Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/7f49df-2722-45d1-9d9b-9759f9a79ace/1/TVSL_7MhSZGpynyfD1tIVFiLl14.mft
File: TVSL_7MhSZGpynyfD1tIVFiLl14.mft (raw, json)
Hash identifier: LdLSE6BBkDkq5ha90mi1NSR35sS1VNXHUIs834N1rUc=
Subject key identifier: D6:AE:A4:59:C2:F4:7F:21:67:D4:FD:7F:C1:E1:40:3A:35:E9:07:F0
Authority key identifier: 4D:54:8B:FF:B3:21:49:91:A9:CA:7C:9F:0F:5B:48:54:58:8B:97:5E
Certificate issuer: /CN=4d548bffb3214991a9ca7c9f0f5b4854588b975e
Certificate serial: 019658DDA7A491E1B483502858D5B4358810
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TVSL_7MhSZGpynyfD1tIVFiLl14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/7f49df-2722-45d1-9d9b-9759f9a79ace/1/TVSL_7MhSZGpynyfD1tIVFiLl14.mft
Manifest number: 05E2
Signing time: Mon 21 Apr 2025 15:00:43 +0000
Manifest this update: Mon 21 Apr 2025 15:00:43 +0000
Manifest next update: Tue 22 Apr 2025 15:00:43 +0000
Files and hashes: 1: TVSL_7MhSZGpynyfD1tIVFiLl14.crl (hash: oufwrIx+O7kQr7dN7BT8cQhPN01xxQO/u17f2A83Bv8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/7f49df-2722-45d1-9d9b-9759f9a79ace/1/TVSL_7MhSZGpynyfD1tIVFiLl14.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/7f49df-2722-45d1-9d9b-9759f9a79ace/1/TVSL_7MhSZGpynyfD1tIVFiLl14.mft
rsync://rpki.ripe.net/repository/DEFAULT/TVSL_7MhSZGpynyfD1tIVFiLl14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:dd:a7:a4:91:e1:b4:83:50:28:58:d5:b4:35:88:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d548bffb3214991a9ca7c9f0f5b4854588b975e
Validity
Not Before: Apr 21 15:00:43 2025 GMT
Not After : Apr 22 15:00:43 2025 GMT
Subject: CN=d6aea459c2f47f2167d4fd7fc1e1403a35e907f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:33:a9:e6:6d:1b:b8:98:d7:86:c1:2b:fe:94:
13:65:fa:fc:24:0e:ec:ea:77:22:ef:3d:ef:f3:67:
ec:42:8f:c1:50:80:b1:d0:7d:0f:1f:9c:e3:86:5c:
b6:93:48:5f:18:31:37:56:02:1d:2f:49:de:06:ef:
d5:a2:70:19:cd:a5:64:5f:3a:43:e2:90:cc:20:c6:
40:4a:78:44:ed:0b:b0:c1:e6:cc:30:97:e6:a6:cb:
8c:14:ef:55:dc:85:02:06:4b:7a:02:cf:f6:2f:22:
96:65:f0:27:63:64:32:62:d4:ad:d3:3c:57:ed:f9:
94:d3:01:0f:61:f5:9d:3b:eb:17:b8:93:d4:d4:da:
e2:aa:6c:85:68:c4:df:63:51:ca:24:23:cb:b4:51:
4a:5f:2b:7e:d7:cc:ee:01:02:06:e0:67:cb:5c:06:
f7:b7:b8:50:05:8b:94:15:37:a6:a3:0e:38:46:06:
8c:4d:27:ed:ab:49:3c:dc:9c:26:8f:cc:23:03:07:
5e:af:fe:a7:30:c5:25:ff:51:fa:da:4b:52:da:74:
a7:c5:aa:f0:95:a5:8f:db:1c:4f:f9:85:ad:8e:e6:
17:bb:4b:da:08:c7:08:5b:c9:71:8b:45:fb:9c:c2:
57:5a:c3:4c:a0:35:96:c1:cf:b7:ad:a9:61:38:ee:
30:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:AE:A4:59:C2:F4:7F:21:67:D4:FD:7F:C1:E1:40:3A:35:E9:07:F0
X509v3 Authority Key Identifier:
keyid:4D:54:8B:FF:B3:21:49:91:A9:CA:7C:9F:0F:5B:48:54:58:8B:97:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TVSL_7MhSZGpynyfD1tIVFiLl14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/7f49df-2722-45d1-9d9b-9759f9a79ace/1/TVSL_7MhSZGpynyfD1tIVFiLl14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/7f49df-2722-45d1-9d9b-9759f9a79ace/1/TVSL_7MhSZGpynyfD1tIVFiLl14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:24:ac:f2:e7:65:f1:15:bb:ca:5c:e2:b3:32:14:3e:1a:ba:
62:85:ed:56:c4:cb:f6:79:76:1c:ac:19:0f:0c:87:51:a4:a0:
b0:d4:00:60:27:68:b0:4e:40:80:4f:b9:1d:54:62:96:d2:cd:
a7:80:d7:9d:d0:3f:34:9f:43:87:5a:c4:f3:db:18:37:58:8f:
11:5f:b3:1e:29:d8:87:d9:f4:96:ec:d6:e4:0b:83:7f:96:8b:
d5:56:ba:40:c9:02:e4:58:fe:df:9e:18:95:fd:de:67:86:16:
ae:ea:b8:8e:91:ef:c7:5d:a0:7f:74:1b:c7:b0:82:be:07:e5:
26:cf:34:d3:99:6f:81:36:d3:f4:43:ca:d7:a9:78:d1:54:c6:
fa:84:ef:66:29:47:3b:10:af:02:cb:42:d1:d9:5e:88:cc:fa:
23:80:8d:e1:9d:43:68:85:bd:ae:9e:86:42:3c:17:5e:fb:68:
8b:b8:df:62:57:27:82:c8:b2:7d:d3:c7:fd:f3:b9:a3:46:d5:
47:c8:17:78:9d:fb:8b:1a:ef:b6:01:10:3c:66:41:85:9b:e8:
01:8b:d7:35:09:f3:da:9f:71:45:18:56:ca:a0:89:33:22:e8:
ff:97:dc:c0:48:25:b3:76:5f:f0:95:93:41:cd:a9:8b:66:cd:
b7:2c:61:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZY3aekkeG0g1AoWNW0NYgQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkNTQ4YmZmYjMyMTQ5OTFhOWNhN2M5ZjBmNWI0ODU0NTg4
Yjk3NWUwHhcNMjUwNDIxMTUwMDQzWhcNMjUwNDIyMTUwMDQzWjAzMTEwLwYDVQQD
EyhkNmFlYTQ1OWMyZjQ3ZjIxNjdkNGZkN2ZjMWUxNDAzYTM1ZTkwN2YwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxDOp5m0buJjXhsEr/pQTZfr8JA7s
6nci7z3v82fsQo/BUICx0H0PH5zjhly2k0hfGDE3VgIdL0neBu/VonAZzaVkXzpD
4pDMIMZASnhE7QuwwebMMJfmpsuMFO9V3IUCBkt6As/2LyKWZfAnY2QyYtSt0zxX
7fmU0wEPYfWdO+sXuJPU1NriqmyFaMTfY1HKJCPLtFFKXyt+18zuAQIG4GfLXAb3
t7hQBYuUFTemow44RgaMTSftq0k83Jwmj8wjAwder/6nMMUl/1H62ktS2nSnxarw
laWP2xxP+YWtjuYXu0vaCMcIW8lxi0X7nMJXWsNMoDWWwc+3ralhOO4w3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNaupFnC9H8hZ9T9f8HhQDo16QfwMB8GA1UdIwQY
MBaAFE1Ui/+zIUmRqcp8nw9bSFRYi5deMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFZTTF83TWhTWkdweW55ZkQxdElWRmlMbDE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi83ZjQ5ZGYtMjcyMi00NWQxLTlkOWIt
OTc1OWY5YTc5YWNlLzEvVFZTTF83TWhTWkdweW55ZkQxdElWRmlMbDE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi83ZjQ5ZGYtMjcyMi00NWQxLTlkOWItOTc1OWY5YTc5YWNl
LzEvVFZTTF83TWhTWkdweW55ZkQxdElWRmlMbDE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkSSs8udl
8RW7ylziszIUPhq6YoXtVsTL9nl2HKwZDwyHUaSgsNQAYCdosE5AgE+5HVRiltLN
p4DXndA/NJ9Dh1rE89sYN1iPEV+zHinYh9n0luzW5AuDf5aL1Va6QMkC5Fj+354Y
lf3eZ4YWruq4jpHvx12gf3Qbx7CCvgflJs8005lvgTbT9EPK16l40VTG+oTvZilH
OxCvAstC0dleiMz6I4CN4Z1DaIW9rp6GQjwXXvtoi7jfYlcngsiyfdPH/fO5o0bV
R8gXeJ37ixrvtgEQPGZBhZvoAYvXNQnz2p9xRRhWyqCJMyLo/5fcwEgls3Zf8JWT
Qc2pi2bNtyxhPg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:02:11 2025 by rpki-client