Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.mft
File: tA2EnMQ7cy2rZkH8b9Wk2zotuUc.mft (raw, json)
Hash identifier: 7dxAS+112oRCC52qryjxU6tLvzJeVofO6CwJDZO/3hs=
Subject key identifier: 34:4B:1C:45:3E:5A:5C:35:5A:39:A0:D8:00:A7:1C:5A:C8:1D:16:49
Authority key identifier: B4:0D:84:9C:C4:3B:73:2D:AB:66:41:FC:6F:D5:A4:DB:3A:2D:B9:47
Certificate issuer: /CN=b40d849cc43b732dab6641fc6fd5a4db3a2db947
Certificate serial: 01965B02A16B49FB33BACD9B9CB961A27E14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.mft
Manifest number: 0899
Signing time: Tue 22 Apr 2025 01:00:21 +0000
Manifest this update: Tue 22 Apr 2025 01:00:21 +0000
Manifest next update: Wed 23 Apr 2025 01:00:21 +0000
Files and hashes: 1: tA2EnMQ7cy2rZkH8b9Wk2zotuUc.crl (hash: +rGdzEttQjGOaWTE5OCa2m/xvK6m81LsApcJPYONEYc=)
2: x7aEXzfMRzlzp6VorB64R028Jvk.roa (hash: 3aOt7CTs1p/zJJSbWQR2//U36Y0+Zh2Kxl00BzPCEXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:02:a1:6b:49:fb:33:ba:cd:9b:9c:b9:61:a2:7e:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40d849cc43b732dab6641fc6fd5a4db3a2db947
Validity
Not Before: Apr 22 01:00:21 2025 GMT
Not After : Apr 23 01:00:21 2025 GMT
Subject: CN=344b1c453e5a5c355a39a0d800a71c5ac81d1649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9d:79:4a:56:fc:d5:b7:2c:75:18:a7:e4:9c:
eb:23:1f:9c:66:01:57:97:11:db:47:f9:5a:78:e2:
c0:2b:93:45:f7:86:ac:18:e1:ca:1a:e2:e5:2f:bb:
be:ad:5f:27:bb:a0:bb:d5:9c:74:64:43:09:b9:18:
3c:57:28:46:a1:71:72:59:5e:d5:b4:b9:b5:ed:7c:
25:75:81:f3:e2:47:f1:ac:5f:28:d9:f8:ce:c7:24:
3f:d1:16:c7:3f:95:e6:67:ad:68:93:b5:3a:e7:84:
ac:e9:f2:2c:b2:b6:28:d6:ae:9c:b5:9c:ac:ae:cb:
91:e6:ca:48:99:15:5a:a7:40:3d:8b:0a:04:d9:43:
5d:22:c7:96:14:26:d6:c4:c4:e3:81:58:7a:58:8c:
1e:a4:d7:0d:fb:c7:96:c6:92:95:d5:92:51:93:6c:
ff:b4:68:43:eb:35:b8:df:0b:ba:42:af:53:30:9e:
8d:41:8a:f1:1f:25:ad:c5:00:cf:55:4c:16:3f:a2:
65:ed:92:10:81:86:ce:34:f1:67:ca:2a:5b:3f:df:
96:1e:28:a7:81:18:76:1f:75:e9:06:dd:9f:48:38:
32:cb:8f:31:7a:56:10:7e:78:23:3e:46:46:70:08:
39:c2:10:1e:a3:53:ff:51:f4:ff:89:cd:5f:3b:0b:
8b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:4B:1C:45:3E:5A:5C:35:5A:39:A0:D8:00:A7:1C:5A:C8:1D:16:49
X509v3 Authority Key Identifier:
keyid:B4:0D:84:9C:C4:3B:73:2D:AB:66:41:FC:6F:D5:A4:DB:3A:2D:B9:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/134ccb-b0ab-446b-8172-62e27cd1e975/1/tA2EnMQ7cy2rZkH8b9Wk2zotuUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:8b:49:aa:55:5c:76:d0:b6:7c:dd:ec:9c:2e:f9:e3:f0:1a:
30:bc:a2:9e:d1:a8:bf:ac:74:bc:03:01:6d:9b:d4:5c:77:80:
fb:e0:53:1e:42:3c:80:fa:ae:48:1e:0b:43:5d:e3:bf:30:a8:
a7:9a:bc:4d:a2:a5:f6:3d:64:38:08:f9:65:12:fd:98:0f:de:
41:57:2d:db:5c:c4:02:96:67:a6:24:d5:85:f9:34:e5:85:5d:
80:3c:b6:40:94:90:31:c1:72:fa:e0:82:89:24:93:e8:e4:90:
02:09:0c:88:e3:29:0b:22:3b:2c:82:c3:91:e6:d0:cf:9a:8e:
1a:ad:c6:68:4c:7f:0b:04:b6:f6:ae:cb:a9:43:fa:28:35:04:
fc:17:28:b6:dd:db:44:eb:00:2e:e0:c6:15:03:99:b6:4b:e8:
75:00:8a:73:83:47:85:fd:0b:76:47:47:10:e2:28:2c:02:77:
6b:8b:c9:9c:18:f3:24:35:98:c5:1e:cf:63:c2:dc:1f:41:6b:
f7:01:b8:b7:5b:c7:f6:ba:5e:cb:25:b0:61:db:3c:d6:9c:30:
f0:6d:eb:74:ba:d4:f1:d9:b6:a2:61:56:68:39:5e:d2:b9:be:
74:59:ca:8b:a2:b3:8f:c0:6e:04:91:a7:b3:16:cd:97:ea:19:
9b:62:fe:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 04:28:24 2025 by rpki-client