Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
File: TQiJTKQFMefSApQJEojnetEsKXk.mft (raw, json)
Hash identifier: mhttir9UV1tSGkZISb0rtAY4W6Tl2k1Bd3T8zdFJ8Dw=
Subject key identifier: 6F:1C:18:72:99:C2:22:6F:6B:52:62:46:AF:89:F4:1C:BC:EF:31:7B
Authority key identifier: 4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
Certificate issuer: /CN=4d08894ca40531e7d20294091288e77ad12c2979
Certificate serial: 01958EBD07BACC48DF8317CC407355FF9085
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
Manifest number: 055E
Signing time: Thu 13 Mar 2025 09:01:47 +0000
Manifest this update: Thu 13 Mar 2025 09:01:47 +0000
Manifest next update: Fri 14 Mar 2025 09:01:47 +0000
Files and hashes: 1: 9vSYuCdAG_e0E6RGGzb6agTE0BM.roa (hash: QacZLKOpB/Eo9Q8tjYWI0KN++SKGpTz/tW+UR9tDqD0=)
2: TQiJTKQFMefSApQJEojnetEsKXk.crl (hash: MN/ox5j3Y0Xi6ztwwP+pam+xaKB8pvK6U7NKy12XBEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:bd:07:ba:cc:48:df:83:17:cc:40:73:55:ff:90:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d08894ca40531e7d20294091288e77ad12c2979
Validity
Not Before: Mar 13 09:01:47 2025 GMT
Not After : Mar 14 09:01:47 2025 GMT
Subject: CN=6f1c187299c2226f6b526246af89f41cbcef317b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:03:9d:18:53:30:8d:3a:77:c3:2b:21:96:9e:
35:bc:1d:26:50:37:f0:6b:c5:6b:fe:61:a3:74:11:
b3:a5:38:ec:2e:71:e3:ba:95:2f:80:ba:b4:3e:a1:
d6:6f:f2:57:9c:0c:26:70:60:86:2a:01:2a:6d:08:
26:7a:85:09:1d:0d:a3:74:bd:37:1f:d3:da:83:46:
5c:09:ea:ac:67:ce:96:df:e6:95:09:64:42:ca:5d:
c0:f6:bf:11:3d:55:f6:dc:4d:21:36:93:22:f7:ad:
a4:01:c4:2d:19:ea:96:4d:fe:c2:d9:41:07:d6:1d:
c2:c7:78:45:37:7e:54:09:2d:51:be:ce:ee:1e:66:
44:dc:3a:bd:a1:76:d5:6a:81:8f:19:f6:4d:cc:0e:
4f:eb:4b:5a:d3:cc:12:c4:58:b5:6b:2f:95:92:51:
33:69:ca:0d:09:a8:88:fc:32:cf:eb:cf:51:3a:2f:
d7:01:6f:fc:49:8f:8e:87:64:1f:61:62:ba:8e:8e:
93:4a:c2:03:7c:f3:89:99:32:6f:e7:98:96:86:39:
69:c3:1f:ea:b4:b2:49:13:9a:51:6b:1a:95:4f:22:
87:3b:77:a8:dc:19:1e:17:0d:22:23:d1:4b:1f:66:
06:a2:fc:70:36:0e:03:6b:45:ed:f3:d3:38:94:e7:
e0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:1C:18:72:99:C2:22:6F:6B:52:62:46:AF:89:F4:1C:BC:EF:31:7B
X509v3 Authority Key Identifier:
keyid:4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:14:ea:fe:00:c9:51:30:d7:9e:26:72:77:10:45:b0:74:a0:
df:28:af:44:76:36:6d:b3:f0:a0:c8:d3:44:ce:d3:d6:d9:7d:
b6:a8:9a:9a:58:fe:62:7a:34:7a:fb:60:36:f8:4a:04:95:75:
16:fb:09:37:c5:52:1e:d7:2c:34:ad:c7:0a:d9:b4:58:1c:3b:
e1:a9:db:fe:b9:68:62:57:d2:75:1d:5f:af:2e:de:33:06:af:
d6:5b:8e:bc:da:9e:a8:0e:26:1c:b3:4f:d1:2b:92:e5:86:7a:
db:7e:93:58:aa:3c:48:60:12:02:fe:ec:9b:0c:e2:6a:1d:40:
18:2f:d2:89:1f:b6:b7:a0:6f:05:dc:39:09:01:da:0f:3d:23:
d0:a9:1a:35:bc:d5:84:51:2d:1d:f9:54:cc:4b:39:65:25:f3:
47:2d:be:e3:1d:d4:f1:78:c5:6d:6d:50:19:2e:c9:c0:d7:1e:
10:84:c2:3d:b8:97:e8:fb:58:41:32:22:ee:2d:52:fd:ac:6a:
e1:43:e2:a1:f2:5c:14:e7:a8:4a:f4:d8:e7:6d:0d:0f:70:f0:
47:99:c2:65:86:16:45:c7:28:d9:e4:e4:34:1e:55:92:ce:aa:
07:6d:a5:43:e9:fb:a9:82:df:82:6d:45:03:32:0b:8d:e7:8b:
5e:60:60:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:33:01 2025 by rpki-client