Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
File: tznE4_6GnZeDui2t9mDczQ-lNwc.mft (raw, json)
Hash identifier: 9b0LT61LR75EqLQC9VLqrHpABzotJmWSiknwT+YWpvs=
Subject key identifier: 41:71:22:74:02:70:D1:5F:3A:0E:EC:7A:94:60:83:A5:0D:E9:0B:5F
Authority key identifier: B7:39:C4:E3:FE:86:9D:97:83:BA:2D:AD:F6:60:DC:CD:0F:A5:37:07
Certificate issuer: /CN=b739c4e3fe869d9783ba2dadf660dccd0fa53707
Certificate serial: 019652DB88B9ACB198AA43791302E70C2D5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
Manifest number: 0F48
Signing time: Sun 20 Apr 2025 11:00:41 +0000
Manifest this update: Sun 20 Apr 2025 11:00:41 +0000
Manifest next update: Mon 21 Apr 2025 11:00:41 +0000
Files and hashes: 1: XSeQzzLzaRiIssAEaH8bFHtmW3c.roa (hash: 5lhi1fFGQ5t288ymZ18SpahB86WMGs7YGo9rolcKH9c=)
2: tznE4_6GnZeDui2t9mDczQ-lNwc.crl (hash: 0fcZoDoLkdi5s3froDeZ7HA+PFTkaVsqjVBU2ZOjdYk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 11:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:88:b9:ac:b1:98:aa:43:79:13:02:e7:0c:2d:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b739c4e3fe869d9783ba2dadf660dccd0fa53707
Validity
Not Before: Apr 20 11:00:41 2025 GMT
Not After : Apr 21 11:00:41 2025 GMT
Subject: CN=417122740270d15f3a0eec7a946083a50de90b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e1:ac:f8:de:3f:21:2a:65:fb:c3:de:7b:41:
ff:58:d1:08:b5:88:da:aa:79:fe:e7:25:93:60:de:
0b:72:80:82:dd:32:22:66:9c:4b:af:97:d6:23:ea:
b6:8c:cf:a7:1a:f9:d3:b5:56:f9:6d:6d:dc:24:9b:
fe:66:6f:2b:5a:6a:4e:45:ad:38:53:a6:84:78:8d:
09:f7:e5:ee:28:eb:b0:91:0a:0b:fc:85:12:d2:e2:
c9:97:9c:b0:34:71:c3:30:02:fb:f7:52:68:da:0f:
6a:21:2e:f4:48:5b:30:5c:1e:60:46:11:1c:4f:6f:
b4:2d:66:2f:77:02:89:1e:90:e2:a7:b5:f7:84:be:
8d:9d:21:bb:10:ec:13:91:b2:8d:ac:c6:cb:5f:1e:
38:a3:56:19:13:68:25:bf:7a:36:a2:17:96:f9:f1:
0c:95:91:e1:d6:46:47:f1:5c:5f:b5:fe:91:4f:8b:
1d:cf:f1:d1:eb:35:9a:37:fd:0c:e2:4f:67:5a:cd:
5b:77:7d:b5:74:fd:de:87:48:be:2f:f4:97:93:67:
98:01:4f:d4:33:8f:44:0d:06:1b:da:c4:00:9c:b5:
17:84:10:8e:9e:2f:ef:29:c2:4f:6f:99:34:3a:60:
1b:a3:43:e3:44:a4:da:fd:db:70:1f:92:68:ee:ce:
8f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:71:22:74:02:70:D1:5F:3A:0E:EC:7A:94:60:83:A5:0D:E9:0B:5F
X509v3 Authority Key Identifier:
keyid:B7:39:C4:E3:FE:86:9D:97:83:BA:2D:AD:F6:60:DC:CD:0F:A5:37:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:1a:a6:ce:7d:c6:4d:f9:a5:b2:cf:6e:3d:f9:d5:4f:4d:1f:
57:46:59:5d:54:e5:b7:e2:17:47:1a:56:83:5a:aa:5a:48:98:
21:6f:af:65:fb:18:57:2f:80:13:ac:ef:d6:5e:ee:7a:e5:37:
d4:67:91:b3:b4:3f:fb:f0:9e:10:35:e8:f5:62:de:9f:05:d0:
2d:86:dc:8b:38:38:93:69:24:11:32:57:82:df:2d:a7:29:db:
ff:57:52:e5:26:9a:49:6d:ed:1b:9a:22:65:12:21:e8:de:13:
23:7a:13:61:19:6e:54:af:9c:77:12:25:f3:34:ee:9b:64:a2:
22:6e:dd:db:e4:f9:ad:80:0f:1b:71:70:b6:0c:e9:57:9d:25:
77:78:63:44:48:6d:e3:38:90:17:2f:9b:37:13:47:db:0f:1f:
b6:48:8a:00:74:a9:8a:09:4b:e6:74:21:22:90:a0:f0:cb:45:
08:6a:ef:da:98:ad:ab:b6:0f:ca:5e:e2:09:48:80:ed:ea:d9:
2d:9e:ed:1b:f8:81:76:07:dd:ca:1a:00:a3:91:92:5e:2b:1a:
62:7a:a1:ea:f2:54:f9:15:be:01:a7:9a:b7:b6:1e:bd:f6:67:
8c:47:fc:34:65:61:47:1a:5b:8a:84:c3:9c:30:23:4b:f8:d1:
bb:94:3a:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZS24i5rLGYqkN5EwLnDC1dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3MzljNGUzZmU4NjlkOTc4M2JhMmRhZGY2NjBkY2NkMGZh
NTM3MDcwHhcNMjUwNDIwMTEwMDQxWhcNMjUwNDIxMTEwMDQxWjAzMTEwLwYDVQQD
Eyg0MTcxMjI3NDAyNzBkMTVmM2EwZWVjN2E5NDYwODNhNTBkZTkwYjVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxuGs+N4/ISpl+8Pee0H/WNEItYja
qnn+5yWTYN4LcoCC3TIiZpxLr5fWI+q2jM+nGvnTtVb5bW3cJJv+Zm8rWmpORa04
U6aEeI0J9+XuKOuwkQoL/IUS0uLJl5ywNHHDMAL791Jo2g9qIS70SFswXB5gRhEc
T2+0LWYvdwKJHpDip7X3hL6NnSG7EOwTkbKNrMbLXx44o1YZE2glv3o2oheW+fEM
lZHh1kZH8Vxftf6RT4sdz/HR6zWaN/0M4k9nWs1bd321dP3eh0i+L/SXk2eYAU/U
M49EDQYb2sQAnLUXhBCOni/vKcJPb5k0OmAbo0PjRKTa/dtwH5Jo7s6PwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEFxInQCcNFfOg7sepRgg6UN6QtfMB8GA1UdIwQY
MBaAFLc5xOP+hp2Xg7otrfZg3M0PpTcHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHpuRTRfNkduWmVEdWkydDltRGN6US1sTndjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8yMWI1NTgtN2U4OS00MWEyLTgyNWQt
MDcyMjYyZTMwZmM1LzEvdHpuRTRfNkduWmVEdWkydDltRGN6US1sTndjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8yMWI1NTgtN2U4OS00MWEyLTgyNWQtMDcyMjYyZTMwZmM1
LzEvdHpuRTRfNkduWmVEdWkydDltRGN6US1sTndjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAURqmzn3G
Tfmlss9uPfnVT00fV0ZZXVTlt+IXRxpWg1qqWkiYIW+vZfsYVy+AE6zv1l7ueuU3
1GeRs7Q/+/CeEDXo9WLenwXQLYbcizg4k2kkETJXgt8tpynb/1dS5SaaSW3tG5oi
ZRIh6N4TI3oTYRluVK+cdxIl8zTum2SiIm7d2+T5rYAPG3FwtgzpV50ld3hjREht
4ziQFy+bNxNH2w8ftkiKAHSpiglL5nQhIpCg8MtFCGrv2pitq7YPyl7iCUiA7erZ
LZ7tG/iBdgfdyhoAo5GSXisaYnqh6vJU+RW+Aaeat7YevfZnjEf8NGVhRxpbioTD
nDAjS/jRu5Q6uw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 21:06:59 2025 by rpki-client