Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft
File: TgfHPboamfW7wV94xjkKqZwmmCQ.mft (raw, json)
Hash identifier: TBDqZNXUpAptdkrN9hVP0+Y+KRODyKjvdL16c/H0nRw=
Subject key identifier: DD:19:0E:74:27:FD:4F:03:D2:DA:CF:3C:BA:22:BD:01:00:EA:91:83
Authority key identifier: 4E:07:C7:3D:BA:1A:99:F5:BB:C1:5F:78:C6:39:0A:A9:9C:26:98:24
Certificate issuer: /CN=4e07c73dba1a99f5bbc15f78c6390aa99c269824
Certificate serial: 01975422A264DD92A7FAA1B51A4C3D222559
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TgfHPboamfW7wV94xjkKqZwmmCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft
Manifest number: 1349
Signing time: Mon 09 Jun 2025 10:00:45 +0000
Manifest this update: Mon 09 Jun 2025 10:00:45 +0000
Manifest next update: Tue 10 Jun 2025 10:00:45 +0000
Files and hashes: 1: TgfHPboamfW7wV94xjkKqZwmmCQ.crl (hash: ExW/ewKHDJJWN5mUKkIZ+UtCi3oiPHsldrgOBYHnziU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/TgfHPboamfW7wV94xjkKqZwmmCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 10:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:22:a2:64:dd:92:a7:fa:a1:b5:1a:4c:3d:22:25:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e07c73dba1a99f5bbc15f78c6390aa99c269824
Validity
Not Before: Jun 9 10:00:45 2025 GMT
Not After : Jun 10 10:00:45 2025 GMT
Subject: CN=dd190e7427fd4f03d2dacf3cba22bd0100ea9183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bd:f3:27:b8:f9:28:02:22:48:f8:95:f2:33:
24:1e:78:84:6c:26:96:18:fb:e6:d6:07:bb:27:c3:
ef:08:40:d3:5c:d6:27:52:6b:82:13:ef:4f:17:ef:
be:d9:55:b5:35:2f:3f:d2:56:25:21:af:33:33:1a:
28:ef:2a:0e:d6:67:4c:8e:2f:5d:a6:da:02:6d:39:
f5:58:30:7d:72:e7:60:5e:e0:38:18:10:aa:ac:90:
03:9a:59:d0:f2:f0:32:ac:12:84:f8:82:fc:9b:1a:
da:a7:3a:b9:0e:a0:41:eb:71:5f:a7:5b:f4:87:5f:
e1:29:ed:82:46:03:35:d7:9c:97:f6:57:2d:e4:0d:
d0:58:cd:9e:2a:76:b6:46:36:88:fc:18:03:59:d2:
61:25:56:8b:de:42:90:1e:18:2f:26:c0:16:55:bc:
b3:e1:da:71:e3:3e:36:e8:6f:d6:f4:ef:9a:fc:a3:
fc:3d:68:f5:3d:7f:6c:81:a7:e0:46:24:58:12:fc:
86:88:fb:2f:58:40:5f:58:07:7e:71:d2:13:bb:9a:
26:0e:e8:02:9b:a1:33:ff:93:6a:42:04:b0:8d:5f:
2d:f1:12:52:42:f2:bc:df:52:57:a5:b4:eb:b3:21:
41:53:8d:e1:b7:e0:8e:6f:76:f2:84:11:41:90:67:
36:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:19:0E:74:27:FD:4F:03:D2:DA:CF:3C:BA:22:BD:01:00:EA:91:83
X509v3 Authority Key Identifier:
keyid:4E:07:C7:3D:BA:1A:99:F5:BB:C1:5F:78:C6:39:0A:A9:9C:26:98:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TgfHPboamfW7wV94xjkKqZwmmCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:61:47:14:fc:aa:64:b9:05:a7:f0:8c:62:d6:b3:28:74:7c:
e6:b9:28:61:0e:a9:ca:bd:30:3a:27:c8:cf:d3:a5:36:ca:25:
b8:3c:6a:13:80:4f:77:ee:52:95:36:ee:f6:78:98:a5:e0:5c:
e9:6e:98:6b:6e:02:76:9f:e0:c5:51:74:ee:24:ef:35:2c:66:
bd:c9:76:33:8a:0a:f4:d6:0a:dd:c4:26:a2:3f:33:a7:27:7b:
57:da:bb:9b:32:e8:64:3d:89:29:0b:3c:5c:de:d0:41:b9:97:
a3:ac:e2:ff:c3:46:93:3d:1c:06:08:23:1b:c8:88:ac:8f:dd:
14:85:48:c2:22:49:4d:04:01:e5:20:9f:4a:47:92:51:15:f5:
45:49:bb:83:da:97:4b:ed:c7:7f:70:ef:08:1f:d4:6c:23:bb:
e5:de:af:04:b7:7e:ea:02:be:bf:e0:7d:d5:93:77:81:67:09:
ef:62:0b:1d:ba:dc:42:65:85:b2:58:c7:62:5d:a5:9e:8f:7d:
84:f2:af:53:82:b7:26:6c:20:1e:66:7d:78:17:ea:cd:70:bf:
7d:55:52:b8:ef:77:fe:9e:42:10:88:01:82:f8:5b:ff:7c:e7:
d6:3c:05:cd:f5:87:6d:97:01:c9:de:b1:5c:f0:33:2d:b8:02:
ea:bf:07:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 20:11:30 2025 by rpki-client