Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
File: tpHQC9tiauVzB9XNTord2UdWgLM.mft (raw, json)
Hash identifier: KGULtL1GUkhooWtD93A7dMhUBwGThw2Gd4+6rsVJ+iQ=
Subject key identifier: 7E:35:78:CA:1D:D5:97:32:CF:D3:67:3B:F4:F6:F7:1B:C7:F9:A6:7C
Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Certificate serial: 019644B1B75FAC2E26780368A370E99F6060
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
Manifest number: 0DC9
Signing time: Thu 17 Apr 2025 17:00:19 +0000
Manifest this update: Thu 17 Apr 2025 17:00:19 +0000
Manifest next update: Fri 18 Apr 2025 17:00:19 +0000
Files and hashes: 1: AQvnwjdpCCJVGghqg0nwe9L0mVk.roa (hash: lmMkrxQHgFH9/tCkdiNxxBNSfZZ+AeKUjyZG6YnOW/4=)
2: tpHQC9tiauVzB9XNTord2UdWgLM.crl (hash: D5kQGzP6Fbo/1OJ1NBUpMIHLOZKTVY9TJtAo6dprJHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:b1:b7:5f:ac:2e:26:78:03:68:a3:70:e9:9f:60:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Validity
Not Before: Apr 17 17:00:19 2025 GMT
Not After : Apr 18 17:00:19 2025 GMT
Subject: CN=7e3578ca1dd59732cfd3673bf4f6f71bc7f9a67c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4d:d6:85:81:c6:16:4f:f2:16:89:5d:b5:7f:
8a:26:9a:67:57:a3:10:7f:4b:fa:ee:d8:16:6e:20:
ae:ba:ba:80:cc:54:8b:fc:02:9e:6b:7f:29:81:d1:
43:44:bb:2c:6a:49:20:66:a0:81:ce:9d:03:cd:fa:
ec:bd:56:f4:a7:c1:ee:82:09:c0:ae:b2:7b:78:30:
39:7e:a8:a2:07:28:3c:b0:c3:5c:75:b1:e1:4b:78:
4b:70:b0:ae:6a:9e:e0:3a:2b:03:80:a7:85:ae:bc:
2a:f6:a6:3f:6e:46:4b:00:5e:76:31:18:a0:72:97:
ca:8f:c0:d6:00:93:5d:39:6e:c3:2a:f0:a0:b6:1d:
8f:a1:a3:6f:5c:25:1c:43:75:26:0e:46:a2:e1:af:
2d:3a:68:07:ce:cd:99:87:87:8f:ea:39:94:42:5b:
ef:18:14:5f:e6:39:18:27:60:02:b2:b3:ea:50:9f:
bb:26:ae:c2:3d:72:ab:7b:02:9c:1c:5a:44:53:57:
27:5e:df:b5:99:9e:60:27:36:4f:d8:02:7e:c5:f2:
bc:9a:c9:44:54:e9:1d:c4:7f:18:71:06:90:40:d3:
e0:44:31:c7:d0:6d:c7:8a:92:1f:1e:8c:9b:35:2b:
39:53:93:04:d3:e1:0d:f4:1f:66:d7:4c:43:de:08:
82:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:35:78:CA:1D:D5:97:32:CF:D3:67:3B:F4:F6:F7:1B:C7:F9:A6:7C
X509v3 Authority Key Identifier:
keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:7b:86:76:4f:19:15:66:4b:1b:89:4e:dc:cf:60:2d:54:37:
87:9c:1b:67:85:4f:4f:e6:3c:c8:0e:f2:27:6d:13:36:48:05:
58:68:3d:f0:02:69:df:16:9b:4d:a3:e9:6a:ef:d0:48:ac:a3:
49:b0:8f:34:4d:25:fd:c4:a1:eb:ac:3f:51:b0:fb:02:01:07:
03:62:4c:89:95:94:96:6c:76:f3:b9:db:23:7d:ce:3a:f6:26:
14:2b:d6:8e:a1:d3:d3:af:ed:01:fd:9d:cf:62:b5:cb:e0:ba:
64:3e:a1:7f:04:59:eb:75:e8:3f:18:b5:c9:8d:ca:aa:19:e1:
b1:d8:07:bf:03:92:bd:27:5d:10:ee:b8:a3:2a:3f:2b:23:06:
9a:21:e0:89:b2:9c:2f:ff:80:be:0d:67:3a:2b:2e:fb:3b:db:
5c:34:32:d1:0e:b3:92:70:ea:5c:8d:3b:49:d2:a2:0d:7d:bc:
f9:bb:42:89:04:c2:50:58:da:41:a7:72:77:23:77:bf:c3:29:
11:48:42:0b:9f:df:d8:07:9b:9b:85:ea:77:7c:c4:ff:f3:eb:
4b:8e:12:2b:58:da:0a:d5:14:8a:fa:e3:4f:d7:89:6e:3f:0a:
51:d6:a4:57:82:94:13:de:55:f0:12:59:43:c1:d7:15:27:d7:
08:f2:21:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:37:29 2025 by rpki-client