Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
File: tpQiR24a5eoNWOT4_fkfBfEC_vs.mft (raw, json)
Hash identifier: KG9VFRioVaKIaB5HZCKmuGy/mcAaGBo8+YUQ6Awh7rc=
Subject key identifier: 12:4C:14:54:2C:68:A1:0B:AC:CF:84:08:54:9A:9F:50:FF:7E:7D:7F
Authority key identifier: B6:94:22:47:6E:1A:E5:EA:0D:58:E4:F8:FD:F9:1F:05:F1:02:FE:FB
Certificate issuer: /CN=b69422476e1ae5ea0d58e4f8fdf91f05f102fefb
Certificate serial: 0196542544973753C977A435E5594F7F4136
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpQiR24a5eoNWOT4_fkfBfEC_vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
Manifest number: 14FA
Signing time: Sun 20 Apr 2025 17:00:50 +0000
Manifest this update: Sun 20 Apr 2025 17:00:50 +0000
Manifest next update: Mon 21 Apr 2025 17:00:50 +0000
Files and hashes: 1: tpQiR24a5eoNWOT4_fkfBfEC_vs.crl (hash: GrNrssv8Om11V4NVVyoE0qaE+G3nubuduHu9pv65XGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpQiR24a5eoNWOT4_fkfBfEC_vs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:25:44:97:37:53:c9:77:a4:35:e5:59:4f:7f:41:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b69422476e1ae5ea0d58e4f8fdf91f05f102fefb
Validity
Not Before: Apr 20 17:00:50 2025 GMT
Not After : Apr 21 17:00:50 2025 GMT
Subject: CN=124c14542c68a10baccf8408549a9f50ff7e7d7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:a2:57:36:a9:35:28:e7:5c:74:7e:18:2e:6f:
cf:b4:ef:11:a1:fd:6b:9f:bb:aa:09:a0:6c:af:90:
f6:66:8a:42:83:99:15:86:72:e3:55:96:66:87:eb:
18:ff:8e:96:75:a2:f4:20:bb:c5:c1:d3:e0:ab:16:
66:b2:c2:bc:f7:52:bd:f2:62:1d:44:25:4c:0e:84:
52:13:cc:cc:50:b3:d3:bc:2a:47:6a:ca:ca:1d:cc:
0b:d5:54:66:67:c3:be:09:14:d2:8b:14:62:23:c3:
d5:0b:84:19:ce:68:fb:2a:5e:d7:b8:2f:e0:4f:57:
42:e0:ec:79:57:bf:7b:7c:2a:80:df:aa:a4:f5:f9:
e4:19:93:cf:71:2a:4a:1a:68:7e:71:64:39:14:9b:
95:0c:97:3f:76:6a:67:c7:5b:29:09:65:c3:0b:a3:
86:14:8a:50:f3:c1:2e:26:fb:5a:bc:c2:92:f2:88:
6c:86:c0:d9:70:4d:41:5e:38:f4:22:55:c2:a1:e6:
80:4e:db:b3:b9:d8:38:30:ae:48:7e:99:e8:55:08:
86:89:d7:ce:60:f6:d9:ae:73:88:8d:6e:c9:c5:d9:
68:8c:4b:8c:01:c7:37:6e:63:a6:2f:36:8d:a4:1b:
10:1a:ee:53:51:5c:d7:25:ad:a6:f2:81:02:1f:1c:
41:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:4C:14:54:2C:68:A1:0B:AC:CF:84:08:54:9A:9F:50:FF:7E:7D:7F
X509v3 Authority Key Identifier:
keyid:B6:94:22:47:6E:1A:E5:EA:0D:58:E4:F8:FD:F9:1F:05:F1:02:FE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpQiR24a5eoNWOT4_fkfBfEC_vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:ff:2d:dd:64:ec:0f:5a:56:5b:d4:94:26:83:17:be:af:08:
6a:e8:e3:73:77:48:41:21:d9:4e:c6:24:9c:41:c7:4a:6b:20:
71:6a:2d:d5:6a:6c:1e:01:f9:e6:5e:f9:1e:16:64:a2:e5:40:
0a:79:be:4a:3b:15:d1:8d:4a:ac:ba:80:9f:83:39:01:4f:67:
0b:6e:3c:a9:37:66:a6:4e:6c:1e:d2:24:b1:42:1c:ef:8c:fd:
e5:de:18:99:6b:fd:4d:9c:05:f7:90:95:1b:ee:e0:71:7e:4e:
83:77:9b:27:ce:20:62:e3:03:7f:fd:19:7e:68:72:af:85:de:
a5:4b:23:73:07:24:8d:b7:68:f2:fa:a0:69:f0:4e:9e:1e:90:
d0:ef:e1:3a:6b:a6:99:02:81:bd:38:7f:df:8f:90:2c:1a:8a:
86:c7:37:d6:04:89:12:d0:8b:db:7a:db:73:0e:9c:5a:f1:cd:
78:c3:67:f1:65:d3:38:a9:2c:af:5b:0f:32:81:a7:29:44:a3:
53:72:44:3d:0b:51:c4:75:f8:9a:37:9e:d5:00:d0:99:fe:5a:
71:60:af:c0:03:12:76:6b:8c:16:db:47:3e:d4:1e:e0:1a:a0:
d5:c4:14:c2:93:e0:ed:9c:33:d0:a2:75:bf:25:21:e9:02:f0:
1d:a5:ce:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:06:17 2025 by rpki-client