Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
File: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft (raw, json)
Hash identifier: igP584NX4A7VYkrlHVB4vzhTfnroZO7MH+5pGLZA/+g=
Subject key identifier: 41:53:10:BB:A0:BD:1E:53:BB:88:6B:B1:32:48:C0:99:9E:01:AC:EE
Authority key identifier: 4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
Certificate issuer: /CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Certificate serial: 019616593E2D154130C927EF52723105C021
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
Manifest number: 0BC3
Signing time: Tue 08 Apr 2025 17:01:09 +0000
Manifest this update: Tue 08 Apr 2025 17:01:09 +0000
Manifest next update: Wed 09 Apr 2025 17:01:09 +0000
Files and hashes: 1: 4f1jI7-qAw-Fm-OtnESqUBoebm0.roa (hash: Yj15262IImuG/zvO4RGd+KynWz9BG4CJpl9H3lrssA0=)
2: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl (hash: L34QJ4onIce4THXKJ5r5xuAAi5Bd/5Jkt9I1atUO/8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 13:43:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:16:59:3e:2d:15:41:30:c9:27:ef:52:72:31:05:c0:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Validity
Not Before: Apr 8 17:01:09 2025 GMT
Not After : Apr 9 17:01:09 2025 GMT
Subject: CN=415310bba0bd1e53bb886bb13248c0999e01acee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b8:3f:7e:a6:ba:ff:2c:91:b4:d2:99:1d:73:
09:19:85:39:a4:e2:4f:7a:c6:6c:5b:f9:6a:6e:91:
e7:19:06:cf:f0:42:a8:11:77:92:50:45:40:d7:ad:
8b:06:01:bc:9f:a1:76:34:33:06:73:32:7b:31:36:
e6:6a:2e:f9:7d:16:78:21:04:a1:0b:25:23:c8:d6:
4d:76:16:2f:9d:8a:93:42:50:d2:da:a5:51:2c:1e:
54:33:75:cd:7f:86:8a:94:78:90:f1:9e:36:57:ed:
f6:75:5d:c0:af:84:df:5c:ff:ff:9c:b6:5e:c3:33:
8e:ad:58:96:20:c2:4d:2c:97:f8:91:37:5f:d2:08:
ff:f0:3f:1b:87:aa:17:a0:1f:ab:9a:6b:17:cc:e4:
36:5c:1c:60:47:4f:1f:a5:2e:38:42:36:2f:09:b9:
0e:3f:34:4e:59:4c:6a:ed:21:81:94:14:d1:b2:3c:
66:be:97:cf:29:8d:da:ae:3b:29:51:cd:40:41:62:
99:ef:7b:df:b8:a0:11:f0:15:da:23:cf:6b:51:67:
1d:16:24:15:22:d0:79:24:5c:b3:de:45:5e:46:34:
60:fa:4a:bb:9b:a9:66:87:9f:cb:e3:04:50:c1:e0:
2a:8a:5f:6b:87:7f:88:15:d8:6e:08:71:79:6c:4c:
24:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:53:10:BB:A0:BD:1E:53:BB:88:6B:B1:32:48:C0:99:9E:01:AC:EE
X509v3 Authority Key Identifier:
keyid:4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:10:90:cc:00:fe:b0:d2:a7:62:1b:b1:52:aa:24:b5:d1:4f:
81:c8:fc:56:62:39:71:01:2e:dc:6a:68:3e:84:a0:d7:e1:48:
98:52:f9:d0:5a:01:64:0f:6f:0c:48:a6:a0:28:e8:27:69:f7:
fe:8f:b9:24:88:5f:35:25:58:2a:13:c7:4a:d3:e9:47:6b:b5:
8e:36:97:22:d8:d1:1d:1d:31:41:5e:d9:8e:b6:95:b4:6b:05:
e1:2f:f5:c8:cc:1a:c5:50:a1:15:3d:7d:4c:de:01:0b:34:14:
0e:80:e5:4e:87:c4:f5:a9:63:18:ed:1b:9f:2e:55:2d:0e:c4:
92:1c:01:e4:eb:21:66:e6:75:eb:2d:ab:07:91:1b:c0:90:0e:
4c:05:c5:fb:f6:85:73:12:c1:d8:9c:92:42:71:24:aa:70:05:
02:0a:b3:3f:1b:43:c0:6b:65:31:e2:74:45:58:b8:d3:b1:04:
2c:34:a8:de:a7:19:44:f6:28:16:20:c6:64:66:de:9c:fb:53:
2d:9e:2e:e2:6e:fa:0c:c4:19:11:f6:58:c4:50:1b:8a:98:8e:
cb:4c:2e:d1:47:43:19:9a:ea:e3:1c:a7:93:14:28:86:4d:ea:
ce:f4:86:41:a8:3c:e0:d0:ed:95:8f:e8:72:a7:7f:85:5a:d4:
c2:17:af:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 21:01:20 2025 by rpki-client