Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
File: TQiJTKQFMefSApQJEojnetEsKXk.mft (raw, json)
Hash identifier: xXIKNZK4vcRxCk1IHldpSzL2DmJH7LZg68WOawZP7Ic=
Subject key identifier: 21:BB:27:F4:9D:4D:D5:91:47:86:69:72:4A:53:CF:F9:71:75:34:C7
Authority key identifier: 4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
Certificate issuer: /CN=4d08894ca40531e7d20294091288e77ad12c2979
Certificate serial: 01964FDA88D5451DAC2029DD40AF78258FD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
Manifest number: 05C2
Signing time: Sat 19 Apr 2025 21:00:43 +0000
Manifest this update: Sat 19 Apr 2025 21:00:43 +0000
Manifest next update: Sun 20 Apr 2025 21:00:43 +0000
Files and hashes: 1: 9vSYuCdAG_e0E6RGGzb6agTE0BM.roa (hash: QacZLKOpB/Eo9Q8tjYWI0KN++SKGpTz/tW+UR9tDqD0=)
2: TQiJTKQFMefSApQJEojnetEsKXk.crl (hash: kyXa9XlDeB5OwjNrpDFHbRPAgqS8DSmwMmxwHpWJrFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 21:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:da:88:d5:45:1d:ac:20:29:dd:40:af:78:25:8f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d08894ca40531e7d20294091288e77ad12c2979
Validity
Not Before: Apr 19 21:00:43 2025 GMT
Not After : Apr 20 21:00:43 2025 GMT
Subject: CN=21bb27f49d4dd591478669724a53cff9717534c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:16:e7:b1:1e:7d:e2:b7:dd:0f:c2:06:a4:f0:
b1:34:4a:bf:70:54:70:01:c2:bc:7f:64:c8:75:bc:
a9:01:1f:6b:8d:53:b1:a8:a3:b2:16:f7:4c:9f:5c:
6b:31:ca:05:65:41:ac:60:63:e4:5e:0f:e3:06:b9:
f2:dd:e3:0a:f0:3f:83:0e:f2:d2:0a:5b:88:d0:5f:
8a:7a:d9:cf:77:f6:aa:bf:e0:dd:f0:41:91:3f:38:
96:78:ed:71:08:07:ae:87:ff:db:f5:ba:83:ea:73:
ce:40:8b:2f:ad:4d:f3:ae:0b:2a:c2:b6:74:02:9f:
7f:dc:97:8b:6d:66:22:a1:29:62:74:48:00:12:47:
9f:75:6b:07:67:a5:86:47:9c:d4:22:45:99:3b:0b:
df:a8:97:ff:4e:75:93:d5:73:7e:69:91:86:1d:b7:
cd:67:96:07:89:0a:17:fd:aa:93:67:2e:f9:29:e6:
0e:ac:a8:87:42:9f:60:42:f1:16:5b:70:0e:83:09:
65:c2:0f:f3:44:39:3f:d4:92:1d:21:18:0a:76:e0:
52:b1:71:11:06:1c:b1:de:ef:2a:3e:c9:7c:dd:a9:
87:6f:66:e5:31:be:1f:3e:17:50:7a:98:71:23:0b:
ed:cd:f6:8e:79:9f:48:f1:a7:93:1e:e3:97:4c:d2:
59:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:BB:27:F4:9D:4D:D5:91:47:86:69:72:4A:53:CF:F9:71:75:34:C7
X509v3 Authority Key Identifier:
keyid:4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:dc:a0:e2:84:8f:3e:b2:8b:5a:f4:67:0a:44:19:64:a3:fe:
f9:aa:4d:43:88:4c:29:40:33:c5:42:68:8b:51:92:72:f7:a0:
15:7d:1b:16:43:c2:1d:0c:11:e4:ad:fc:91:cc:3c:88:4a:80:
7f:80:80:ff:2d:fc:1e:a7:6d:02:2a:90:b5:c5:f2:76:c3:b9:
b7:2c:d3:b9:2b:6a:a1:b5:e2:28:dd:1c:85:8a:9b:d8:c8:fe:
c4:44:01:fe:db:54:6a:77:95:3b:66:42:71:82:7d:0f:76:51:
93:22:56:4f:86:8a:70:81:c9:15:2a:fe:cd:a7:ab:26:05:0c:
8c:1d:d8:22:43:0c:7c:53:6e:9e:aa:8f:29:e4:e6:d9:24:4f:
57:d1:99:80:ca:a8:14:60:57:27:51:5d:42:5a:52:f8:72:8d:
fa:5f:f6:22:54:1d:3e:30:f3:01:de:a1:f9:3b:d8:b3:b0:a7:
a0:89:5e:6a:3b:83:1a:89:95:5d:f3:29:5a:75:06:c0:d9:d4:
5e:59:67:69:c5:33:e7:84:fa:7b:7a:5a:4d:d9:ce:ff:77:bf:
a5:dd:b7:73:fb:e7:34:ac:b1:f9:48:99:c0:70:cd:29:c2:2b:
47:b3:5f:04:5f:d1:8f:47:ae:4a:7b:4a:24:8d:39:57:79:43:
5d:da:15:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:28:51 2025 by rpki-client