Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json)
Hash identifier: Jk7cJAUgrhTkMO05XtxbgQb0vj739gAxoLzpivHSlL0=
Subject key identifier: F0:FE:4A:D2:C2:98:B1:8F:F8:35:49:D0:A3:EF:49:73:D9:96:8C:E9
Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Certificate serial: 019645C47B05E003647A14CA06D57ACBDF7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
Manifest number: 14FC
Signing time: Thu 17 Apr 2025 22:00:26 +0000
Manifest this update: Thu 17 Apr 2025 22:00:26 +0000
Manifest next update: Fri 18 Apr 2025 22:00:26 +0000
Files and hashes: 1: RJXW4LBK4fFR7-qXARrAfcS6HVM.roa (hash: nADRNIhqhtAZRzc6jlM5uns21XppYQB+SgxQZjcIenk=)
2: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: LAMpwcrQYTnoagGWFadbR0TBzadfkOfBElQmQSjO3WY=)
3: iuf1b83yCqya2r6SoEi10QBv190.roa (hash: ++uDnasIym2V1Yn9GHYgHuJhGJWPQjDwf8/BrQDt/1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:c4:7b:05:e0:03:64:7a:14:ca:06:d5:7a:cb:df:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3
Validity
Not Before: Apr 17 22:00:26 2025 GMT
Not After : Apr 18 22:00:26 2025 GMT
Subject: CN=f0fe4ad2c298b18ff83549d0a3ef4973d9968ce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1d:09:eb:f0:d1:ed:31:52:12:ad:4a:41:ab:
2c:17:92:52:26:31:4e:27:4b:c7:4a:f9:c7:8e:6e:
e1:b4:ac:6f:f4:f6:d6:06:c8:0a:3a:d7:88:22:83:
b8:ea:a0:f9:6a:b9:ef:68:31:12:18:af:ef:f6:32:
c2:d1:60:3b:5f:a3:cc:ae:a5:1e:80:2e:68:23:16:
ee:af:30:c8:58:a5:a0:0d:b4:ee:c7:25:a8:0b:62:
fc:12:52:55:58:af:88:50:6f:e2:be:c4:ca:28:2b:
92:85:91:bc:f9:43:83:c7:4e:55:a2:41:52:bf:ea:
f1:3c:b4:e0:4d:20:24:44:41:b6:77:96:1b:24:47:
ee:10:44:d4:c9:2c:b9:2a:c3:5f:86:40:0d:69:ef:
3d:cb:7c:1f:8d:da:3d:7b:be:3d:21:56:70:28:2f:
5e:b9:07:a1:14:cb:2f:e9:d9:8e:68:ec:80:d7:27:
39:72:e3:bc:99:d3:ec:9d:8f:bb:c9:f5:2f:b3:ba:
95:30:1d:f6:21:81:ad:fd:b5:0e:42:3b:ea:2c:a1:
e2:96:62:45:5c:af:72:cf:6c:c9:74:8c:79:f6:d4:
5a:56:7d:02:1a:2b:62:48:ce:f2:68:a8:28:c5:9a:
77:29:c1:bb:1c:7e:43:50:6b:3c:c4:70:c9:4b:c1:
c9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:FE:4A:D2:C2:98:B1:8F:F8:35:49:D0:A3:EF:49:73:D9:96:8C:E9
X509v3 Authority Key Identifier:
keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:e0:e8:3e:14:a7:f8:14:f5:ed:17:27:c0:a7:ee:3d:f5:62:
df:7b:1c:7b:d1:2f:11:e2:ad:41:5b:f6:77:90:ba:45:25:5e:
1a:e3:06:3c:83:3d:31:2f:fe:4a:28:f6:14:66:51:8d:b3:db:
75:e2:19:14:de:e0:9e:16:18:a0:c1:29:9a:d6:49:91:d4:ea:
12:a9:4c:a3:ec:9e:01:75:fc:ff:b0:cb:c3:6e:68:4a:7a:a5:
5c:bb:19:d6:3a:94:9a:d3:0b:4c:c5:9e:0d:25:95:c2:46:20:
64:6c:4f:a1:d1:3a:bb:64:0c:a8:85:de:26:9b:24:98:37:26:
80:67:5c:35:01:d4:e8:17:cd:c0:a6:6f:b9:94:23:02:64:72:
90:9d:22:19:4a:91:7d:66:cb:8e:68:08:cf:3d:c2:78:e2:71:
02:82:36:39:c6:60:ea:e8:6a:77:7f:be:b4:61:d2:a3:7d:15:
e5:c3:e7:3e:45:d9:29:23:8b:e2:8c:5a:c6:cd:4b:a0:c9:a7:
27:64:41:27:92:19:96:f6:c7:64:9a:86:e6:2e:20:7c:8a:24:
65:e5:63:82:2d:fb:54:4c:e4:0e:45:37:b1:3c:8e:53:e3:8a:
19:4b:10:48:a7:8c:e9:bf:73:97:4d:08:fd:07:ef:2c:2c:96:
85:03:76:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:06:43 2025 by rpki-client