Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json)
Hash identifier: 1dMZSvW/YcL/HtQ/Dv7OALYt4+z30xPq443X0/vSoKI=
Subject key identifier: 16:D3:DC:F4:6A:ED:45:1E:9A:79:1E:BD:51:5E:E3:BF:8E:B3:00:47
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 0196108E2595E0DCC255275F6354E2C89400
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
Manifest number: 0BBC
Signing time: Mon 07 Apr 2025 14:01:13 +0000
Manifest this update: Mon 07 Apr 2025 14:01:13 +0000
Manifest next update: Tue 08 Apr 2025 14:01:13 +0000
Files and hashes: 1: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: Wq3XuYqHWFCLo3f4MUe0FCOpsO3LFSd/Os4XXTFma9o=)
2: ehQIMYmYwJQIMwezxzrnCxQWXrQ.roa (hash: K5j8O7wSUuuth3uj2946HM7L4q3WosF43ObE+K/eL8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:8e:25:95:e0:dc:c2:55:27:5f:63:54:e2:c8:94:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: Apr 7 14:01:13 2025 GMT
Not After : Apr 8 14:01:13 2025 GMT
Subject: CN=16d3dcf46aed451e9a791ebd515ee3bf8eb30047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:89:d0:a5:a6:1b:56:fd:29:e6:54:33:fd:95:
d9:53:3a:91:e5:96:9c:6f:d4:96:93:35:be:5f:3a:
08:57:b0:bc:dd:01:e0:b4:df:95:75:0d:2f:5e:84:
2c:2c:1c:fe:b7:70:08:e8:ce:74:e4:74:d0:44:18:
53:b8:bb:4b:4b:3a:d0:cd:a8:8e:4f:44:1e:5b:d1:
c3:21:27:b6:60:ff:8d:7b:96:66:89:45:01:76:10:
e3:44:fe:c1:52:af:db:da:29:35:49:1c:7e:ac:4f:
da:f7:63:0a:fa:33:c0:14:4d:fb:4f:ba:a7:e1:b0:
14:c6:b2:a1:e4:64:54:84:39:6e:e8:b7:f5:ea:ad:
12:4b:93:9f:e5:7e:63:32:4d:57:89:0a:1d:d4:56:
d3:e2:43:2b:cb:92:da:46:ad:8d:92:34:df:7d:d3:
0a:d1:d6:87:90:27:e3:7b:34:a3:43:c4:ab:33:d3:
ac:c1:0f:94:e1:de:91:7f:e3:94:1c:ce:52:31:45:
db:a6:27:fe:86:b4:ed:ef:32:ca:ca:72:95:16:7d:
83:03:4b:58:cc:ed:e3:f1:9f:77:c9:99:2c:c8:eb:
05:a0:c4:de:9f:76:8d:76:9a:4e:1e:d9:ac:5a:6c:
ab:e1:a5:55:80:cb:c3:86:50:d8:e9:a2:64:5d:78:
2b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D3:DC:F4:6A:ED:45:1E:9A:79:1E:BD:51:5E:E3:BF:8E:B3:00:47
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:34:53:76:90:b2:07:6a:b9:5b:61:87:45:49:43:84:b6:17:
89:da:04:1d:92:c1:b3:00:77:1d:26:70:1c:12:25:66:98:25:
23:3c:ca:9c:06:9c:1d:67:34:72:d7:58:d6:9b:23:8b:8d:f0:
6d:a5:70:6b:b8:80:12:7d:a8:59:68:6b:b0:4d:2a:a9:16:53:
84:dd:24:e4:23:2a:62:64:e4:7b:db:04:95:a0:56:8e:8c:26:
d4:a3:25:06:c6:fd:a2:69:de:fb:27:94:b2:60:3c:33:12:79:
6a:30:15:6f:73:57:68:3c:95:84:e6:d2:69:0c:5e:97:8f:d5:
d6:0a:1c:64:36:1b:34:c6:5e:fb:a6:1a:63:e3:72:41:58:a5:
2e:3a:1e:04:1d:d1:ba:30:34:89:1a:e5:ac:e9:ee:84:aa:80:
d2:61:cb:72:03:40:af:01:0f:30:f7:77:ee:36:ae:54:2a:2d:
0d:ab:61:a8:da:ef:03:84:74:48:3e:07:f4:3b:bd:f1:7e:1e:
00:40:4e:0c:d1:a5:9c:e0:36:2c:04:96:79:d5:60:af:73:92:
1f:c3:87:60:00:66:2c:7b:8f:6e:d6:66:8a:ea:1f:6c:d8:b9:
f1:69:64:20:7a:dd:c9:02:fc:6a:b4:d9:45:a1:e9:e1:db:4d:
e2:b4:e3:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:58:22 2025 by rpki-client