Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft
File: tcOYwHMlxA59dtI5ahvoXEL9wsg.mft (raw, json)
Hash identifier: mdNA5nZaKx8hlOCRIAUEmDU55653rT2mS/5nJ8YLfDA=
Subject key identifier: 5C:71:8F:66:79:87:32:65:08:EE:44:88:4B:00:95:9C:3E:E2:9C:8E
Authority key identifier: B5:C3:98:C0:73:25:C4:0E:7D:76:D2:39:6A:1B:E8:5C:42:FD:C2:C8
Certificate issuer: /CN=b5c398c07325c40e7d76d2396a1be85c42fdc2c8
Certificate serial: 01964F357A32431698BAEF49AA57947F9315
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tcOYwHMlxA59dtI5ahvoXEL9wsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft
Manifest number: 0479
Signing time: Sat 19 Apr 2025 18:00:26 +0000
Manifest this update: Sat 19 Apr 2025 18:00:26 +0000
Manifest next update: Sun 20 Apr 2025 18:00:26 +0000
Files and hashes: 1: HeTNJZjhVHC3QazbToD7IxfPGhg.roa (hash: k/lPKk3dyIcZTARgL9fxQcpWqaVNc6/eODt+UcBvC5M=)
2: tcOYwHMlxA59dtI5ahvoXEL9wsg.crl (hash: K1TPzl23rXb3uinxYUC0LayBFamBrXW4mAc092BC63M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tcOYwHMlxA59dtI5ahvoXEL9wsg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:35:7a:32:43:16:98:ba:ef:49:aa:57:94:7f:93:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5c398c07325c40e7d76d2396a1be85c42fdc2c8
Validity
Not Before: Apr 19 18:00:26 2025 GMT
Not After : Apr 20 18:00:26 2025 GMT
Subject: CN=5c718f667987326508ee44884b00959c3ee29c8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8c:f4:ab:94:52:b7:8e:46:23:30:46:2d:e5:
5d:4b:1e:a5:77:e4:0c:c3:9a:0a:90:94:2c:42:70:
74:4a:61:03:55:a3:d6:db:86:17:b0:61:f0:45:37:
8d:07:ed:3f:71:9a:ca:64:62:33:a4:81:b1:d5:f7:
12:c4:19:f6:ac:25:32:7a:13:0b:ce:d8:bb:cc:69:
71:0c:e1:cc:0f:07:44:30:00:38:0a:6c:43:e9:e0:
a5:95:52:1d:b3:6d:02:f6:37:e3:4a:92:3d:ba:a2:
84:ed:fe:9e:18:8c:fc:5f:dc:51:08:10:68:7e:98:
23:55:3a:24:75:66:e9:30:17:21:22:9e:38:18:15:
58:67:ca:19:d9:31:e7:c9:03:d2:fb:8c:a3:3c:49:
19:84:a9:e3:32:4b:39:b3:91:f0:1a:5f:df:68:36:
6d:57:56:c2:0e:ed:c8:a9:a4:0f:2a:be:04:41:9e:
95:2f:f0:b6:e7:06:b1:ee:61:5b:d8:d1:11:03:38:
82:86:97:6d:5f:26:89:4d:e8:af:69:50:a0:0e:de:
cb:1d:d2:f7:85:cb:01:46:db:47:00:ab:56:b9:b2:
49:b3:eb:10:48:15:3c:99:8a:ce:bd:fa:8d:94:96:
2d:23:ec:8c:14:aa:00:98:44:5c:06:28:28:d9:36:
19:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:71:8F:66:79:87:32:65:08:EE:44:88:4B:00:95:9C:3E:E2:9C:8E
X509v3 Authority Key Identifier:
keyid:B5:C3:98:C0:73:25:C4:0E:7D:76:D2:39:6A:1B:E8:5C:42:FD:C2:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tcOYwHMlxA59dtI5ahvoXEL9wsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:7f:8f:95:cc:8e:45:c4:55:49:38:9d:91:de:97:f0:9e:af:
48:f8:bb:36:c4:db:a6:2f:4a:cb:03:3a:79:96:43:35:9e:5a:
d4:f6:74:05:35:ca:37:cd:ba:a9:8c:4e:81:0c:b0:b2:e0:49:
25:a0:0e:f0:5b:1e:1c:70:12:64:c6:cf:26:1f:c5:de:e6:2c:
60:f6:f6:65:78:be:51:17:ed:74:7f:70:eb:dd:4b:62:6e:a2:
d3:1e:72:14:c3:07:c6:ca:26:41:84:19:9a:ca:ae:f9:80:38:
aa:b7:f8:4e:ab:b1:a0:b9:d2:5b:79:17:c5:00:53:85:41:8b:
30:12:64:fb:20:9a:ca:0e:82:6c:50:67:87:e8:d7:66:6e:7d:
ec:9e:ff:ab:62:f5:5b:b8:67:3e:bc:46:01:8a:a2:e1:1c:f8:
c3:17:ac:c6:d6:32:cb:1d:1d:24:87:44:60:a7:77:8a:bd:ed:
5d:53:25:81:26:8d:5f:ad:46:9f:a8:6e:17:57:d9:33:a0:9a:
30:23:8c:f6:0f:24:ef:25:6a:6c:28:07:91:57:32:99:5d:b4:
ce:83:a9:1b:75:74:ec:68:1f:4f:e6:5b:18:cb:e8:92:be:34:
5a:64:f7:fd:f9:58:47:44:7b:aa:c0:59:1a:50:b3:21:e5:56:
65:ca:be:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:09:17 2025 by rpki-client