Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
File: TyKDTEeXR7CovQphKfn-ZfgwJtA.mft (raw, json)
Hash identifier: LSGULgw/EK6wdFLiFRsKdeuT8HTZn8NwahrC2glhbM4=
Subject key identifier: 22:08:B3:80:BC:EE:C3:29:D9:32:B6:5B:1A:6E:DF:AD:49:C3:F8:7B
Authority key identifier: 4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
Certificate issuer: /CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Certificate serial: 01950ED8AD591BF0EAC4FC4EBE65B41319A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
Manifest number: 0240
Signing time: Sun 16 Feb 2025 13:00:35 +0000
Manifest this update: Sun 16 Feb 2025 13:00:35 +0000
Manifest next update: Mon 17 Feb 2025 13:00:35 +0000
Files and hashes: 1: 5_qRdcU_zBI67bUjjCeGmUT4bso.roa (hash: S33Bj4i6cQIjVG+I+Gmo76E+1aI2U06ldTXtc0u4sXQ=)
2: TyKDTEeXR7CovQphKfn-ZfgwJtA.crl (hash: iBGIQOIYY73J4Tbeaav4qEUDvpGEMEC+0Oy+INBf3L0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 13:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:0e:d8:ad:59:1b:f0:ea:c4:fc:4e:be:65:b4:13:19:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Validity
Not Before: Feb 16 13:00:35 2025 GMT
Not After : Feb 17 13:00:35 2025 GMT
Subject: CN=2208b380bceec329d932b65b1a6edfad49c3f87b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d7:3d:0c:4c:1f:ff:dd:55:ff:94:38:e0:1b:
67:32:15:5f:12:eb:6f:6b:ca:ea:1d:a9:e9:cd:b7:
37:10:de:32:e1:7d:98:2b:05:28:14:0e:9b:f0:a3:
16:e3:0d:a8:01:98:32:6e:82:1a:b7:08:c5:78:9a:
03:90:ad:15:b0:3d:8e:08:3d:a4:d7:d4:37:4c:0e:
6c:2a:75:e9:1c:8a:0a:b4:4f:6a:2e:97:0f:bd:08:
cb:71:fb:79:78:ff:3f:72:4f:43:c4:9c:b4:81:2c:
43:53:2b:0f:49:ec:3a:05:57:ab:1a:6e:82:d0:0d:
64:55:4c:fb:8f:5a:22:3b:39:cd:3c:06:9e:a4:04:
a5:3a:88:97:c5:30:0b:67:77:b6:32:60:32:1a:02:
c3:49:58:93:64:0c:3d:14:a8:2a:d2:5d:57:c2:e8:
3b:bb:ef:83:98:52:d3:cc:20:c4:b9:6f:70:fd:91:
6e:5e:25:78:44:c9:4a:a2:8a:4a:7f:fe:ed:18:50:
a2:bf:69:ce:ad:d4:aa:56:50:8e:e3:80:a4:7c:a1:
97:36:c7:da:cc:89:44:4b:82:af:14:02:a8:73:2e:
33:28:6b:b0:fb:36:f9:c9:98:4b:9b:e2:ed:75:ba:
fe:cf:0a:23:65:fc:3b:67:49:4c:47:81:96:bb:8b:
27:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:08:B3:80:BC:EE:C3:29:D9:32:B6:5B:1A:6E:DF:AD:49:C3:F8:7B
X509v3 Authority Key Identifier:
keyid:4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:21:43:97:a7:92:fd:72:32:7e:81:ee:64:ff:1a:b3:07:2e:
ec:11:01:f2:bc:4a:1c:e2:6a:a3:3b:d9:f8:24:d8:b9:c8:4e:
e1:60:27:d2:2c:5f:ee:99:e8:f6:2a:cb:76:60:3e:63:d2:a9:
4c:14:f6:c5:db:f4:11:12:ba:67:7f:d8:93:bd:02:c1:1b:62:
39:e9:da:17:8b:b3:9b:fb:7c:4d:2a:1a:5a:b3:cc:d9:3a:3a:
45:79:38:26:14:3f:e5:e4:d4:9f:46:c0:2d:b2:8a:e1:86:9f:
b4:e4:78:f1:f1:25:14:46:34:fe:f6:7a:ff:eb:80:2a:c3:81:
a8:f8:3b:56:17:36:35:a2:e5:fa:89:48:a8:26:2a:29:9f:59:
15:aa:87:6d:7e:4f:61:b4:b7:52:e9:14:bf:63:4f:88:ce:3b:
aa:1f:e8:2f:4a:a0:46:f0:33:e4:7a:2a:b3:ab:90:f4:65:1c:
64:ea:c6:ae:d3:91:41:52:82:cf:5b:b2:9a:ba:f7:a0:d6:7a:
14:59:ce:a9:10:1b:de:5d:1b:be:18:49:cf:cb:88:63:17:29:
df:b2:c3:c0:e7:96:7d:d3:76:42:02:2e:3d:b9:00:06:5a:39:
49:4d:26:60:1a:5e:89:aa:38:79:66:fb:a4:ba:3d:52:28:44:
94:fc:52:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:32 2025 by rpki-client