Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
File: TnzINx7SS6z2esqLkCzucGr8Yks.mft (raw, json)
Hash identifier: ZEYfAkIrKbq1KMIA09GmDkgwpuLdBticBsVf4PKlJx8=
Subject key identifier: FE:0D:B3:09:6F:DD:70:CA:3B:0C:4A:B6:2C:43:78:A2:A4:5A:B5:C9
Authority key identifier: 4E:7C:C8:37:1E:D2:4B:AC:F6:7A:CA:8B:90:2C:EE:70:6A:FC:62:4B
Certificate issuer: /CN=4e7cc8371ed24bacf67aca8b902cee706afc624b
Certificate serial: 0196440D0BF7EF2CCE8FC95EFAE1E6BF13F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
Manifest number: 14F6
Signing time: Thu 17 Apr 2025 14:00:27 +0000
Manifest this update: Thu 17 Apr 2025 14:00:27 +0000
Manifest next update: Fri 18 Apr 2025 14:00:27 +0000
Files and hashes: 1: AFXKRWkq4CEJ7e_q_TT8oCKNDgs.roa (hash: vvcSpEWzby7j1iGxx2OT88XWdiMYKYH4weh98eM4dfY=)
2: TnzINx7SS6z2esqLkCzucGr8Yks.crl (hash: EjSnmR543UHxK4WoP/W3+d4jnylkaAzNovZjsn7A8mw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:0d:0b:f7:ef:2c:ce:8f:c9:5e:fa:e1:e6:bf:13:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e7cc8371ed24bacf67aca8b902cee706afc624b
Validity
Not Before: Apr 17 14:00:27 2025 GMT
Not After : Apr 18 14:00:27 2025 GMT
Subject: CN=fe0db3096fdd70ca3b0c4ab62c4378a2a45ab5c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:96:6f:4a:89:3d:4e:bd:cc:af:c6:60:f7:63:
c6:19:ee:f3:36:ca:2f:51:25:e6:6c:0c:9c:ef:55:
b1:d9:96:35:19:ff:9d:55:c7:62:f4:b0:a0:4b:7f:
c4:5e:72:1e:77:ba:a8:5f:63:44:59:a7:51:88:0c:
bf:06:ac:4e:e0:4b:ee:5f:9e:fd:48:c4:7e:21:a5:
aa:0b:d3:af:c5:b8:e6:18:32:fd:57:05:1b:28:de:
56:bd:e3:9f:e5:cf:37:99:c9:87:b7:c2:05:ab:ce:
ee:8b:d4:72:c4:af:4e:ee:33:7b:25:cf:a0:83:46:
25:9b:64:46:2f:cf:bb:f2:4b:8c:07:e2:5f:5f:22:
7d:2d:f3:7a:fb:91:82:42:60:58:b5:c2:1f:f0:c7:
13:5e:00:f5:a9:a8:12:c6:4d:70:36:09:db:c9:64:
ee:8b:21:3d:8d:e9:a3:bb:d1:8f:dc:51:34:fa:14:
ce:5a:e6:b3:4a:0b:5d:04:d7:26:03:d1:5e:ed:ca:
01:75:e8:ee:b9:cc:ce:7a:38:57:0a:3d:c9:0c:df:
11:9d:d5:80:f3:85:f7:30:75:f1:27:14:74:51:99:
eb:3e:cd:39:79:0b:26:79:ef:d6:a6:23:c3:d4:4b:
0a:3e:80:ab:e5:d9:3a:b7:55:86:79:e6:7d:86:7b:
23:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:0D:B3:09:6F:DD:70:CA:3B:0C:4A:B6:2C:43:78:A2:A4:5A:B5:C9
X509v3 Authority Key Identifier:
keyid:4E:7C:C8:37:1E:D2:4B:AC:F6:7A:CA:8B:90:2C:EE:70:6A:FC:62:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:f1:5d:8e:d1:85:73:d1:a6:c2:b8:94:4b:78:70:38:c4:f2:
48:cf:2c:df:f8:68:f3:79:b4:f5:a6:ca:30:76:5f:72:02:a3:
c8:76:1b:da:09:1a:4c:2a:34:6f:72:95:87:6b:5b:8c:7d:65:
50:0f:ed:5c:56:9f:7a:de:e1:58:f1:e5:98:be:e4:e8:b2:b1:
98:b7:53:03:2c:ea:0f:55:11:ae:33:10:65:de:29:9a:54:59:
55:72:52:6c:ae:30:a0:0f:2c:2c:77:c9:49:e4:31:1b:98:29:
80:79:b4:be:c0:a6:af:d6:15:a5:5f:0b:48:45:4b:2f:aa:92:
8f:d0:8d:0e:fb:91:37:9a:d4:33:33:e2:00:1f:2c:7e:86:28:
28:b0:c7:f2:58:2e:e4:2f:db:bb:62:6b:2a:10:69:06:06:db:
8a:48:c4:62:aa:d5:b6:c1:a9:e6:61:79:af:29:74:f5:de:1d:
07:a3:55:13:ed:f3:ea:74:c8:ee:9a:08:66:61:c2:74:bc:ca:
f0:ca:d9:c4:f0:c3:87:90:72:a8:f7:36:ff:c5:00:5e:68:d9:
7f:2d:9a:38:84:7a:b3:7c:6a:53:63:41:2b:19:ee:17:83:e3:
dd:4a:70:17:28:ac:9f:dc:37:01:ed:00:c6:7e:a9:2f:e7:5d:
bf:e7:5c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:37:15 2025 by rpki-client