Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
File: ttaENqdjOfZxRBz71QrUAdPAD_8.mft (raw, json)
Hash identifier: ofEGZdj0mBvI0x9SuZFeJjDcq8veQazLT/Zercd3qxs=
Subject key identifier: 12:92:5C:75:A2:51:91:C0:11:A9:AA:FC:3B:FB:02:66:C8:0C:7D:8C
Authority key identifier: B6:D6:84:36:A7:63:39:F6:71:44:1C:FB:D5:0A:D4:01:D3:C0:0F:FF
Certificate issuer: /CN=b6d68436a76339f671441cfbd50ad401d3c00fff
Certificate serial: 01965424EE92ADED821BF980D8D60227AD53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttaENqdjOfZxRBz71QrUAdPAD_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
Manifest number: 1268
Signing time: Sun 20 Apr 2025 17:00:28 +0000
Manifest this update: Sun 20 Apr 2025 17:00:28 +0000
Manifest next update: Mon 21 Apr 2025 17:00:28 +0000
Files and hashes: 1: HROKUTUR5gMY3n6zglHSVCbZS_I.roa (hash: w0BOZ7icboJC4/TfINzPR6MRHeR0gZCuXliuxuy25YQ=)
2: ttaENqdjOfZxRBz71QrUAdPAD_8.crl (hash: 2F5RE7h67TgEaE5X5Sw3Wp8roek2Qeo6KIEpSeFRYuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ttaENqdjOfZxRBz71QrUAdPAD_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 17:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:24:ee:92:ad:ed:82:1b:f9:80:d8:d6:02:27:ad:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6d68436a76339f671441cfbd50ad401d3c00fff
Validity
Not Before: Apr 20 17:00:28 2025 GMT
Not After : Apr 21 17:00:28 2025 GMT
Subject: CN=12925c75a25191c011a9aafc3bfb0266c80c7d8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:af:d9:ef:ad:36:e7:34:97:ae:ce:14:91:15:
29:c7:58:86:24:61:f9:b5:03:69:c5:a5:78:48:89:
4c:c0:68:b4:2f:1f:ea:ff:b6:d3:79:73:07:9f:b9:
63:78:60:84:e7:6a:88:52:8c:a0:2f:54:99:18:dc:
d8:c6:99:6e:de:8d:e3:93:d7:01:d6:f1:5c:5e:51:
d6:c5:b5:7c:e1:68:1b:4c:9f:a5:18:4e:00:30:ff:
77:dc:36:7f:e2:f8:34:a4:97:0e:14:60:d4:b1:a2:
01:b1:49:b2:55:76:6c:6e:4e:2e:1a:12:fe:bb:c6:
87:9a:0b:b6:9a:05:05:22:7c:17:9b:d1:cf:bf:ad:
51:88:5f:c3:fe:4a:eb:6b:09:d8:3a:f5:c2:c8:80:
f7:74:f7:a0:40:8e:44:a5:f3:30:ee:06:f6:d9:e1:
f0:ba:61:0e:f0:7a:a0:50:5d:44:db:c5:ab:98:a0:
7a:cf:15:4d:c6:a9:ba:ea:e1:2c:0c:74:26:6d:0f:
15:ab:d1:72:5c:a7:d9:13:62:5a:4c:6d:d5:9c:c6:
ad:5e:65:6a:85:f7:94:b6:bc:05:be:8b:51:e6:59:
b1:a0:85:cf:54:6d:ed:8f:df:cf:0a:b8:12:d5:ba:
58:7e:af:aa:03:ce:4f:10:88:9e:75:77:34:a6:0b:
19:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:92:5C:75:A2:51:91:C0:11:A9:AA:FC:3B:FB:02:66:C8:0C:7D:8C
X509v3 Authority Key Identifier:
keyid:B6:D6:84:36:A7:63:39:F6:71:44:1C:FB:D5:0A:D4:01:D3:C0:0F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttaENqdjOfZxRBz71QrUAdPAD_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:e5:1d:6e:ea:d5:d4:1b:ef:9e:28:be:61:ac:a6:1e:4d:1c:
83:90:ba:2b:cb:83:97:91:9d:ae:38:34:7f:a4:63:89:e5:f1:
ec:51:47:42:f2:67:b3:24:1e:01:a1:b8:af:4a:6e:63:28:0f:
91:ec:48:05:26:55:27:3a:1e:24:7a:a6:82:20:2c:08:00:ae:
43:ad:7e:22:c8:9d:14:df:13:e8:f9:47:f3:e6:bd:b6:ac:6f:
ef:56:1d:f9:02:e5:60:ea:4e:3c:a7:2d:3a:da:93:d3:39:a9:
1a:9b:0b:50:3d:0f:8f:8a:78:55:e6:15:75:1a:11:7c:07:08:
8c:91:2d:31:d8:5d:50:a3:76:6d:54:ac:0a:65:ab:85:db:37:
06:8e:c0:35:54:f0:83:ef:bd:55:a3:c2:b0:61:f4:ed:52:76:
30:57:a4:06:b9:1f:72:15:91:15:8b:22:26:97:e7:81:f1:d3:
da:d7:da:c0:34:26:90:4c:41:49:46:37:0a:7b:34:75:af:3f:
3f:4f:7a:b2:35:41:a7:3e:af:d3:0f:be:21:ef:65:76:7f:2f:
12:6e:52:8f:f5:c3:c7:0f:95:20:1d:95:6d:d0:e0:dd:9a:9b:
d6:16:d6:b6:d2:8d:bf:8e:75:f6:3f:65:21:31:d6:91:b2:e3:
bd:83:be:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:43:26 2025 by rpki-client