Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
File: TkMMADsADTVe0WnlXYzPOTg34go.mft (raw, json)
Hash identifier: L1xJ8llPwHVWVSaEbT8mjJ+rQ/TPtSbsnZDnpyEFrPc=
Subject key identifier: 7B:2B:DC:D9:DA:76:7A:A1:B6:4A:64:A1:19:00:CE:C4:C6:04:FB:F7
Authority key identifier: 4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A
Certificate issuer: /CN=4e430c003b000d355ed169e55d8ccf393837e20a
Certificate serial: 01964BFDC2AAEC2A3BDC6BBB23F1897A9067
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
Manifest number: 0C7D
Signing time: Sat 19 Apr 2025 03:00:43 +0000
Manifest this update: Sat 19 Apr 2025 03:00:43 +0000
Manifest next update: Sun 20 Apr 2025 03:00:43 +0000
Files and hashes: 1: TkMMADsADTVe0WnlXYzPOTg34go.crl (hash: B2doYcA/mtRkfVnMCKaZhtbNEUy8Wvqv6ginNF0hM5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 03:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fd:c2:aa:ec:2a:3b:dc:6b:bb:23:f1:89:7a:90:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e430c003b000d355ed169e55d8ccf393837e20a
Validity
Not Before: Apr 19 03:00:43 2025 GMT
Not After : Apr 20 03:00:43 2025 GMT
Subject: CN=7b2bdcd9da767aa1b64a64a11900cec4c604fbf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8a:4f:2f:3f:2a:f0:be:17:86:3e:be:be:80:
50:94:85:94:6b:4c:c3:90:e3:9a:9f:9c:93:8f:40:
a4:4e:c2:b3:d2:ff:36:54:49:e4:39:ec:17:72:6f:
19:b6:d6:a5:9b:c4:75:bf:fa:9e:e0:ec:48:eb:4d:
b7:03:05:26:bc:a5:06:e9:91:b1:81:9d:0c:a0:2f:
21:32:9d:6e:ba:5f:04:cd:88:5a:74:fb:e5:e2:0d:
ab:57:50:eb:52:5a:af:ef:29:ec:b5:b9:cb:35:df:
70:17:2b:1a:2d:63:37:fd:c8:bc:52:24:38:20:5b:
6e:59:bf:f3:04:0f:5d:57:ef:cd:a6:c1:85:2e:3e:
4c:5e:3a:7b:af:dd:ae:e6:56:fd:d5:67:11:23:e5:
5c:56:34:0c:1f:ea:60:39:98:52:2f:1d:cb:9a:38:
a7:bb:69:1c:e3:a5:81:92:28:98:fa:94:71:4d:f8:
75:93:a1:23:a2:5f:3b:5b:cd:e6:1e:ef:87:42:72:
32:f0:7b:13:d3:0f:2d:c8:dd:0c:07:f5:28:02:55:
fc:e2:e1:73:88:64:93:f6:fd:70:f2:e8:68:26:66:
df:fa:bc:54:b6:6e:de:2c:72:63:8a:ec:8a:d4:fd:
ed:34:8c:8f:99:fe:30:d0:58:ec:cc:f7:7a:b8:80:
39:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:2B:DC:D9:DA:76:7A:A1:B6:4A:64:A1:19:00:CE:C4:C6:04:FB:F7
X509v3 Authority Key Identifier:
keyid:4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:12:a7:39:25:c3:11:0b:c3:32:1a:ea:fe:85:83:ad:c2:52:
1c:67:6c:8f:c5:a7:ad:01:26:4d:ef:cf:a9:95:04:48:91:a2:
52:b5:e0:db:de:ab:d0:08:fc:26:0e:b8:97:9e:7f:ba:28:02:
74:92:fe:db:ec:fa:cb:34:a2:41:b6:7a:67:00:eb:3c:5f:74:
ff:0b:b0:f7:db:d6:15:4a:23:0b:84:d5:ba:f8:c1:f8:e8:f3:
7d:65:4f:f4:30:9d:b5:39:e4:c5:66:19:f5:1f:ef:24:ce:54:
1c:6a:f5:4f:03:cf:8f:15:ad:90:ca:c7:f8:e0:a6:70:47:1f:
8b:13:8c:b0:bc:eb:bf:2a:63:9a:98:50:ea:e6:b2:24:73:b3:
40:d8:78:62:0c:08:d7:a7:a4:2b:d9:7c:0e:fa:72:b4:67:61:
02:a5:23:31:04:6b:5c:88:81:9d:4f:c4:08:85:05:c6:cb:28:
78:58:3b:74:28:74:b9:b1:eb:f8:03:91:94:c0:91:0c:72:e8:
77:2c:cb:eb:2e:1f:ee:d7:59:99:ff:29:bf:a4:f0:8e:02:4a:
4f:c0:ca:70:0a:ac:b5:7c:c4:10:50:bb:ef:60:c9:a4:3e:df:
d1:6c:03:cc:8e:68:b9:52:06:e9:2b:73:25:f2:66:c3:7b:a7:
01:3c:6f:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZL/cKq7Co73Gu7I/GJepBnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlNDMwYzAwM2IwMDBkMzU1ZWQxNjllNTVkOGNjZjM5Mzgz
N2UyMGEwHhcNMjUwNDE5MDMwMDQzWhcNMjUwNDIwMDMwMDQzWjAzMTEwLwYDVQQD
Eyg3YjJiZGNkOWRhNzY3YWExYjY0YTY0YTExOTAwY2VjNGM2MDRmYmY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYpPLz8q8L4Xhj6+voBQlIWUa0zD
kOOan5yTj0CkTsKz0v82VEnkOewXcm8Zttalm8R1v/qe4OxI6023AwUmvKUG6ZGx
gZ0MoC8hMp1uul8EzYhadPvl4g2rV1DrUlqv7ynstbnLNd9wFysaLWM3/ci8UiQ4
IFtuWb/zBA9dV+/NpsGFLj5MXjp7r92u5lb91WcRI+VcVjQMH+pgOZhSLx3Lmjin
u2kc46WBkiiY+pRxTfh1k6Ejol87W83mHu+HQnIy8HsT0w8tyN0MB/UoAlX84uFz
iGST9v1w8uhoJmbf+rxUtm7eLHJjiuyK1P3tNIyPmf4w0FjszPd6uIA51QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHsr3NnadnqhtkpkoRkAzsTGBPv3MB8GA1UdIwQY
MBaAFE5DDAA7AA01XtFp5V2Mzzk4N+IKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGtNTUFEc0FEVFZlMFdubFhZelBPVGczNGdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS84MjIyNWQtMDQwYS00ZDliLWEzM2It
ODhkODIzNGE2ZDNlLzEvVGtNTUFEc0FEVFZlMFdubFhZelBPVGczNGdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS84MjIyNWQtMDQwYS00ZDliLWEzM2ItODhkODIzNGE2ZDNl
LzEvVGtNTUFEc0FEVFZlMFdubFhZelBPVGczNGdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQhKnOSXD
EQvDMhrq/oWDrcJSHGdsj8WnrQEmTe/PqZUESJGiUrXg296r0Aj8Jg64l55/uigC
dJL+2+z6yzSiQbZ6ZwDrPF90/wuw99vWFUojC4TVuvjB+OjzfWVP9DCdtTnkxWYZ
9R/vJM5UHGr1TwPPjxWtkMrH+OCmcEcfixOMsLzrvypjmphQ6uayJHOzQNh4YgwI
16ekK9l8DvpytGdhAqUjMQRrXIiBnU/ECIUFxssoeFg7dCh0ubHr+AORlMCRDHLo
dyzL6y4f7tdZmf8pv6TwjgJKT8DKcAqstXzEEFC772DJpD7f0WwDzI5ouVIG6Stz
JfJmw3unATxvEQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 11:35:07 2025 by rpki-client