Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
File: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft (raw, json)
Hash identifier: QFXB1CysTvj7gEKOGD+UBD6Rm0myWCMp0DW4OeHOQHc=
Subject key identifier: A2:40:A8:90:14:CA:2B:D0:DD:0D:63:30:E8:04:76:BA:10:C1:9B:64
Authority key identifier: 4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97
Certificate issuer: /CN=4d1527d1839bf830360d71590134354e6d904697
Certificate serial: 01987373EDC63CEDE74D43151F4717FB12E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
Manifest number: 1618
Signing time: Mon 04 Aug 2025 05:00:33 +0000
Manifest this update: Mon 04 Aug 2025 05:00:33 +0000
Manifest next update: Tue 05 Aug 2025 05:00:33 +0000
Files and hashes: 1: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl (hash: cjL2NEaDvE+7lYK93rLbKC0e/51JFj8yjxWRqZm7e4Q=)
2: a6Whh1qMHaCLz9si7bMkIx4xg1Y.roa (hash: R/Syehgq2eEOSio/8bhqr2YXvz+4Ke3qpd0G80XikQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:73:ed:c6:3c:ed:e7:4d:43:15:1f:47:17:fb:12:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d1527d1839bf830360d71590134354e6d904697
Validity
Not Before: Aug 4 05:00:33 2025 GMT
Not After : Aug 5 05:00:33 2025 GMT
Subject: CN=a240a89014ca2bd0dd0d6330e80476ba10c19b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a8:21:49:cf:53:59:29:2a:48:16:28:fc:0b:
d6:fd:ce:a8:2a:7f:fe:dc:f0:5e:58:24:ee:ca:fc:
01:78:95:a7:37:23:6f:48:1e:c4:30:d9:04:6c:11:
75:2d:74:95:ba:30:77:67:e1:81:65:35:bd:b7:85:
7f:8d:bd:f3:68:8b:67:99:63:ba:e0:84:81:79:e2:
d3:97:17:2f:19:78:2e:7d:a1:24:6b:f6:0e:d2:ab:
6e:b3:91:74:b4:17:eb:98:1f:09:3a:fe:fa:12:f5:
e5:33:74:ff:7f:59:ae:aa:4b:53:c2:29:74:7a:16:
d9:65:61:6a:b4:8c:e4:eb:d7:8b:02:21:db:de:05:
0d:f2:83:6c:79:89:a7:df:30:22:df:a1:c2:58:01:
4d:15:b0:91:a9:53:a2:e2:f5:a8:f6:00:1d:ce:c3:
2e:c4:dd:d9:7d:68:31:cd:fc:c3:bb:e4:f5:d1:a3:
fd:45:3b:57:8f:07:72:f5:ef:06:9f:df:88:04:1b:
aa:4f:8b:c5:13:60:fe:56:d0:3e:4a:ab:53:1a:29:
de:47:ac:cd:c7:07:18:f8:1d:0b:ca:1a:00:f2:2a:
44:12:c5:75:8b:06:1a:2c:d8:98:48:72:81:59:78:
1b:da:89:fc:4f:ac:97:0b:42:83:2f:33:84:03:0b:
a7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:40:A8:90:14:CA:2B:D0:DD:0D:63:30:E8:04:76:BA:10:C1:9B:64
X509v3 Authority Key Identifier:
keyid:4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:a8:bf:2d:ef:25:78:bd:e8:4d:9d:fb:15:7d:ba:80:9b:12:
21:48:e8:45:01:65:0f:db:05:17:b7:ff:13:10:e8:86:5d:51:
88:c6:de:53:fd:7b:4d:bd:b8:1a:fc:d5:7b:d5:60:c3:c3:e3:
5e:63:bc:d4:fd:9a:36:73:32:49:ad:61:5c:71:06:fc:63:30:
e9:8d:71:9d:6e:c7:48:a6:b8:6b:58:50:80:e8:32:61:b4:0c:
4f:01:a8:10:57:cf:76:f4:07:c9:3f:f8:3e:ab:47:2f:23:c4:
32:4f:79:d3:b9:fb:9a:51:04:70:f3:1e:d8:af:c6:88:17:64:
25:ee:8d:ac:a3:10:a5:cd:dc:3a:47:ae:06:c1:8e:99:6a:db:
c1:9c:df:86:74:41:af:cf:aa:04:02:4f:a0:59:3b:db:74:cf:
a6:53:0b:b3:82:e6:46:f4:4a:0b:af:21:fb:43:e2:07:5f:af:
f5:12:98:90:87:e4:fd:ca:6e:ea:af:87:fc:59:3c:03:0f:0e:
d5:06:be:8f:c4:72:a4:7f:3b:87:c5:7d:f9:df:e6:57:12:34:
7e:fa:ee:36:07:97:9c:b8:fc:cb:32:71:77:49:4f:a2:c0:9d:
76:e6:70:fe:06:24:36:ba:37:fb:2d:50:7f:eb:f9:a7:5b:39:
92:09:0c:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:08:56 2025 by rpki-client