Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft
File: TgfHPboamfW7wV94xjkKqZwmmCQ.mft (raw, json)
Hash identifier: 8gkvBbwdHctM6hZc3HQFvdLqpNCqtot1AwHAS8pI8Ig=
Subject key identifier: 97:7B:F0:9E:43:2B:8E:6C:24:15:59:12:C6:91:D5:83:12:54:5A:D8
Authority key identifier: 4E:07:C7:3D:BA:1A:99:F5:BB:C1:5F:78:C6:39:0A:A9:9C:26:98:24
Certificate issuer: /CN=4e07c73dba1a99f5bbc15f78c6390aa99c269824
Certificate serial: 01965EDFCBBD5DD2B5D3EAA1D3F74E5A7F2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TgfHPboamfW7wV94xjkKqZwmmCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft
Manifest number: 12CA
Signing time: Tue 22 Apr 2025 19:00:46 +0000
Manifest this update: Tue 22 Apr 2025 19:00:46 +0000
Manifest next update: Wed 23 Apr 2025 19:00:46 +0000
Files and hashes: 1: TgfHPboamfW7wV94xjkKqZwmmCQ.crl (hash: Q4k8WOZB5bKWNXjnRI5IMSLcY2rqKsWTYMbfyRI9W+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/TgfHPboamfW7wV94xjkKqZwmmCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 19:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:df:cb:bd:5d:d2:b5:d3:ea:a1:d3:f7:4e:5a:7f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e07c73dba1a99f5bbc15f78c6390aa99c269824
Validity
Not Before: Apr 22 19:00:46 2025 GMT
Not After : Apr 23 19:00:46 2025 GMT
Subject: CN=977bf09e432b8e6c24155912c691d58312545ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:4b:8b:d9:6c:57:b3:f0:6d:24:2a:bd:50:e0:
9c:1d:53:08:fb:10:44:c9:33:cd:3a:fd:5a:0b:d3:
87:d4:12:89:16:ce:21:25:d1:97:c5:64:63:da:ed:
86:ea:74:1b:ab:8b:50:a7:18:b8:08:0d:6d:8d:6d:
d4:74:d4:11:69:a8:2a:66:93:47:82:1c:f0:d1:dc:
71:a4:f3:79:8e:9f:d0:1c:3f:8d:51:6a:22:6f:69:
47:24:12:e7:47:ea:de:93:b3:30:8b:d7:e8:5e:7a:
ef:1c:ee:a9:ce:e2:4a:30:f9:9e:32:bf:7a:2c:1d:
ce:28:45:bf:12:c1:ee:50:8a:c0:dc:7e:11:ad:8f:
0b:7a:89:7b:72:54:2a:f4:8d:27:4d:2d:9f:eb:90:
d6:1b:8d:47:42:1b:e8:ce:b0:93:de:bb:38:24:4e:
7d:75:29:d7:76:b1:48:ae:1a:33:24:e3:01:fb:c2:
2e:32:84:92:04:56:85:6a:03:66:ce:6e:4d:d3:7e:
5b:58:51:ab:0c:36:7d:c3:b1:dd:f2:f8:ca:63:8b:
fc:67:28:d5:e7:ad:71:c3:bf:6f:33:17:f1:95:90:
27:4d:87:49:ed:78:ce:47:c9:29:e8:a9:04:a5:0c:
d8:f2:ba:91:6e:50:be:96:c6:f9:07:ab:a7:87:b4:
34:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:7B:F0:9E:43:2B:8E:6C:24:15:59:12:C6:91:D5:83:12:54:5A:D8
X509v3 Authority Key Identifier:
keyid:4E:07:C7:3D:BA:1A:99:F5:BB:C1:5F:78:C6:39:0A:A9:9C:26:98:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TgfHPboamfW7wV94xjkKqZwmmCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:01:ba:25:7f:8b:8f:06:39:b0:fa:8f:c8:1f:f5:83:eb:1f:
ca:8e:68:95:72:e2:06:6d:a6:2e:81:c7:1c:18:3a:b4:8e:5e:
60:a4:8a:09:62:05:28:14:8a:76:23:17:0f:f5:ea:ad:e4:b5:
4b:1f:fb:a6:a1:cf:8f:fd:2a:db:ee:22:10:45:0d:7e:5e:5d:
cc:8a:19:95:b3:60:97:de:c1:27:42:5c:35:2c:65:f8:4f:d4:
6d:dd:7b:1d:b0:23:e8:f5:7f:87:aa:16:b3:53:f5:24:65:be:
bf:55:93:5f:a6:3b:8d:4c:c8:4e:f9:b7:05:50:0e:8f:37:0a:
00:95:f8:1c:db:03:36:74:23:02:64:e4:a0:45:d1:41:48:90:
a4:1a:98:e5:19:80:ab:b0:53:9b:52:d2:41:89:0a:f6:92:b9:
c7:75:57:2e:48:88:db:f8:4a:be:9b:6f:5c:ff:76:5d:1c:3c:
28:c8:4f:79:9d:9d:0a:ec:d7:ec:fe:71:3b:9e:44:21:90:49:
c4:d3:f2:86:ee:fe:b9:85:db:02:1f:92:ff:c0:69:ea:75:51:
4d:e4:bf:04:ad:ba:12:5b:26:4d:cf:0a:76:29:14:78:4c:2f:
95:04:82:a4:7c:79:33:a6:8f:27:a0:0c:3d:07:f7:62:09:59:
dc:60:85:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZe38u9XdK10+qh0/dOWn8sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlMDdjNzNkYmExYTk5ZjViYmMxNWY3OGM2MzkwYWE5OWMy
Njk4MjQwHhcNMjUwNDIyMTkwMDQ2WhcNMjUwNDIzMTkwMDQ2WjAzMTEwLwYDVQQD
Eyg5NzdiZjA5ZTQzMmI4ZTZjMjQxNTU5MTJjNjkxZDU4MzEyNTQ1YWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6kuL2WxXs/BtJCq9UOCcHVMI+xBE
yTPNOv1aC9OH1BKJFs4hJdGXxWRj2u2G6nQbq4tQpxi4CA1tjW3UdNQRaagqZpNH
ghzw0dxxpPN5jp/QHD+NUWoib2lHJBLnR+rek7Mwi9foXnrvHO6pzuJKMPmeMr96
LB3OKEW/EsHuUIrA3H4RrY8Leol7clQq9I0nTS2f65DWG41HQhvozrCT3rs4JE59
dSnXdrFIrhozJOMB+8IuMoSSBFaFagNmzm5N035bWFGrDDZ9w7Hd8vjKY4v8ZyjV
561xw79vMxfxlZAnTYdJ7XjOR8kp6KkEpQzY8rqRblC+lsb5B6unh7Q02wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJd78J5DK45sJBVZEsaR1YMSVFrYMB8GA1UdIwQY
MBaAFE4Hxz26Gpn1u8FfeMY5CqmcJpgkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGdmSFBib2FtZlc3d1Y5NHhqa0txWndtbUNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8xZjFlN2ItNTkwNy00OGMxLTkwZmQt
NTYwMjcxMmJhYTViLzEvVGdmSFBib2FtZlc3d1Y5NHhqa0txWndtbUNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS8xZjFlN2ItNTkwNy00OGMxLTkwZmQtNTYwMjcxMmJhYTVi
LzEvVGdmSFBib2FtZlc3d1Y5NHhqa0txWndtbUNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGQG6JX+L
jwY5sPqPyB/1g+sfyo5olXLiBm2mLoHHHBg6tI5eYKSKCWIFKBSKdiMXD/XqreS1
Sx/7pqHPj/0q2+4iEEUNfl5dzIoZlbNgl97BJ0JcNSxl+E/Ubd17HbAj6PV/h6oW
s1P1JGW+v1WTX6Y7jUzITvm3BVAOjzcKAJX4HNsDNnQjAmTkoEXRQUiQpBqY5RmA
q7BTm1LSQYkK9pK5x3VXLkiI2/hKvptvXP92XRw8KMhPeZ2dCuzX7P5xO55EIZBJ
xNPyhu7+uYXbAh+S/8Bp6nVRTeS/BK26ElsmTc8KdikUeEwvlQSCpHx5M6aPJ6AM
PQf3YglZ3GCFaQ==
-----END CERTIFICATE-----
Generated at Wed Apr 23 02:40:34 2025 by rpki-client