:
ac:13:20:7e:43:bb:52:56:92:e1:df:53:8e:b0:8f:
08:ba:0c:fa:f0:ca:a2:6f:2d:8b:c6:18:b1:67:fe:
63:b9:1c:f1:58:a4:ba:47:2e:9f:02:b4:04:b4:0f:
0f:9a:96:75:da:c8:3f:8a:54:22:e4:98:8c:a6:6f:
9c:75:51:d1:89:06:14:17:51:58:fc:81:2d:89:b8:
8f:4d:41:32:d3:0d:f1:45:3c:9c:71:fe:d9:6b:9b:
75:c0:ce:5c:6c:35:20:62:53:02:24:a1:29:62:f6:
e4:26:3a:d5:44:21:2b:32:03:1b:0d:1f:b8:05:8a:
2d:d1:3d:34:40:fb:43:d5:f6:ed:c5:b4:30:f4:43:
16:81:ed:aa:ba:ed:ac:10:ce:12:d3:2b:60:f5:46:
dd:39:a5:21:e4:af:f9:ab:79:cb:72:6b:6c:2c:38:
fd:f6:81:9f:7c:6c:51:4a:30:5b:3e:67:ac:fa:ff:
f2:d7:8f:f0:fa:de:4c:0a:35:b4:d4:bc:0a:da:9a:
8a:2a:f2:cc:d7:34:32:7b:83:c2:98:2d:21:3d:a6:
fa:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:4B:CB:30:FC:5C:48:BC:CC:28:43:4A:6A:7A:66:1C:FD:70:1C:D3
X509v3 Authority Key Identifier:
keyid:4D:13:12:88:15:10:35:74:41:7C:A7:A7:04:12:DA:3A:B3:B8:45:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:16:dd:c2:5e:87:f4:e7:99:92:ae:35:91:d1:30:5e:16:39:
3d:75:fd:d9:0c:5b:86:c7:b1:01:6c:4c:e0:7b:50:99:20:7c:
c7:0f:7d:9f:7a:d0:f5:61:02:ad:d5:42:ad:a7:53:04:84:c6:
51:61:92:0d:f2:39:64:f8:9e:df:3a:f2:22:62:d9:94:2c:e6:
a7:52:09:dc:ab:13:86:30:68:b5:26:22:13:9d:70:4b:15:f3:
72:ed:a8:28:d9:93:8f:52:82:d7:5a:af:89:8d:da:12:d7:75:
0f:01:e8:a9:e8:67:a1:b4:f7:32:59:31:7e:1d:68:d2:ef:92:
cd:11:b2:4f:7d:e6:e2:34:8f:4c:1d:01:77:c9:5d:35:34:ad:
d6:21:bf:c2:36:ba:79:a8:a7:20:45:b0:01:b3:85:66:17:5a:
91:e5:a8:af:9a:aa:7d:de:1d:a0:4d:89:ab:f6:e8:af:f1:a7:
64:e8:ab:84:1b:2f:0e:d4:a3:34:19:11:60:9a:6c:71:73:d6:
8b:97:61:f7:44:02:83:5c:f5:bf:31:7f:45:c0:f7:8c:12:86:
ae:db:10:f7:78:4e:c9:83:b2:65:b9:9c:0f:92:45:45:c3:e5:
8f:ae:a7:2e:61:36:1f:20:10:e3:51:96:e2:1b:cf:59:ea:4d:
1f:14:03:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 01:30:37 2025 by rpki-client