Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
File: tFOob9MIG4A-3BDSO77akdeTICU.mft (raw, json)
Hash identifier: PkcRsNQn9c1z3zAiWlybDF1oe8HgY3A/QSuYXDT9YYA=
Subject key identifier: F6:6E:F8:10:4C:95:6C:13:04:EA:BA:D2:E6:FF:8F:46:A2:34:76:7D
Authority key identifier: B4:53:A8:6F:D3:08:1B:80:3E:DC:10:D2:3B:BE:DA:91:D7:93:20:25
Certificate issuer: /CN=b453a86fd3081b803edc10d23bbeda91d7932025
Certificate serial: 01963B780C58DFF668B16F47C171B927684F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
Manifest number: 1483
Signing time: Tue 15 Apr 2025 22:00:45 +0000
Manifest this update: Tue 15 Apr 2025 22:00:45 +0000
Manifest next update: Wed 16 Apr 2025 22:00:45 +0000
Files and hashes: 1: h8oFDHIXTub3TgbD4vBpQOwCmWM.roa (hash: lwyf55gn3PMFr0CsrdeYlJw82BVP+7eUtEsfzrm/dIo=)
2: tFOob9MIG4A-3BDSO77akdeTICU.crl (hash: 3TgshZPc5npCDWKFvu4WZz/8C9xMcXnH5LMaOYuFJY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 22:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3b:78:0c:58:df:f6:68:b1:6f:47:c1:71:b9:27:68:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b453a86fd3081b803edc10d23bbeda91d7932025
Validity
Not Before: Apr 15 22:00:45 2025 GMT
Not After : Apr 16 22:00:45 2025 GMT
Subject: CN=f66ef8104c956c1304eabad2e6ff8f46a234767d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:97:5d:06:bf:b0:63:c1:cb:f1:95:f4:a3:08:
e2:c9:38:f9:f2:3a:4d:6b:8c:52:c5:ef:c6:84:33:
94:1b:5b:9c:79:9a:a6:76:7e:ee:d1:9a:00:ba:b2:
08:be:17:db:8d:cd:0f:72:14:5c:08:56:03:6f:6e:
61:f6:83:02:6a:80:0a:6d:44:11:6d:2e:79:1d:60:
62:48:ef:6e:03:a4:4d:ba:8a:08:b3:30:9e:dd:8b:
ae:83:51:83:05:6f:9e:6a:50:a7:78:36:dd:a6:55:
d6:14:28:1c:12:67:fe:ff:88:64:16:13:39:7f:a5:
52:d1:64:58:62:3b:db:01:67:62:f2:a5:22:f2:ad:
a7:a2:0a:a8:e9:84:75:5e:d3:8d:07:0c:cc:2b:cd:
bc:15:54:65:b9:ec:c0:a3:e9:4a:01:1b:07:c5:b6:
02:79:03:6d:12:a1:9b:25:1b:c4:7c:67:e8:28:53:
e6:bb:da:bd:df:00:2e:a3:16:c4:97:ff:46:af:07:
40:51:0a:d1:2b:ae:d2:fe:15:78:66:c3:3e:68:1b:
bf:37:27:fc:b0:c6:78:22:a0:2b:84:c6:b7:5a:b5:
1e:2d:e8:9b:8a:63:14:30:18:8a:8b:1f:61:ba:cc:
f3:25:0d:b4:e1:60:55:da:50:e4:5a:63:d6:1c:c7:
36:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:6E:F8:10:4C:95:6C:13:04:EA:BA:D2:E6:FF:8F:46:A2:34:76:7D
X509v3 Authority Key Identifier:
keyid:B4:53:A8:6F:D3:08:1B:80:3E:DC:10:D2:3B:BE:DA:91:D7:93:20:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:4c:c9:16:df:6b:f7:50:9e:f5:74:4e:ab:3c:09:94:d8:94:
b9:84:48:29:a0:d7:9e:13:e8:80:e5:a7:b2:56:17:a7:86:fc:
3a:70:0c:8b:0b:6e:7c:bf:05:15:ee:ad:5d:7e:e0:be:0f:6d:
53:da:68:01:92:73:9e:0e:07:9e:bb:95:86:7c:dc:f9:5d:f6:
84:11:e7:aa:9b:c0:14:4e:2f:43:0a:1e:1f:1d:19:fe:9f:46:
a3:f7:a4:2e:44:fa:d3:fd:f9:3b:6c:fd:80:41:3c:fb:36:39:
85:d7:a4:cd:3a:b6:79:9f:b5:59:05:22:5e:92:f4:d7:b6:1d:
56:41:8f:b5:e0:14:71:1b:38:68:40:5f:c6:54:16:67:c4:06:
9c:f8:34:8a:ce:e3:dd:12:ea:c8:6a:5e:dd:c7:27:f7:0c:8a:
c5:a3:bb:fc:f2:b0:99:6b:ea:7a:f6:02:b9:0f:d8:bc:a3:12:
ba:1a:20:7b:d6:eb:3c:76:04:6c:bd:e5:06:ad:a2:15:04:ba:
fa:28:7c:58:15:49:52:92:da:7d:29:4f:56:5b:c8:68:42:96:
00:c8:aa:35:66:1c:5e:12:47:81:51:77:32:15:9e:72:96:dd:
b0:f3:b4:48:ae:01:24:a6:eb:46:97:bb:e2:83:4d:8e:bb:9d:
12:0c:dd:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 04:46:08 2025 by rpki-client