Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
File: TvMzZvDPXk-oBO730eKSlO6lFIw.mft (raw, json)
Hash identifier: +I2wPhCj+l2aqIDKr3waZGaEbIdRQfS181LUZD6WL7Q=
Subject key identifier: 56:A5:91:6C:E4:92:C1:3D:6C:EA:D4:D2:FF:AD:35:76:FE:4D:CE:8F
Authority key identifier: 4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
Certificate issuer: /CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Certificate serial: 019658A67A68332F8AE3FC31CE925589BBA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
Manifest number: 0199
Signing time: Mon 21 Apr 2025 14:00:27 +0000
Manifest this update: Mon 21 Apr 2025 14:00:27 +0000
Manifest next update: Tue 22 Apr 2025 14:00:27 +0000
Files and hashes: 1: TvMzZvDPXk-oBO730eKSlO6lFIw.crl (hash: Ur9wGPFsNbjEQuZiusMIxHg+JhUf5al2F4NNcmjAnoc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:a6:7a:68:33:2f:8a:e3:fc:31:ce:92:55:89:bb:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Validity
Not Before: Apr 21 14:00:27 2025 GMT
Not After : Apr 22 14:00:27 2025 GMT
Subject: CN=56a5916ce492c13d6cead4d2ffad3576fe4dce8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5c:b7:00:7a:39:1e:25:88:89:58:50:78:0f:
e6:7b:63:8e:43:a3:cc:50:a0:44:d3:78:74:71:96:
bf:98:0f:0a:3e:56:85:84:d2:e3:9b:0e:58:48:16:
71:29:4a:74:92:aa:7f:24:20:fe:bd:53:47:f2:53:
d3:b6:e6:72:5e:68:8f:be:4d:10:a1:e4:c5:1c:bc:
61:69:5c:ed:b0:29:cf:1f:f1:fa:a7:ab:9f:04:10:
87:61:5c:78:10:4f:02:3c:8b:02:8b:41:ec:ab:b8:
21:d3:3e:16:c9:c0:3a:52:e8:68:aa:99:64:51:d2:
e6:1c:8d:8d:36:d9:79:eb:2d:9f:01:28:d7:2e:ce:
89:41:b5:55:f5:50:5a:6a:35:98:e2:e0:2e:09:71:
2f:23:a8:cc:e7:f1:40:7e:d3:d9:d2:00:8e:47:f2:
72:e8:5a:fd:ee:03:b6:c4:d4:ea:9a:c0:fa:ee:85:
c3:c6:ed:26:3c:68:c4:9a:81:6b:52:32:85:36:ca:
6a:c6:65:95:8b:f4:57:40:42:64:d1:1d:4f:0a:a7:
8c:12:b1:db:b8:02:1d:a4:fb:5e:cb:66:e6:92:ef:
f1:c5:f7:38:98:9b:5e:0e:ae:f3:37:1a:c5:f7:10:
af:d9:fa:b8:78:5b:48:8a:63:57:da:b6:7c:55:41:
8a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A5:91:6C:E4:92:C1:3D:6C:EA:D4:D2:FF:AD:35:76:FE:4D:CE:8F
X509v3 Authority Key Identifier:
keyid:4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:22:11:2c:12:84:c4:aa:14:f1:13:67:87:42:43:a5:28:ef:
c1:86:ef:9f:aa:98:d9:49:fd:77:a9:c5:37:35:48:d0:2e:f3:
52:f1:7c:8b:28:b9:80:a0:e1:8a:da:16:97:49:4d:46:1a:50:
b7:a9:86:d4:23:c0:c5:6c:98:79:61:40:80:fc:a6:c7:c5:f8:
cf:fa:06:9a:c5:4f:a4:c1:93:39:d5:07:da:32:be:b7:77:bf:
9a:05:67:59:7b:99:7f:82:74:d9:e4:1f:ed:87:52:8d:ed:41:
af:b8:8a:12:47:1f:dd:8f:8f:37:ea:00:48:d8:7a:46:ec:22:
be:ca:06:6e:6f:99:c7:61:06:83:2a:c2:b4:4e:38:2f:c4:22:
33:20:86:db:ce:0f:cf:7b:4a:9d:39:5b:2d:8d:75:51:83:30:
b1:f4:9a:f6:2b:44:1b:c1:51:2f:ba:d4:44:f7:8b:9d:66:75:
c3:b7:5e:7f:24:11:5e:f9:b6:30:f7:22:5a:2c:5b:02:5d:47:
0f:9f:0c:a1:98:26:2b:17:ba:ad:bd:7c:21:ac:aa:1d:68:3b:
82:fe:ff:58:2e:7c:4c:7b:97:ad:72:5e:0f:11:d2:1f:cd:72:
50:b9:7e:9e:a2:df:4b:e3:4e:96:c3:76:db:7b:2d:fe:34:bc:
10:e8:65:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 23:58:58 2025 by rpki-client