Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
File: TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft (raw, json)
Hash identifier: Q0H3j578CoAFs1mZqK+75WxSs2nCyBVoDvXFrt1B5iw=
Subject key identifier: 1A:FA:F5:C8:7D:C7:AD:3E:C0:84:83:50:2E:C5:8D:CB:C7:50:5B:1A
Authority key identifier: 4C:21:6F:66:56:0A:E1:6B:A7:59:4F:46:AF:06:0F:35:1E:0E:B4:9E
Certificate issuer: /CN=4c216f66560ae16ba7594f46af060f351e0eb49e
Certificate serial: 019511D94650DF9886CFBB4E0968E5017119
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
Manifest number: 0A81
Signing time: Mon 17 Feb 2025 03:00:06 +0000
Manifest this update: Mon 17 Feb 2025 03:00:06 +0000
Manifest next update: Tue 18 Feb 2025 03:00:06 +0000
Files and hashes: 1: MhvE3qmmLRT0N7DSbTLw9Csy23Q.roa (hash: JVGSBwpVFJHRhnHW5L6AwZ0tkeTLczM6lU9i030j0HQ=)
2: TCFvZlYK4WunWU9GrwYPNR4OtJ4.crl (hash: rYHWTcDkvIgct6QkJZ90crLBpmFVM/V941XZnT4L2z0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:46:50:df:98:86:cf:bb:4e:09:68:e5:01:71:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c216f66560ae16ba7594f46af060f351e0eb49e
Validity
Not Before: Feb 17 03:00:06 2025 GMT
Not After : Feb 18 03:00:06 2025 GMT
Subject: CN=1afaf5c87dc7ad3ec08483502ec58dcbc7505b1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:cd:72:ae:e9:66:ec:27:42:85:19:36:cd:35:
e3:ac:07:10:4b:54:f0:48:21:e9:df:01:f0:26:4b:
26:32:39:15:d8:21:c2:e2:bb:6d:2e:a8:05:01:aa:
08:b9:c8:13:d7:e3:ca:ab:61:47:a8:b0:65:13:16:
91:db:46:50:b7:d4:63:1c:11:e5:48:de:9f:8d:8f:
dc:37:c9:3b:17:39:96:b4:7e:c6:0c:cb:7f:cb:40:
80:aa:9b:39:4c:cd:1d:dc:4d:91:49:38:ba:6f:ff:
fb:c3:fb:f3:0b:23:c8:8b:f1:f2:93:0d:11:e2:b2:
f3:da:e0:01:c6:4f:2d:0a:00:a0:49:05:29:fa:e8:
6e:58:68:7a:b4:20:8d:fb:58:33:fa:d0:15:f0:f1:
0f:bd:c5:8e:84:f4:47:28:1d:74:80:c6:a8:69:72:
10:8d:e2:fe:b3:b0:b4:38:0c:f6:1a:18:d7:97:3c:
6a:31:67:df:88:cc:eb:2f:78:54:11:3e:c5:be:a0:
f2:65:21:2e:25:ad:43:16:31:30:e1:be:b5:42:1b:
e9:2d:c2:53:c5:20:b5:87:e8:86:62:a5:04:a5:f1:
6a:51:f3:c9:71:44:63:be:33:77:4f:e4:ad:8e:a9:
a6:94:c7:e9:03:fb:bf:93:f7:26:d2:d0:f8:c5:17:
99:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:FA:F5:C8:7D:C7:AD:3E:C0:84:83:50:2E:C5:8D:CB:C7:50:5B:1A
X509v3 Authority Key Identifier:
keyid:4C:21:6F:66:56:0A:E1:6B:A7:59:4F:46:AF:06:0F:35:1E:0E:B4:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TCFvZlYK4WunWU9GrwYPNR4OtJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/65646f-bea4-4f93-96be-48fea345fa13/1/TCFvZlYK4WunWU9GrwYPNR4OtJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:b8:4e:21:2e:b1:ba:eb:53:56:9d:3c:f3:b5:62:04:e8:fa:
b1:2b:b1:d7:3d:12:eb:d2:0f:ff:f6:05:46:b8:e0:bf:3e:59:
5f:53:da:9a:9f:aa:c7:8b:0a:92:c6:ef:d0:7f:91:b0:22:60:
84:81:b6:ef:c9:e9:7e:87:a9:0c:f9:c3:c3:bb:0e:88:d9:dd:
5e:f6:15:d8:11:16:8b:f6:28:e6:2d:d3:26:d8:bd:c0:03:f1:
26:4d:29:65:0a:48:0e:06:ef:75:22:66:5a:5a:30:07:0e:ea:
12:4e:ff:d1:a2:3f:d4:5d:f4:5b:83:a3:5f:89:e5:ea:ab:5b:
b9:f0:ba:15:cd:f2:c7:a6:b9:bf:3c:45:29:4e:3e:f5:1d:33:
b7:7c:60:a1:ef:b6:79:d2:d1:7c:21:1e:98:5f:2a:d8:35:8b:
81:c9:b3:ef:91:a1:5a:8d:5e:98:f5:8f:f3:f4:19:2e:f6:f8:
ce:04:b4:8a:6a:ba:b1:46:d9:fc:1c:af:11:b1:4f:cf:49:8a:
b6:4c:5e:28:df:4f:57:f1:46:71:3c:29:97:d2:b5:15:5f:3a:
a6:43:f8:45:2f:54:32:6e:9a:74:c7:f1:ea:36:e9:1f:e7:8e:
fb:2c:f7:3b:2d:94:2f:e7:4d:58:0d:7f:25:a8:e0:36:b6:fc:
f3:6b:c8:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:02 2025 by rpki-client