Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
File: TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft (raw, json)
Hash identifier: qR3arZ8c6fGhSHPYSnkfpxZMPuEf5mTKJdlEgN8+re4=
Subject key identifier: D4:0A:83:D0:84:7D:1E:B1:06:68:56:24:9A:2E:24:32:15:74:D0:06
Authority key identifier: 4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
Certificate issuer: /CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Certificate serial: 01960942A1E542E577207DC27D3485537FBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
Manifest number: 14D8
Signing time: Sun 06 Apr 2025 04:01:23 +0000
Manifest this update: Sun 06 Apr 2025 04:01:23 +0000
Manifest next update: Mon 07 Apr 2025 04:01:23 +0000
Files and hashes: 1: TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl (hash: rPYkkSnVnMsE3tobS9yjTRiRlAE8sQAGAIG2/u5iEGQ=)
2: kvulLtgS7l9j5cL5cr_z1UEgt1M.roa (hash: lwycUBIUeNB/fogCEgMYVAepQLASER5k8Ye40EXBAoI=)
3: oU2gT1IurOl4JOtTxHQKMy5VlJc.roa (hash: 7D6CZeXsxLmbsc8Q3WlliKMlAUVGAKnvDjUAjAi4e0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 04:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:09:42:a1:e5:42:e5:77:20:7d:c2:7d:34:85:53:7f:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Validity
Not Before: Apr 6 04:01:23 2025 GMT
Not After : Apr 7 04:01:23 2025 GMT
Subject: CN=d40a83d0847d1eb1066856249a2e24321574d006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:49:8d:34:b7:58:d0:36:ee:94:6f:ee:dc:91:
5e:60:9a:f5:48:2e:7a:7e:29:6d:d1:fd:3e:d9:eb:
d6:f3:2e:3d:8b:37:28:b9:2d:52:3d:6d:94:4e:63:
e1:6f:36:66:6f:ce:7c:cf:c7:bb:7b:21:5c:64:39:
ef:9b:35:cd:3e:15:2d:4c:a0:ce:80:a9:a6:4d:92:
b5:17:97:af:3c:34:3a:9b:d6:c2:8e:d8:8c:e7:c0:
bf:a2:b9:56:29:da:ab:c0:34:27:cb:e1:41:cb:9d:
35:a6:58:e0:7e:33:d1:e9:da:4b:0d:d2:39:47:00:
e3:42:fa:98:9c:15:10:11:70:ef:e4:a3:2d:90:de:
5f:b8:a5:ef:f2:06:11:a5:e6:06:f1:0a:20:cd:9f:
eb:51:6d:5d:a3:ce:f3:2c:8b:0b:d4:35:58:f7:16:
d2:66:03:41:4c:af:92:e3:c7:f2:87:85:c6:66:22:
76:38:cc:78:7a:9b:5a:97:b4:26:4d:82:42:be:d5:
b7:54:3e:a3:a5:41:b4:2c:fb:3f:69:e1:a7:eb:9a:
25:c6:18:d9:3f:1d:3c:04:58:67:61:51:2e:0a:dd:
55:fd:9f:d2:5a:ef:05:82:9b:2c:b6:20:0a:18:41:
26:38:18:d0:c0:13:19:3d:15:08:3f:0c:84:20:eb:
da:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:0A:83:D0:84:7D:1E:B1:06:68:56:24:9A:2E:24:32:15:74:D0:06
X509v3 Authority Key Identifier:
keyid:4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:64:88:b9:c6:a3:90:1a:86:44:1f:bd:b4:7e:49:ff:bd:38:
71:39:16:47:e2:b5:cd:37:20:f2:b8:f9:3a:27:6c:03:c0:42:
ed:57:2d:74:d5:e9:69:37:b5:73:0e:74:79:10:55:a6:3e:1c:
af:a0:de:f0:71:79:e0:5a:18:06:3b:b6:69:fe:00:c1:03:e6:
da:55:9f:ca:1c:fc:9a:73:68:f6:2f:83:76:dd:bb:b8:7e:d9:
62:1e:0e:13:23:69:cc:2d:4b:a7:60:21:52:5b:94:b9:d3:76:
de:00:6e:43:25:27:3b:ea:f6:27:67:51:be:63:0e:4a:ac:55:
dc:d1:14:c1:51:0e:f6:e1:0f:3f:90:3c:a1:47:e5:b1:12:bc:
86:01:75:7f:ce:f2:b2:52:eb:b8:50:a0:41:1a:72:9c:32:e6:
2c:15:df:5f:4b:91:28:7c:fc:9f:31:79:e8:de:9b:c8:6e:3f:
a8:ce:1e:80:21:6a:c6:bf:e4:bd:42:be:c5:4e:f5:99:c4:40:
1d:6a:1a:07:e6:27:cd:ca:70:93:97:ed:47:fb:e4:15:c0:17:
e3:16:9a:42:3e:07:20:6f:5b:98:b1:b6:ce:45:18:95:92:c1:
cc:35:45:00:7a:04:de:c4:19:8d:0c:a1:1b:f9:36:b0:b6:c0:
38:7b:83:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:07:48 2025 by rpki-client