Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
File: tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft (raw, json)
Hash identifier: tCv9lWi1jFxo3TPHBbcSQ/2DTkvVzfAGyaESArsvasc=
Subject key identifier: 51:05:AE:1C:91:A8:75:95:47:24:C7:D1:AB:76:61:BD:D6:6D:F6:5E
Authority key identifier: B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F
Certificate issuer: /CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f
Certificate serial: 01964443F97D2D4CAF2BAF1D2B7710680878
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
Manifest number: 14F9
Signing time: Thu 17 Apr 2025 15:00:27 +0000
Manifest this update: Thu 17 Apr 2025 15:00:27 +0000
Manifest next update: Fri 18 Apr 2025 15:00:27 +0000
Files and hashes: 1: A19KF2VhmqgRITxahuDcRts8KJs.roa (hash: YirbVHhxW1CKNUwQAz3dz5QapLv5A3zZT5MHBNEVZ34=)
2: tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl (hash: ixMVowxTTzuw6DoVLvlkSQd5bn0aJ98dHKnMOH1+5T8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:43:f9:7d:2d:4c:af:2b:af:1d:2b:77:10:68:08:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f
Validity
Not Before: Apr 17 15:00:27 2025 GMT
Not After : Apr 18 15:00:27 2025 GMT
Subject: CN=5105ae1c91a875954724c7d1ab7661bdd66df65e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8c:fe:de:6d:8c:19:63:5a:3f:0a:72:4e:46:
16:32:65:d7:71:2a:e2:38:f6:3b:18:19:03:80:50:
da:bf:01:97:26:cf:6b:5a:50:4d:cf:f2:45:3a:fc:
a3:8c:22:fd:2b:31:17:21:a7:6c:d8:ba:b1:69:ad:
ae:09:d0:01:f3:c5:58:ab:4c:96:05:9a:55:06:78:
42:83:23:de:51:40:6d:de:78:cd:b2:22:44:2e:8e:
9e:49:71:40:f2:a9:10:fc:ed:39:22:11:9f:85:22:
47:8f:57:88:5c:46:90:75:1c:75:d6:69:32:ca:ce:
c7:51:2d:35:15:b0:37:08:b2:65:a9:99:d6:bd:fb:
da:e1:08:fe:bf:0a:04:63:c9:65:16:43:84:d7:8b:
a5:52:b8:34:58:0c:7f:e3:86:3a:52:76:43:e1:38:
3c:15:bd:f4:ed:87:73:94:68:5c:b8:b2:de:e9:13:
2f:24:b8:49:60:b5:e2:a2:43:c1:f6:ed:9e:c2:1e:
02:ed:34:ab:05:0a:8c:ad:04:95:d6:cf:2c:a7:e1:
7d:c8:f7:6a:2b:26:0a:94:ea:02:df:21:06:a5:73:
0f:a8:be:e4:b9:b9:0e:02:c2:cc:a0:ab:2e:fe:b2:
91:41:a1:96:46:f7:cd:19:f4:40:6d:c2:e4:29:7b:
27:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:05:AE:1C:91:A8:75:95:47:24:C7:D1:AB:76:61:BD:D6:6D:F6:5E
X509v3 Authority Key Identifier:
keyid:B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:95:2f:0d:6b:6b:a7:4f:c6:8a:f0:4f:fc:15:b1:25:01:8a:
26:27:75:f7:86:f5:eb:51:cf:3d:11:85:f0:84:b8:a7:9a:ab:
36:86:3c:d1:55:d5:a5:76:9d:1a:8f:86:14:f5:02:50:56:ff:
3f:11:91:d0:db:95:09:d1:b7:f2:eb:98:4f:c0:10:04:08:b8:
14:7f:26:8b:c3:a2:3b:56:5d:d0:1f:ab:bf:f4:c0:75:26:9f:
fb:4e:06:d1:30:6c:55:3f:84:e9:82:1f:e7:ef:82:91:b5:7a:
5d:f1:ec:ae:fc:03:60:e4:b1:b8:0d:f7:09:fe:53:12:ac:21:
7e:83:23:20:0c:17:fd:98:00:7d:f8:2d:7d:fd:e8:62:c3:2c:
0b:47:88:59:cd:e7:26:ec:ed:63:49:45:ae:2a:a9:55:75:f4:
5c:d4:8c:c4:f7:a2:1d:19:6e:3e:30:7b:83:29:e8:2a:4f:36:
33:9f:f2:ce:85:0d:30:5e:d0:80:ea:8a:ee:70:8e:9f:ce:9a:
e1:6c:d9:34:2a:94:d9:fc:bf:7d:ab:94:56:c5:37:5a:f6:75:
20:4a:3b:54:c2:6e:16:62:18:00:95:13:d0:e3:7e:70:3e:d6:
a2:4e:84:ec:2b:b2:2a:28:a2:e5:8e:ed:33:cb:73:6f:07:99:
4b:a4:5e:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:40:21 2025 by rpki-client