Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
File: tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft (raw, json)
Hash identifier: mI45FLdycyMa/aOb627yOLw0qv06DRxmi6qtBSsJqlY=
Subject key identifier: 72:42:01:FB:2A:32:EF:F0:F5:B7:22:81:17:10:41:47:67:7F:C4:FB
Authority key identifier: B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
Certificate issuer: /CN=b4430ba11506741d676ea202e291ec7ec6191b17
Certificate serial: 01976C625575E863B4BE9DFD766BE2B094E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
Manifest number: 1593
Signing time: Sat 14 Jun 2025 03:01:13 +0000
Manifest this update: Sat 14 Jun 2025 03:01:13 +0000
Manifest next update: Sun 15 Jun 2025 03:01:13 +0000
Files and hashes: 1: Ar5ixINRYv4h1JY24F8pTYnNdfU.roa (hash: cerPS0rrVRA1DCH9YtBUW4yHi1b4My2ifCj92CGheoI=)
2: tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl (hash: drZQJsbrHz4eESqSgFt9FV96H6JK7OUN/StK8nT0AWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:62:55:75:e8:63:b4:be:9d:fd:76:6b:e2:b0:94:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4430ba11506741d676ea202e291ec7ec6191b17
Validity
Not Before: Jun 14 03:01:13 2025 GMT
Not After : Jun 15 03:01:13 2025 GMT
Subject: CN=724201fb2a32eff0f5b7228117104147677fc4fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c0:4f:d2:96:e6:53:43:33:75:4e:f3:53:c0:
84:f7:78:f1:5f:fb:b8:08:48:68:90:94:db:46:1e:
2e:a3:ce:7c:f9:e8:c3:e7:ce:8b:3d:1d:3e:ef:d0:
a3:6e:cb:66:75:f1:7b:4b:cd:85:19:b3:c4:c6:13:
fc:6d:a2:0e:2e:73:93:0c:94:86:c1:3c:83:4e:f4:
44:fe:33:48:96:5e:0b:eb:ff:53:bb:fa:7b:7a:50:
9a:21:07:ff:fb:1a:3c:47:b5:fd:49:9e:de:73:ba:
dd:88:87:b3:77:b5:2c:8b:b6:32:6b:fd:a0:b9:b6:
17:fb:dd:f6:50:ab:15:ff:da:c1:00:62:52:c0:47:
24:6b:97:a2:cb:4e:01:35:dc:ed:93:c8:97:15:49:
0c:a8:5d:91:5d:7c:bd:c9:ad:44:dd:8c:11:fe:c0:
6e:75:6f:91:d4:6d:f0:53:c1:0f:37:8e:e9:38:1b:
ec:08:63:87:56:c5:39:f5:fc:16:51:2d:9f:20:c9:
e8:03:89:25:ca:cb:d1:77:57:74:6d:d3:cc:6a:4f:
fb:0f:ea:29:a5:73:fd:57:87:12:3c:53:b3:d1:61:
26:55:2b:5f:7b:ec:bd:32:91:3f:52:3e:7b:75:5e:
1b:b8:a9:62:f8:7c:65:df:99:38:d2:cf:51:08:42:
3c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:42:01:FB:2A:32:EF:F0:F5:B7:22:81:17:10:41:47:67:7F:C4:FB
X509v3 Authority Key Identifier:
keyid:B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:3f:83:50:01:a8:38:02:f4:bf:c9:a6:28:b9:4f:fb:e4:45:
d2:0d:81:37:21:95:15:04:f9:c8:82:1d:a4:d1:6e:43:8e:81:
c2:09:6e:7b:a5:e3:b6:35:d2:9e:3a:3e:8a:88:99:c3:67:f4:
ef:c2:34:78:c4:09:cc:25:d6:4e:58:64:fb:22:24:46:8f:38:
22:78:42:7e:e9:d6:fc:10:bc:58:a7:f7:21:b5:22:9c:08:56:
ea:fb:e4:20:08:ed:63:d8:0d:94:ad:3e:8d:e7:e5:f3:e3:1c:
f7:86:ee:e6:76:24:10:67:3f:07:97:0c:4d:ec:dc:f9:c5:7d:
fc:ac:25:32:08:d3:b3:d6:f1:fb:be:42:d0:16:c5:86:47:42:
61:b9:7b:1f:99:06:29:2a:3b:e6:1e:10:e5:09:02:ae:08:8b:
10:00:eb:3a:b1:cb:05:9c:7c:4b:5a:cc:d3:a6:75:18:72:3b:
2c:fe:26:2b:63:db:75:d4:f3:bb:d8:a5:22:a7:d4:99:e3:c1:
66:ba:f7:c3:3e:23:c6:76:30:11:8d:2f:63:4e:1d:62:58:48:
eb:01:f4:58:31:ea:06:7e:9c:9c:fa:e4:51:f5:9b:3a:0a:58:
9c:51:b0:a2:0a:9c:b0:03:46:8d:ca:30:4b:d5:c4:c0:29:05:
b5:d7:77:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:31:57 2025 by rpki-client