Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
File: tu1iBVpRkcAuxREulRgaiawGDOs.mft (raw, json)
Hash identifier: x3WI0vs6ILfs86WJhqI5psrDJGAgnrFxoO9m591LHIs=
Subject key identifier: 1E:15:99:EC:2F:D0:CB:18:B0:84:4C:9B:00:2D:3B:EE:A0:CA:0F:7E
Authority key identifier: B6:ED:62:05:5A:51:91:C0:2E:C5:11:2E:95:18:1A:89:AC:06:0C:EB
Certificate issuer: /CN=b6ed62055a5191c02ec5112e95181a89ac060ceb
Certificate serial: 01958C96E3E19119ACCA8801D1F72636B7B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
Manifest number: 09F0
Signing time: Wed 12 Mar 2025 23:00:53 +0000
Manifest this update: Wed 12 Mar 2025 23:00:53 +0000
Manifest next update: Thu 13 Mar 2025 23:00:53 +0000
Files and hashes: 1: iOo8WZeBs16BOwEjC7IsPMOtPO0.roa (hash: FC5R1Hrtvnbfsyec/XOyQavDbuFW5mY0wSOTHI+QutE=)
2: tu1iBVpRkcAuxREulRgaiawGDOs.crl (hash: jSCDvMxKymMuPRt2UxvfP8MSE5Y2x99voDWOsA8NQMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:96:e3:e1:91:19:ac:ca:88:01:d1:f7:26:36:b7:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ed62055a5191c02ec5112e95181a89ac060ceb
Validity
Not Before: Mar 12 23:00:53 2025 GMT
Not After : Mar 13 23:00:53 2025 GMT
Subject: CN=1e1599ec2fd0cb18b0844c9b002d3beea0ca0f7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5f:0f:59:dd:7d:e5:01:17:19:cb:1a:20:44:
b1:d9:4d:cd:ab:d8:53:6c:1c:96:1f:5d:6f:dd:b1:
59:d7:a2:8b:99:f0:06:33:a2:3b:61:95:e5:5c:55:
83:2c:2c:79:8d:97:7f:a8:ec:12:ce:db:79:71:d5:
da:72:40:12:13:a4:71:8e:11:3d:09:84:b5:99:80:
13:04:be:9a:72:37:dd:9f:7f:2a:42:fa:ea:67:b1:
ac:bb:fe:1a:f3:a2:49:5a:32:ed:62:40:7f:b7:78:
8e:56:41:af:2b:eb:c9:49:ba:39:bb:31:e2:27:43:
c4:19:74:71:b3:66:a5:0e:21:ab:14:d3:05:94:47:
e6:05:47:6b:06:c3:ca:98:3e:58:57:b3:b4:e4:56:
83:04:d0:b3:f8:7d:a6:ee:36:96:e2:f9:1c:37:43:
b1:b4:fe:77:70:d6:f7:08:35:da:88:65:89:ed:d4:
1a:a9:ec:4b:81:77:22:e4:f9:28:17:1d:44:34:fd:
b1:d5:ea:43:72:f6:59:ac:ff:13:89:4b:bf:c7:83:
81:df:04:81:f0:9e:04:63:0c:6c:59:23:60:1c:be:
66:ca:78:09:ae:e3:de:dd:60:56:3f:3a:1e:20:cd:
f9:21:ef:14:12:f3:65:2e:6c:54:31:a5:95:c8:8e:
09:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:15:99:EC:2F:D0:CB:18:B0:84:4C:9B:00:2D:3B:EE:A0:CA:0F:7E
X509v3 Authority Key Identifier:
keyid:B6:ED:62:05:5A:51:91:C0:2E:C5:11:2E:95:18:1A:89:AC:06:0C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:4c:20:db:9f:84:fe:2e:43:1a:da:f5:25:bc:56:e8:aa:2f:
42:38:00:7f:6a:f0:87:4c:00:1e:dd:67:44:17:52:92:43:cb:
9e:c2:3b:36:d0:ac:d5:e3:6d:84:61:67:8e:58:93:08:76:92:
42:6f:17:ea:90:85:65:d2:9f:a2:46:58:b1:dd:1d:3a:26:fc:
1d:09:bc:5f:72:09:a6:bc:c7:cf:80:70:4c:cf:be:10:d4:93:
7d:2c:ee:0f:ac:f5:bc:c6:cd:0f:76:df:08:ee:e8:83:ff:fa:
75:be:41:4e:e8:d6:08:02:10:25:b3:f3:59:b9:ad:2a:17:5c:
f2:63:12:12:7d:c1:8b:69:0f:c0:9e:9e:6d:87:c8:2d:e2:b3:
de:6a:82:f3:24:d8:df:04:b0:a8:67:33:96:52:5a:e3:43:47:
9e:dc:80:37:96:3d:cc:3c:bd:38:00:8f:5a:47:f6:60:28:b9:
a4:95:90:53:8a:ac:42:4a:a8:1d:75:c2:16:52:6f:17:79:f3:
96:30:99:8b:5f:c3:5d:0f:0d:cc:ae:d2:16:c3:a7:51:45:39:
1b:93:52:e1:34:d8:df:f8:35:33:0d:a8:9d:40:c1:42:67:28:
b1:12:28:2c:bd:e0:8c:d4:2b:a4:86:e7:c3:ee:53:91:28:03:
58:3e:a4:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:36 2025 by rpki-client