Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
File: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft (raw, json)
Hash identifier: pt+UEEU8FpVNJKcElTYIfKp+mlLeNpVtguZXkb6Y7qA=
Subject key identifier: 99:01:05:B3:AE:4A:D7:A3:25:F6:A0:9C:6A:ED:65:4F:15:14:56:D1
Authority key identifier: 4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97
Certificate issuer: /CN=4d1527d1839bf830360d71590134354e6d904697
Certificate serial: 019768F2E1A40628ACC2FDC1DFA6EA668D5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
Manifest number: 158E
Signing time: Fri 13 Jun 2025 11:00:37 +0000
Manifest this update: Fri 13 Jun 2025 11:00:37 +0000
Manifest next update: Sat 14 Jun 2025 11:00:37 +0000
Files and hashes: 1: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl (hash: pEW+pXuCP1mqi52E01u1CqKETvzYLQFdEUc6LFf9yKs=)
2: a6Whh1qMHaCLz9si7bMkIx4xg1Y.roa (hash: R/Syehgq2eEOSio/8bhqr2YXvz+4Ke3qpd0G80XikQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 11:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f2:e1:a4:06:28:ac:c2:fd:c1:df:a6:ea:66:8d:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d1527d1839bf830360d71590134354e6d904697
Validity
Not Before: Jun 13 11:00:37 2025 GMT
Not After : Jun 14 11:00:37 2025 GMT
Subject: CN=990105b3ae4ad7a325f6a09c6aed654f151456d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d6:5b:b6:81:d1:4c:69:59:ca:bc:fe:43:77:
58:f5:cb:3d:17:e3:1f:f3:79:d9:fb:4d:fe:8b:43:
4f:e1:15:93:66:c9:db:ee:05:b0:c1:e5:45:b6:14:
2f:7e:a4:0e:4c:47:9d:bf:64:c2:bc:d8:47:f2:e6:
fa:d4:9e:a9:3e:ce:97:83:f1:b0:b8:dc:29:33:4a:
8a:56:ef:a1:a2:4f:56:dc:6d:e9:fd:30:13:7e:7b:
c4:90:ac:2c:f1:72:d6:9c:65:6f:71:30:d9:6f:00:
ba:f2:19:3d:e8:04:b9:04:b5:3a:6b:f5:df:78:77:
63:ff:ef:d1:2b:9e:f4:f6:3e:62:a9:e1:cd:2f:7d:
f3:9c:bf:92:c2:86:06:1c:a0:1b:53:78:68:43:cd:
c3:be:f5:cb:df:ce:db:67:a3:57:da:7a:fc:a4:a1:
0b:bf:d3:14:33:29:1a:7c:97:7b:49:6c:56:f5:94:
85:76:58:2b:27:20:8e:27:f9:46:68:88:cc:9f:53:
ef:a0:c2:19:da:14:bd:2f:93:a7:65:57:40:4b:3a:
8c:58:52:05:82:08:e1:91:00:73:d7:a9:2d:f4:79:
72:b4:f3:10:b7:c7:4f:9e:f7:f3:36:49:cc:0c:d8:
bc:93:24:73:38:a5:f4:ad:4c:bb:f0:48:d5:b5:97:
fb:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:01:05:B3:AE:4A:D7:A3:25:F6:A0:9C:6A:ED:65:4F:15:14:56:D1
X509v3 Authority Key Identifier:
keyid:4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:ce:7e:89:ef:86:bc:6d:a9:46:c3:28:33:67:da:6b:81:e9:
f7:dd:33:8f:f1:0d:35:8f:7d:20:bd:e8:9a:96:1e:d9:9f:0b:
bc:5a:3b:2f:7d:ed:96:97:f0:58:2c:92:70:36:4b:a9:4e:90:
6a:50:b3:a2:c5:7f:6b:b7:a7:58:04:df:44:31:2f:75:33:28:
a9:b0:a4:0e:e8:85:2b:c4:8a:ef:f5:fc:cf:3d:d2:ac:3f:5f:
17:0a:99:57:f9:35:0f:92:fa:8e:9c:91:1f:ad:95:35:43:80:
4f:08:f5:fa:a6:c0:8a:eb:da:b6:d2:14:b1:93:86:97:84:91:
5e:53:de:e0:91:c0:9e:6a:ac:ea:f9:95:48:46:e0:56:b6:ec:
42:08:51:a2:fb:f9:c9:8e:5c:47:b1:1e:20:f5:f9:83:ec:ed:
ed:ce:ed:a9:27:c4:04:1b:e7:7e:af:d5:ad:05:1a:d2:58:00:
0a:6d:59:1d:07:f4:62:a8:d7:9c:c0:d3:02:4f:7b:37:fb:06:
0c:30:b4:82:4a:5d:b5:aa:1b:ed:26:59:02:01:d6:95:73:1f:
b8:b0:24:c0:e6:1d:94:c6:59:b2:d8:4e:57:cf:2a:b1:16:f6:
15:c8:7e:e4:0e:db:2e:26:84:05:a4:b4:c6:0b:1d:9d:b1:17:
99:dc:db:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:07:00 2025 by rpki-client