Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
File: tMBDnHlVURAtbx5M620cUvvF6j8.mft (raw, json)
Hash identifier: dY0+dXqx0HMwVj90iTH+SuUGN5WHLjuBTZRz/KXDY/g=
Subject key identifier: 8E:EA:1B:FF:A6:C2:8C:78:A1:B9:7E:22:DC:67:69:01:27:63:96:4F
Authority key identifier: B4:C0:43:9C:79:55:51:10:2D:6F:1E:4C:EB:6D:1C:52:FB:C5:EA:3F
Certificate issuer: /CN=b4c0439c795551102d6f1e4ceb6d1c52fbc5ea3f
Certificate serial: 01965793C03D5EEEB1FA881AFD6A3C80BCDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
Manifest number: 1501
Signing time: Mon 21 Apr 2025 09:00:22 +0000
Manifest this update: Mon 21 Apr 2025 09:00:22 +0000
Manifest next update: Tue 22 Apr 2025 09:00:22 +0000
Files and hashes: 1: n5jiYoIoGZQqwQOVrCfprt-PApk.roa (hash: MrCF/3iJ71+/LWf1gBDblDTWmF567DIjZvwBvhh1aT0=)
2: tMBDnHlVURAtbx5M620cUvvF6j8.crl (hash: 3g6v5IoqAeBQhEZc89PZaSqpiUA/3x6FZEDLY4QHqXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 09:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:93:c0:3d:5e:ee:b1:fa:88:1a:fd:6a:3c:80:bc:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4c0439c795551102d6f1e4ceb6d1c52fbc5ea3f
Validity
Not Before: Apr 21 09:00:22 2025 GMT
Not After : Apr 22 09:00:22 2025 GMT
Subject: CN=8eea1bffa6c28c78a1b97e22dc6769012763964f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:95:56:01:f6:80:55:14:8f:f5:83:88:31:51:
c6:0c:f3:2d:95:c9:88:a4:22:da:e1:ba:71:40:5a:
7f:50:6e:4b:dc:5a:60:43:11:1a:f0:f7:4f:be:d4:
9f:66:58:aa:ca:39:e1:ef:04:3a:df:ce:f7:c2:6f:
3b:f1:eb:d1:ed:fe:27:5b:d3:fc:a4:96:ff:f8:b8:
15:c4:aa:2c:ad:86:bf:ff:12:e0:c4:bd:76:5a:c9:
bb:68:55:97:e0:f0:51:15:4f:cf:c5:31:7d:1d:39:
c9:fa:73:e5:c6:93:65:a2:df:34:7b:20:e0:c5:87:
c3:83:1f:be:14:2b:53:17:12:41:72:b3:cc:0a:5d:
9e:c4:4d:db:9c:50:b8:63:75:bb:ca:78:61:c5:47:
fd:db:cb:10:fc:05:46:ec:57:9b:cb:31:b1:6b:9b:
1b:6b:8d:f7:ee:6e:49:3f:74:73:43:81:13:c4:9e:
4f:8a:97:91:17:25:fc:ef:30:1c:28:b2:2c:13:c4:
ef:4b:bf:8a:75:ed:9c:d8:ef:b9:81:03:1f:b8:33:
1a:d5:df:36:12:29:05:71:ed:06:2b:90:7a:2e:de:
24:34:67:52:c1:f8:b7:96:21:af:23:1e:c1:b7:a6:
6b:6e:c0:b7:24:bc:2b:1d:a5:af:ec:2c:0b:9f:44:
0b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:EA:1B:FF:A6:C2:8C:78:A1:B9:7E:22:DC:67:69:01:27:63:96:4F
X509v3 Authority Key Identifier:
keyid:B4:C0:43:9C:79:55:51:10:2D:6F:1E:4C:EB:6D:1C:52:FB:C5:EA:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:07:af:f0:75:f4:6a:d4:4b:04:f5:b7:4f:51:aa:c9:6e:40:
8e:91:f2:07:81:d8:f0:ce:ba:3c:db:4f:e7:d2:31:d0:eb:1f:
f6:59:5a:86:c8:2d:8e:59:ed:a5:88:d9:f7:a8:2c:d8:33:69:
0e:dc:e9:86:e0:fe:9e:65:ca:0b:59:61:ad:05:cb:a2:b1:aa:
47:02:12:72:79:b1:27:2f:10:c4:52:ae:db:5e:70:97:0b:5c:
83:00:df:3b:b4:2a:17:82:47:3b:e7:e5:35:b4:69:5d:6d:f3:
78:e7:20:2b:1e:50:c4:4e:6c:46:3d:24:10:84:ac:10:ef:fe:
ae:ba:fd:1e:bd:09:0b:4b:66:be:4d:fb:9c:34:e9:48:1c:06:
fb:90:18:5c:ff:5e:b9:e6:e7:13:1e:cd:71:3a:ba:75:19:8b:
84:f8:d1:bc:7f:1d:8a:37:17:18:50:ce:9f:85:31:1b:02:49:
c5:04:7b:31:8f:a0:b4:90:34:97:77:5b:c7:fa:0c:e4:28:f9:
2b:77:fb:66:0d:99:b2:3d:a0:6a:e0:8f:4d:45:23:60:cc:29:
02:f2:d6:99:5a:42:92:3f:85:9a:23:c9:27:44:b8:ee:a4:bd:
ab:f0:ff:13:9c:06:4d:c7:55:f6:96:85:3b:7e:ee:42:ad:5b:
57:02:26:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:07:44 2025 by rpki-client