Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft
File: tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft (raw, json)
Hash identifier: qa87NCVzYH3W4WSrdCkyKiMhIVuyUnirvmWai0ieI+E=
Subject key identifier: AE:B2:70:43:92:18:F3:D8:CE:A4:70:F4:B9:0A:20:71:E6:BB:22:E8
Authority key identifier: B6:41:B2:88:B4:D4:13:E9:55:FE:A4:46:0B:32:BF:2C:C1:82:AF:03
Certificate issuer: /CN=b641b288b4d413e955fea4460b32bf2cc182af03
Certificate serial: 01951210351E6A0756FF0DB1F34F15FF102B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tkGyiLTUE-lV_qRGCzK_LMGCrwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft
Manifest number: 1453
Signing time: Mon 17 Feb 2025 04:00:06 +0000
Manifest this update: Mon 17 Feb 2025 04:00:06 +0000
Manifest next update: Tue 18 Feb 2025 04:00:06 +0000
Files and hashes: 1: tkGyiLTUE-lV_qRGCzK_LMGCrwM.crl (hash: fXLuAqafO2tYzhYvjd2C24Gmegee8YM8E5lXcFc/9Vk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tkGyiLTUE-lV_qRGCzK_LMGCrwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:35:1e:6a:07:56:ff:0d:b1:f3:4f:15:ff:10:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b641b288b4d413e955fea4460b32bf2cc182af03
Validity
Not Before: Feb 17 04:00:06 2025 GMT
Not After : Feb 18 04:00:06 2025 GMT
Subject: CN=aeb270439218f3d8cea470f4b90a2071e6bb22e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:85:74:84:7d:0b:6a:19:eb:06:1a:9e:33:9b:
47:4a:8d:de:76:f7:1b:67:f1:26:3e:12:d5:7b:7c:
ac:40:04:51:dc:c0:d6:5b:1f:6d:b9:e0:96:39:a0:
07:4f:67:7c:0c:1b:af:00:e5:ca:93:95:fd:f5:c7:
2e:49:1b:6c:83:4a:7d:d8:32:81:ec:7e:33:2f:4b:
3a:83:fb:57:4d:08:17:9b:10:74:1d:0f:43:a0:b2:
db:aa:df:20:ba:4a:69:c2:b5:bc:29:cc:a1:4e:08:
79:40:30:c6:d5:3b:3e:0c:d5:f4:a2:f4:1a:97:50:
94:45:f8:06:a1:25:64:81:55:1a:68:e6:97:86:08:
c8:65:6e:a7:4f:81:aa:71:ed:fc:34:8b:8f:cc:cc:
43:a4:59:79:04:81:e8:49:2d:f2:bb:03:75:b1:5e:
15:a0:27:4a:45:41:bb:10:bf:d2:10:cd:90:24:d2:
5a:07:59:d0:2c:62:1b:42:c1:d0:c0:db:73:49:9a:
15:fd:ac:25:ab:99:61:23:75:66:5e:25:9e:91:56:
54:52:8a:75:a8:47:b5:f7:f5:79:c0:a5:37:c4:b0:
38:67:37:01:a4:d1:fc:d8:4c:77:b0:fb:e5:8d:90:
c5:2d:d6:8c:75:6a:7c:94:62:77:7b:e0:fa:6c:2f:
81:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:B2:70:43:92:18:F3:D8:CE:A4:70:F4:B9:0A:20:71:E6:BB:22:E8
X509v3 Authority Key Identifier:
keyid:B6:41:B2:88:B4:D4:13:E9:55:FE:A4:46:0B:32:BF:2C:C1:82:AF:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tkGyiLTUE-lV_qRGCzK_LMGCrwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:08:91:73:e8:7a:30:5e:b0:8d:e2:29:5b:ca:93:da:f0:88:
7a:66:bb:2a:b6:78:2f:05:82:1d:17:94:80:c3:3e:2a:0e:a5:
3a:f1:18:40:10:40:10:84:24:fe:3a:88:45:32:25:ba:9a:01:
16:e3:47:9d:2a:4e:39:c9:95:29:23:06:13:93:f8:07:1b:29:
20:e4:af:6c:93:8d:11:6c:9b:07:32:e4:65:11:66:fb:7b:a0:
69:c3:e1:24:e0:00:62:9f:b6:ca:98:37:db:fd:58:bc:23:19:
58:7a:ab:1a:55:d3:d3:53:fb:0d:98:31:6c:29:bc:69:1c:af:
04:81:e7:e7:32:3a:08:99:03:1c:51:f9:40:b8:e5:f3:e9:67:
ad:c5:60:5d:f2:13:2a:44:47:51:d8:40:57:59:60:c3:88:5b:
1c:ef:88:6a:a6:65:a0:bc:3a:27:d0:17:74:29:28:77:29:e9:
9a:8a:1b:09:2e:47:28:c2:9b:7a:3b:2d:ca:6e:a8:2d:59:e9:
94:50:83:6d:82:3d:2b:be:17:d7:9f:93:58:7d:e4:5a:56:39:
2e:68:e8:31:15:66:a0:b5:37:5b:45:13:c6:fa:5a:b1:50:c5:
a8:5b:9b:68:12:3b:69:06:9e:5c:e1:86:63:8d:f7:d6:6d:7e:
89:58:07:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:27 2025 by rpki-client