Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft
File: T4BFzPUJd-vDBmo87tj9MvHwI94.mft (raw, json)
Hash identifier: Vl4QtCqQKdujsFW8+XcY7NUmh//1meHZsDxD4RGmwjg=
Subject key identifier: 87:08:55:5A:D4:C0:69:E9:DB:22:75:3E:C6:81:82:5A:32:07:E4:76
Authority key identifier: 4F:80:45:CC:F5:09:77:EB:C3:06:6A:3C:EE:D8:FD:32:F1:F0:23:DE
Certificate issuer: /CN=4f8045ccf50977ebc3066a3ceed8fd32f1f023de
Certificate serial: 01964E2359270E004457453EB25D3669D6B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4BFzPUJd-vDBmo87tj9MvHwI94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft
Manifest number: 1438
Signing time: Sat 19 Apr 2025 13:01:01 +0000
Manifest this update: Sat 19 Apr 2025 13:01:01 +0000
Manifest next update: Sun 20 Apr 2025 13:01:01 +0000
Files and hashes: 1: T4BFzPUJd-vDBmo87tj9MvHwI94.crl (hash: kS5iTmFdtaV7RfprJt2rCaNu24ECQ8ps0IZl7ujdyzo=)
2: YKTSjuC1HFTX7b7hXOaQuasHjw8.roa (hash: DCJ4Y27xyiCClFTgENixBHPREjuVymaDjhE/h8glQl4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft
rsync://rpki.ripe.net/repository/DEFAULT/T4BFzPUJd-vDBmo87tj9MvHwI94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:23:59:27:0e:00:44:57:45:3e:b2:5d:36:69:d6:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8045ccf50977ebc3066a3ceed8fd32f1f023de
Validity
Not Before: Apr 19 13:01:01 2025 GMT
Not After : Apr 20 13:01:01 2025 GMT
Subject: CN=8708555ad4c069e9db22753ec681825a3207e476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:07:ad:5b:a2:da:8c:75:22:d4:c4:87:94:e3:
da:32:db:5c:f0:56:ca:ea:d7:a0:8f:de:14:17:e8:
c0:5d:af:9d:25:22:ae:63:bf:71:55:12:9a:4e:0c:
f4:77:f2:cd:96:a2:a6:2f:7b:af:39:12:04:b7:27:
9a:44:17:a2:d5:ba:74:b7:fa:51:7d:e5:30:10:0c:
65:a1:e0:03:72:a1:59:ea:90:a8:63:8c:2d:c7:ad:
a2:4b:83:86:5b:f9:25:f3:f3:39:d6:71:d5:dc:ac:
40:8a:32:2d:16:ca:55:43:ee:37:2a:98:da:31:fe:
65:6e:37:46:78:b7:b3:dd:39:c7:aa:9f:8b:a1:a6:
dd:d3:26:04:d7:be:0e:9d:30:7a:b0:39:8f:8d:6a:
60:42:05:08:ea:9e:dd:6b:9f:53:19:75:5f:b0:0a:
7c:12:f3:6a:dc:05:5a:70:11:6d:a0:c3:25:5e:ec:
44:e1:54:25:e2:1f:75:c3:6a:9d:bd:b2:20:37:cf:
1c:60:16:19:b1:c8:05:03:a8:4e:7e:23:e7:e0:e9:
1c:c5:2f:22:fa:65:94:7e:84:6b:93:4e:a4:c1:be:
16:4d:5b:4f:b2:34:7a:ec:e7:9d:27:54:7b:28:85:
9c:7f:55:bf:d4:e1:4f:e5:2a:6a:5d:0d:0f:91:70:
1f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:08:55:5A:D4:C0:69:E9:DB:22:75:3E:C6:81:82:5A:32:07:E4:76
X509v3 Authority Key Identifier:
keyid:4F:80:45:CC:F5:09:77:EB:C3:06:6A:3C:EE:D8:FD:32:F1:F0:23:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4BFzPUJd-vDBmo87tj9MvHwI94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:6f:1c:33:21:ac:25:bc:3b:3f:0f:b9:1d:42:1a:d9:bd:2c:
3f:13:0e:fe:b9:17:41:16:da:96:85:8f:46:1c:01:f6:13:52:
6f:d0:9f:90:d0:bc:e4:06:cb:d8:c6:2b:29:d0:a6:74:6a:d8:
8b:df:70:b3:69:df:20:d6:29:2c:9b:61:f6:81:fa:3b:91:fd:
2e:e7:e0:4b:83:0b:b9:ba:f7:98:f6:ec:0e:1c:7d:ad:01:f7:
02:53:e2:8e:b0:ab:1e:6a:64:57:4e:81:88:8f:81:f0:dd:66:
4f:cd:15:25:30:8e:0f:8c:09:43:63:8e:ee:44:37:07:d4:c2:
e9:72:0d:08:97:1a:86:51:ac:73:c5:84:d7:a0:2f:9d:ac:0d:
12:50:91:b9:e2:0f:dd:35:c7:14:0e:17:a3:18:2f:79:bf:79:
0b:51:26:7c:19:e8:e1:10:de:df:e9:17:30:7c:9a:27:ef:ed:
6a:72:9f:af:6f:0f:a5:74:4c:e8:d2:58:40:e1:9a:2c:df:58:
33:90:20:6f:27:1d:a8:9f:ce:bd:d7:e0:b4:1a:5c:94:03:12:
7f:df:1f:a7:88:c0:0a:25:1a:27:fb:09:a3:88:f4:b4:88:03:
bb:f3:f4:83:7d:71:da:e3:5f:1d:6d:22:12:15:30:08:30:69:
ea:e4:e0:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:13:36 2025 by rpki-client