Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
File: TzLUClO7YLhnWebsClIHMAtBr3A.mft (raw, json)
Hash identifier: p1WbiDBh9hWWBhAti6pI7FYwkTLv65PaAa73l8HqHmQ=
Subject key identifier: 24:16:15:CA:73:5A:D2:5F:D0:80:7D:70:6E:B1:73:EE:2E:A3:9D:9E
Authority key identifier: 4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
Certificate issuer: /CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Certificate serial: 01987374ACB8E4343C9406E696A28EC2DF3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
Manifest number: 1615
Signing time: Mon 04 Aug 2025 05:01:22 +0000
Manifest this update: Mon 04 Aug 2025 05:01:22 +0000
Manifest next update: Tue 05 Aug 2025 05:01:22 +0000
Files and hashes: 1: 2j3kAJC1aDvfwJPuGUvb554m29Y.roa (hash: Hr+M1o8+SSmf7r+qXis6TOXIjRUjTFBSHGU0mpn3FN4=)
2: TzLUClO7YLhnWebsClIHMAtBr3A.crl (hash: sdnEy4pv5aRPk8xDhOhp51nPirQv/968iwKnMflYuD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 05:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:ac:b8:e4:34:3c:94:06:e6:96:a2:8e:c2:df:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Validity
Not Before: Aug 4 05:01:22 2025 GMT
Not After : Aug 5 05:01:22 2025 GMT
Subject: CN=241615ca735ad25fd0807d706eb173ee2ea39d9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e8:cd:d9:e9:44:20:59:d6:a7:e3:5e:e6:62:
5f:8e:39:48:4c:2a:67:b4:3e:bd:b5:d3:9a:cb:54:
e4:77:20:24:03:4c:65:db:e0:10:b5:6f:f4:29:ba:
51:c2:85:97:42:cd:4a:94:0b:ed:c2:5c:b4:75:e9:
11:63:b7:d2:57:81:27:6b:43:92:36:dd:cc:15:de:
8d:fc:77:ec:2c:cf:c7:77:f2:23:48:47:f2:ee:62:
43:4c:66:33:2a:4c:8f:84:81:de:40:ea:84:65:0e:
02:0b:92:c8:dc:58:b0:0f:6f:f0:4b:16:04:c0:69:
f8:80:91:c0:b3:8d:67:16:8f:96:d4:fe:d7:ed:31:
74:54:39:90:d6:48:65:c6:c4:1f:91:f8:13:a0:7e:
31:e4:33:dc:1f:b3:04:88:65:8e:04:c7:d1:90:08:
e0:10:3b:a6:95:f5:19:10:0e:ea:4c:c7:8b:52:ac:
54:7d:bc:44:bc:71:d6:87:b8:2f:61:46:8f:b2:0b:
69:b6:2d:6f:25:33:e1:2a:b9:e8:9f:64:0d:3e:08:
07:b6:22:bc:81:fa:37:c8:75:91:ca:b9:bb:51:37:
09:9c:ca:49:9d:8e:66:47:cd:82:fb:71:d7:69:a1:
63:5d:5b:df:e6:a0:1f:60:81:e8:cb:70:78:95:3b:
1a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:16:15:CA:73:5A:D2:5F:D0:80:7D:70:6E:B1:73:EE:2E:A3:9D:9E
X509v3 Authority Key Identifier:
keyid:4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:7e:ce:46:f8:fc:2a:03:e3:35:26:12:b6:9b:53:9b:ab:5e:
3d:dc:c4:fb:a8:5b:a1:27:f8:c3:5a:c7:70:b8:d0:b6:16:89:
4f:98:11:3a:c1:12:08:66:1b:44:ab:b6:ab:cb:53:5d:3d:f9:
a6:df:12:da:45:a1:4e:57:fe:ad:2f:9c:c8:78:60:b6:20:5b:
54:e3:bb:10:bb:e6:5a:ea:41:2e:4e:42:b8:44:c4:95:1b:df:
8f:2b:2c:89:28:9a:e1:a0:8d:f2:71:69:b3:bc:eb:4b:eb:03:
60:59:0d:54:57:cc:21:a2:5d:fc:8f:7b:a4:20:27:77:d5:33:
eb:9c:1f:72:dc:09:3a:3a:a1:04:f8:05:21:7e:87:22:d9:35:
fc:19:19:20:bf:b4:bc:9c:85:64:97:85:64:52:2e:65:60:d0:
90:87:a9:39:e8:bb:99:15:5c:88:f9:c2:91:b0:8d:ab:4d:bb:
53:04:a1:93:09:4f:32:c5:f5:19:2f:a8:da:db:b4:a6:be:40:
7b:30:2b:0c:91:f9:92:3b:ad:3b:83:9e:a5:91:40:56:c1:ef:
ce:cf:bc:d4:ab:16:e7:ba:2c:86:51:6d:58:46:a4:19:19:36:
95:c9:44:3f:8f:84:0a:c9:dd:5c:81:9e:bc:54:ad:4a:e9:d2:
96:82:15:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:04:22 2025 by rpki-client