Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
File: tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft (raw, json)
Hash identifier: cNfVyiaIT9+0ZfX8uKuL1KsaNzKKfp1sssB1IV+mbls=
Subject key identifier: DF:38:4E:18:00:9B:B3:D4:BE:EE:44:13:4E:F7:D6:E9:45:42:0B:10
Authority key identifier: B4:63:20:18:80:98:52:0C:36:62:77:F7:49:A4:F7:7A:1D:44:44:39
Certificate issuer: /CN=b46320188098520c366277f749a4f77a1d444439
Certificate serial: 019641B09EC6D66AD7408E327F94B9E987D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tGMgGICYUgw2Ynf3SaT3eh1ERDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
Manifest number: 14F2
Signing time: Thu 17 Apr 2025 03:00:16 +0000
Manifest this update: Thu 17 Apr 2025 03:00:16 +0000
Manifest next update: Fri 18 Apr 2025 03:00:16 +0000
Files and hashes: 1: 1c-Abo0LxBVDDE4sBrG9JS_ePzI.roa (hash: rxDs0I1CVbIWmreeYb6ePZfwtg9Spev7LU71wCrsp/4=)
2: tGMgGICYUgw2Ynf3SaT3eh1ERDk.crl (hash: 4owf3U7wzY6cIlx9iAmUAS54DVNUxVJNrk0643L7AwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tGMgGICYUgw2Ynf3SaT3eh1ERDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:b0:9e:c6:d6:6a:d7:40:8e:32:7f:94:b9:e9:87:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b46320188098520c366277f749a4f77a1d444439
Validity
Not Before: Apr 17 03:00:16 2025 GMT
Not After : Apr 18 03:00:16 2025 GMT
Subject: CN=df384e18009bb3d4beee44134ef7d6e945420b10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:cd:4f:2f:8e:11:f2:b2:46:a6:13:2e:5f:bc:
1f:ff:30:ca:54:59:5c:eb:75:3f:95:5d:e6:c6:7a:
be:41:93:e9:15:90:aa:a0:78:5c:28:73:5f:b8:09:
13:17:29:a6:b5:b0:03:c4:fb:7a:2a:76:2b:91:7c:
8d:60:7c:85:1e:ab:8a:70:be:1e:2c:c7:df:32:d3:
30:5e:b1:0a:2a:1f:d8:a1:59:6c:e9:1a:c3:55:62:
8f:16:89:26:34:64:9d:d4:4a:16:6c:52:03:80:b6:
b7:1b:36:46:ab:ce:7f:72:82:ee:1d:5b:43:d9:88:
3f:f6:e5:a8:7b:7e:13:14:8d:12:d6:eb:62:d1:e6:
c4:2d:0f:86:e0:0e:e5:97:a6:7c:bb:e5:48:c1:97:
7a:41:d8:a8:f0:4d:64:d5:58:6e:17:29:e1:b3:47:
b8:82:eb:1a:11:27:92:d6:61:27:a7:f3:39:c8:e2:
c7:a1:c4:55:1b:72:ab:08:fe:56:c6:09:c4:06:8c:
7e:c0:36:5d:63:ec:3d:81:e0:ed:ad:65:86:7a:18:
57:05:d8:2b:17:b4:9a:7c:9d:93:1e:ef:1a:5f:ec:
ce:dd:54:96:79:45:3a:90:24:f1:3c:0f:64:e3:de:
ba:67:21:d8:99:83:90:af:c8:e5:4f:2d:d4:87:0e:
b8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:38:4E:18:00:9B:B3:D4:BE:EE:44:13:4E:F7:D6:E9:45:42:0B:10
X509v3 Authority Key Identifier:
keyid:B4:63:20:18:80:98:52:0C:36:62:77:F7:49:A4:F7:7A:1D:44:44:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tGMgGICYUgw2Ynf3SaT3eh1ERDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:ab:22:68:00:00:f9:ca:d5:bc:c9:23:87:97:ed:71:23:01:
5a:d2:70:67:e1:6c:9c:26:89:e5:55:8a:37:60:42:b9:ee:2d:
32:48:52:d7:3d:24:7d:da:20:07:25:1b:6e:d6:83:6a:24:2b:
58:df:7d:6a:7d:86:35:c1:47:eb:2b:5e:8b:cf:23:c3:f2:c9:
61:3e:0b:18:4c:6e:49:ef:b4:56:06:9e:ad:7d:83:50:9f:2a:
01:1f:2c:bc:6b:e3:33:24:71:fb:6b:a3:4d:e8:a5:ca:e4:d6:
ee:3c:56:4c:af:09:53:21:c4:ef:62:49:59:f2:bf:6d:2e:55:
55:6a:0e:99:c1:8e:1a:84:95:88:9e:d7:c0:52:16:cd:1f:30:
7c:12:de:7e:a4:9e:15:87:7f:c8:3f:c0:97:ff:62:28:86:59:
bf:fb:e6:0e:68:b9:7d:e9:7a:58:42:51:0d:81:90:ee:c1:75:
d2:03:0a:b3:14:f2:60:b8:14:15:3b:1b:1f:85:14:02:58:bc:
bb:ae:80:c4:27:42:42:70:61:7c:28:ec:70:2e:af:63:d5:3c:
6d:f1:cc:5b:ff:e6:d1:60:6d:55:39:73:e3:3f:e4:d7:c6:ef:
3a:cf:2e:ab:d3:74:b6:ef:82:df:62:d1:01:f0:fc:a3:93:cd:
38:c4:8d:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:04:12 2025 by rpki-client