Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
File: TKE73qVPdrioVxKv22FRhrM4OME.mft (raw, json)
Hash identifier: FxJBY/zAY/nDrr6kmmIGUKfGItuTxrAkBdnEnrXBDgU=
Subject key identifier: BE:5F:04:FF:63:EE:39:37:2C:07:F5:3C:5F:45:BA:3B:FF:97:3F:FA
Authority key identifier: 4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1
Certificate issuer: /CN=4ca13bdea54f76b8a85712afdb615186b33838c1
Certificate serial: 01964EC7D2230D72374676B64773A5649591
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
Manifest number: 14FC
Signing time: Sat 19 Apr 2025 16:00:40 +0000
Manifest this update: Sat 19 Apr 2025 16:00:40 +0000
Manifest next update: Sun 20 Apr 2025 16:00:40 +0000
Files and hashes: 1: 8axKv1QeNdYLl5PRbdXwvujzyH4.roa (hash: P16odh3n69wKkHb8t7qySEeaYC3/LuUW9W8sAY8jUTo=)
2: TKE73qVPdrioVxKv22FRhrM4OME.crl (hash: 88bcDOkZELT93xjhhS50GmPXUjEePx6OT32wGf+8pHw=)
3: WNroR83uzcjISqXHww42f1zYgLY.roa (hash: ZAQula8xqSNg9/XEOBi+pmskOiJ5Nh7rkmicK30wwYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:c7:d2:23:0d:72:37:46:76:b6:47:73:a5:64:95:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca13bdea54f76b8a85712afdb615186b33838c1
Validity
Not Before: Apr 19 16:00:40 2025 GMT
Not After : Apr 20 16:00:40 2025 GMT
Subject: CN=be5f04ff63ee39372c07f53c5f45ba3bff973ffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:87:b1:40:d1:72:55:98:08:b3:b1:32:36:cb:
6a:e1:7c:13:43:d8:ed:06:2b:4a:63:fa:9a:ac:28:
cc:e0:74:9b:b2:7f:cd:a1:ab:88:1a:16:b5:76:42:
11:0b:65:13:63:80:07:e4:e1:95:b6:8e:46:bb:cb:
90:e3:72:3f:02:6c:09:fa:20:94:a5:b5:83:89:0a:
d7:d6:56:c3:7b:0c:4f:00:32:f3:ac:83:12:b7:6a:
f7:04:70:11:84:21:25:31:5d:37:61:07:68:76:f8:
5a:8d:41:0d:35:77:ad:96:b4:3e:25:d1:af:ec:06:
53:d2:ca:69:60:5c:19:d0:f2:55:b0:fd:ae:c4:a6:
d0:88:93:36:53:3e:08:c4:57:45:75:f8:f8:eb:ac:
a9:d5:8c:bc:25:06:eb:e2:e3:f5:93:cc:b1:df:2e:
a4:0f:4d:ae:ed:26:6f:bf:f4:ed:1b:34:c3:53:69:
60:fe:4b:db:76:1b:dc:34:b6:dd:5c:ec:4e:54:d2:
40:76:a6:56:c6:ec:3f:69:2f:af:8f:b1:e9:8f:57:
b5:42:dd:3a:0f:b7:0a:6c:2c:df:a9:20:e5:71:10:
f4:a2:0b:99:2c:86:2b:38:1a:6e:b9:3a:1e:e4:4a:
d3:88:2d:c2:37:96:aa:96:81:e1:3d:8e:b1:7d:46:
1a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5F:04:FF:63:EE:39:37:2C:07:F5:3C:5F:45:BA:3B:FF:97:3F:FA
X509v3 Authority Key Identifier:
keyid:4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:56:2b:e0:16:76:1c:f4:7c:60:b0:5d:ed:18:76:03:f6:7b:
c7:6f:50:d3:d1:d2:39:04:99:86:17:5e:75:fc:24:b9:ab:a2:
a0:42:48:b1:cb:8c:07:70:20:a9:df:e6:a2:be:55:85:d6:03:
4d:84:a6:48:c4:07:b2:9d:b9:e9:9e:84:f6:4d:14:4d:44:cd:
64:39:9d:09:ef:00:51:c0:c3:28:f0:66:02:b0:9a:36:ef:c3:
d6:3f:3f:cd:98:d7:0e:6e:7d:f5:81:ce:70:ba:fb:75:b7:af:
73:22:d6:f9:57:0a:ca:7a:20:01:9e:8c:70:8e:3f:75:5d:f5:
45:7e:12:df:f7:9d:24:8b:68:92:db:00:ac:6d:19:26:77:24:
07:43:17:45:36:34:57:14:c8:a2:82:06:78:65:4c:6c:f3:a1:
99:d5:2a:ee:f8:3e:74:f0:51:fd:3a:07:68:9e:37:fe:c4:d3:
6f:ec:d3:91:7b:49:d2:a4:f8:1d:e3:4c:0f:da:a4:be:16:19:
47:57:d4:3e:55:8a:75:4c:1c:2b:eb:91:80:ef:b9:b0:df:0e:
a6:a4:15:d8:0d:c4:6f:85:f4:66:b1:60:3e:2b:2e:a8:12:08:
7a:50:b8:d6:74:8b:84:6f:fb:b3:57:ec:e3:c1:5e:02:c6:82:
7a:15:4f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:09:33 2025 by rpki-client