Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
File: TDfyfrSZezvvnygmajlpQFD-dPk.mft (raw, json)
Hash identifier: Lb4AOCrksQVygHTgEFo1CGb9esWmmYbTVVgFyWODqXA=
Subject key identifier: F8:87:29:57:98:A2:AC:AB:B9:10:20:20:D6:74:18:83:33:3D:04:9F
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 01960A1E7CE9E02D0FF9632AF8B8EBD41ACD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
Manifest number: 1537
Signing time: Sun 06 Apr 2025 08:01:32 +0000
Manifest this update: Sun 06 Apr 2025 08:01:32 +0000
Manifest next update: Mon 07 Apr 2025 08:01:32 +0000
Files and hashes: 1: O9nHfOl2QVEFkw8z5PZAG-bDmQE.roa (hash: CmUudjBRBoLhGNB6o4EaSfh+UkgJVlz+52jeWbtrV5A=)
2: SzyIBUJURbOXMTDJ4Z_haTgvNpI.roa (hash: wJIDwOiFxDwrE3GURrkhai8iWOYh1f3lI6qeGAaNPyc=)
3: TDfyfrSZezvvnygmajlpQFD-dPk.crl (hash: 1hKtMnz+QLXpZ7heBgeFRP9k2XGrjt63ue9Aa5bKTis=)
4: UVW-IEFCCq7ahpPdj9WY7Kn8QqE.roa (hash: MZl++GgZA3uWjf7S8QTsOZZtzVITuzAAAAPegKRXupI=)
5: VIrZrIPn5JgwIWuerakwG37U7jA.roa (hash: +9EBlzR1H7BphSJTPeOlUDa4YDh16MokR5NsBCSFTMs=)
6: dQ4y2x688XsG8rEL7o8Sp4uIl8M.roa (hash: LuvxH8ju8nmShoj6OHN3o8s0V6hBxEddqrv3+BFDAgQ=)
7: gQDaBeXH0szJXrJTEvqe4lIGCV4.roa (hash: fhlImZ1nrh4i7H6LIP2R5ZbAmjbxd5MHcou/l4C25qU=)
8: lPoIPYo1ITlq-R71JXKfxiC_US0.roa (hash: 1ODRbC1wRix1ieOTK6Ku3fYNq0UfGPEvF5Esjd3aqDM=)
9: luug-CwXmvS54qQ88cgMGt-f5zU.roa (hash: HAfj14rHhfvfAv/i1MqUIJYZwmFczeoc01ZA/poLVk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 08:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0a:1e:7c:e9:e0:2d:0f:f9:63:2a:f8:b8:eb:d4:1a:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Apr 6 08:01:32 2025 GMT
Not After : Apr 7 08:01:32 2025 GMT
Subject: CN=f887295798a2acabb9102020d6741883333d049f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a3:ce:a9:08:dd:5f:bd:99:11:ac:50:02:10:
10:71:76:1b:4e:a2:fc:94:24:c9:c6:b5:a4:f4:2c:
ce:c6:f3:53:30:6e:9f:64:8e:e8:bc:8a:49:21:fe:
04:52:fd:a4:8e:aa:07:2d:a8:a5:14:ac:b8:06:12:
0a:02:02:c3:99:cb:fc:bd:4a:24:47:24:35:69:15:
4d:d6:6a:32:0c:b4:6c:95:51:a4:9e:17:83:2d:ba:
28:fb:c2:29:51:01:f4:9f:25:36:c7:89:71:d7:8c:
3a:6b:ba:fa:7d:b9:7c:b0:0b:ae:88:b3:48:86:a7:
aa:dc:02:27:95:3a:63:f5:1f:7c:b3:a4:33:51:ef:
94:fe:1d:11:a9:06:de:b2:ce:8c:76:33:11:83:f9:
be:01:d1:42:a0:27:02:d4:22:5b:12:6c:ba:80:53:
7e:47:cf:1c:35:38:25:e6:d5:47:c0:0e:b1:93:39:
78:cb:8a:0f:a5:3a:d5:45:54:8e:6e:02:8a:ff:8c:
0f:fc:24:43:83:b1:31:36:7c:39:9a:5b:72:57:33:
03:5a:91:51:53:df:97:c5:d0:76:44:48:c5:6b:15:
db:a2:3c:ee:eb:e0:34:d7:b3:6a:4a:74:4d:b0:0d:
34:bc:75:ed:f8:72:2e:48:89:66:e4:f7:f9:f6:80:
5e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:87:29:57:98:A2:AC:AB:B9:10:20:20:D6:74:18:83:33:3D:04:9F
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:cf:ad:a2:5f:55:80:2d:ed:d1:fa:65:d4:f7:33:02:51:3b:
71:b9:0f:9c:3f:cc:76:89:c1:9e:37:e6:22:50:eb:cd:1f:ac:
d0:67:af:6e:da:3d:4d:1a:ea:ee:62:86:b9:5b:ec:41:77:34:
68:00:92:b0:17:a7:70:4e:03:85:ad:e6:c2:54:b0:df:f3:73:
dc:55:65:2a:10:8c:49:b9:9d:84:b6:7e:ba:79:60:71:14:c4:
e2:65:ff:21:1f:3e:4c:a5:bf:9e:10:57:a6:3f:ac:9d:8d:4d:
2a:08:1c:a2:55:40:f8:ec:fb:17:e8:6c:e0:52:71:14:eb:83:
ce:82:a0:ef:e3:ea:68:ef:f3:93:04:ca:60:7c:d7:8a:dc:be:
a9:36:ca:c8:f1:cc:dd:ef:fb:a5:20:51:48:72:80:b6:0a:bc:
24:7c:9f:b1:8f:b7:1d:eb:c6:cd:e4:ec:5f:ba:07:25:36:dc:
87:ee:b5:3a:30:29:2c:b2:4f:f2:c1:7c:39:e0:98:5e:d6:a1:
c5:fc:f6:32:43:b3:38:4b:38:e1:23:35:20:07:9c:ca:03:f9:
03:35:11:b2:2b:1c:ae:37:e0:a0:32:c7:81:03:1c:4b:fb:1f:
d6:99:d2:5a:c4:de:7e:9e:a8:52:d0:31:0a:a1:24:49:c9:ab:
b2:cb:97:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:46:45 2025 by rpki-client