Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
File: t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft (raw, json)
Hash identifier: YYJOfXwQgpVPsCEtsZjkposhZE+N/2tY6E+jAeCyej8=
Subject key identifier: 86:FE:C7:BC:A1:34:40:99:66:E1:FC:8C:4F:40:89:BA:A1:E7:DD:28
Authority key identifier: B7:9D:E9:45:8D:19:0E:63:43:29:F9:DF:15:03:B5:22:2C:16:24:EE
Certificate issuer: /CN=b79de9458d190e634329f9df1503b5222c1624ee
Certificate serial: 019774BFF37CE05F8E899B0769AF7381D47D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
Manifest number: 07A3
Signing time: Sun 15 Jun 2025 18:00:26 +0000
Manifest this update: Sun 15 Jun 2025 18:00:26 +0000
Manifest next update: Mon 16 Jun 2025 18:00:26 +0000
Files and hashes: 1: 33E6U-90LI21C0lkTnzQ6VfaiXI.roa (hash: t0pnwqLcy2OtfvtukL13J3l3uzKc9VJEEKWY4aTDjS8=)
2: KTNKEz9B68iNvMGQpqql8Umd6Rg.roa (hash: 4c3WZli6HrqpP5XT4I7aYzD+h8A8/oNoRJSDq9oByhk=)
3: t53pRY0ZDmNDKfnfFQO1IiwWJO4.crl (hash: d1KgCKRzx7S6T55O3UJn6vLdTzGiYghfA+dxni2tJcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:74:bf:f3:7c:e0:5f:8e:89:9b:07:69:af:73:81:d4:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b79de9458d190e634329f9df1503b5222c1624ee
Validity
Not Before: Jun 15 18:00:26 2025 GMT
Not After : Jun 16 18:00:26 2025 GMT
Subject: CN=86fec7bca134409966e1fc8c4f4089baa1e7dd28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:84:13:cd:f6:fb:f2:7e:24:3f:6d:c2:34:ac:
e7:a0:80:ef:3a:68:4f:c0:ba:b0:06:e4:3d:d9:bc:
4e:24:ed:01:ac:12:ec:7e:13:49:13:08:a3:95:d1:
cf:ab:f9:6d:83:e6:8f:47:7b:fc:00:56:0f:09:b4:
4e:83:9c:5a:ef:d0:64:6f:33:fa:dd:3a:0a:b4:62:
a2:a6:3c:77:e1:c7:0a:31:1c:94:91:4b:1e:d2:06:
9a:16:67:07:6e:90:f7:5b:2b:8f:b3:a1:82:67:72:
94:64:2a:dc:68:43:99:6f:32:8d:2c:6f:c2:a0:f4:
f9:b1:f3:58:73:6b:88:4f:68:d5:92:34:27:4b:4b:
6e:13:60:d2:7c:10:ce:c9:1f:fb:5c:9a:43:c0:23:
f4:dc:c7:68:6e:ae:13:25:4c:8b:88:c4:05:3a:3a:
af:68:7f:7e:03:bc:45:ef:63:64:ba:01:b1:09:36:
e2:5a:ed:b0:cf:93:31:c3:f8:66:1c:3d:ab:df:a2:
1a:38:90:3b:bf:6d:65:ef:ca:3b:03:b1:57:d8:f5:
ab:e9:26:4d:50:9a:ef:5a:1c:6b:5b:bf:95:fe:48:
bc:a7:76:0f:b9:c7:00:d8:19:4c:82:53:18:93:cb:
15:9e:31:bf:93:38:ec:2d:8c:35:f1:f5:81:00:80:
1c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:FE:C7:BC:A1:34:40:99:66:E1:FC:8C:4F:40:89:BA:A1:E7:DD:28
X509v3 Authority Key Identifier:
keyid:B7:9D:E9:45:8D:19:0E:63:43:29:F9:DF:15:03:B5:22:2C:16:24:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:8e:3e:6d:71:e9:e2:cf:2f:da:58:37:ec:02:ee:66:04:75:
5b:14:c5:fe:2c:8b:b7:46:43:79:a5:c6:bb:28:cc:4b:a3:da:
6f:c3:03:fc:c4:c6:eb:1a:8b:43:71:37:00:5f:63:d7:27:1a:
68:24:ae:91:d5:03:30:3d:85:2f:e0:e7:4d:87:59:cd:8b:1e:
ee:a3:fe:11:82:42:ba:8c:e4:14:85:fb:93:c4:03:55:95:8e:
08:04:00:90:c7:fe:e7:b2:6f:af:01:f0:16:20:70:b4:f8:2c:
3a:7e:82:47:b8:b4:1a:f6:68:93:f3:ca:1c:23:a2:e4:7f:c6:
87:13:fe:3a:49:6b:e7:22:47:18:26:32:bf:49:04:0f:85:2c:
74:b8:a7:f7:dc:67:c9:43:eb:1f:79:0a:97:b2:4e:3e:38:58:
8f:d0:28:75:af:e1:11:aa:d6:17:b4:aa:43:cc:00:79:8f:c8:
33:4e:95:97:4e:39:d8:80:5a:dc:5d:ae:29:32:51:36:b7:9f:
65:f5:7a:dd:fb:68:37:3d:fc:69:22:7d:3e:ff:0e:12:40:82:
1e:03:25:05:3b:e6:ae:57:25:26:aa:bb:db:5c:5e:30:b3:7b:
cc:38:12:dd:54:56:2a:ae:8a:b2:25:2e:1a:14:da:23:93:40:
d1:2d:87:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 20:03:01 2025 by rpki-client