Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
File: TyKDTEeXR7CovQphKfn-ZfgwJtA.mft (raw, json)
Hash identifier: MZElyfiARXqplIJcqcoupuxiKcFlNxrPOUdn6Sry/Zk=
Subject key identifier: D4:97:4A:C8:0C:C4:0D:23:B2:99:10:06:45:D4:1D:2D:BC:44:54:58
Authority key identifier: 4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
Certificate issuer: /CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Certificate serial: 01965EDF86EB16E776154DBFA50064EE2B72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
Manifest number: 02EE
Signing time: Tue 22 Apr 2025 19:00:29 +0000
Manifest this update: Tue 22 Apr 2025 19:00:29 +0000
Manifest next update: Wed 23 Apr 2025 19:00:29 +0000
Files and hashes: 1: 5_qRdcU_zBI67bUjjCeGmUT4bso.roa (hash: S33Bj4i6cQIjVG+I+Gmo76E+1aI2U06ldTXtc0u4sXQ=)
2: TyKDTEeXR7CovQphKfn-ZfgwJtA.crl (hash: T+AtkIsSr9AjEzt2nI2tQqC0riVYmOBpdPKVLBdghGM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 19:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:df:86:eb:16:e7:76:15:4d:bf:a5:00:64:ee:2b:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Validity
Not Before: Apr 22 19:00:29 2025 GMT
Not After : Apr 23 19:00:29 2025 GMT
Subject: CN=d4974ac80cc40d23b299100645d41d2dbc445458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:24:0f:93:2d:5f:2d:a4:eb:a5:a7:c4:64:7f:
0c:7c:74:7c:6e:08:3c:e4:3f:77:d3:2a:70:c1:f3:
e2:89:a9:71:e5:16:d3:70:e4:3a:ec:e7:3a:97:46:
d4:ad:f4:2b:a5:11:09:39:ac:bc:57:b4:cb:d0:27:
b7:da:f7:0e:d5:43:51:21:6a:c5:36:2f:e9:18:13:
b1:4e:de:05:4a:08:b3:c6:ae:86:ea:e3:e7:2d:8e:
74:b4:c8:15:23:79:97:b1:5c:22:0b:c9:ee:29:a3:
0f:29:e6:b1:b6:46:a9:3d:b8:51:2a:cd:78:38:f3:
a0:45:54:15:f8:2a:7b:d8:49:ac:31:8b:01:e0:b4:
24:cc:0a:c3:03:b4:64:9d:3f:4b:e7:54:72:5d:85:
9c:49:0a:11:6d:e7:d1:a4:4d:5b:3b:50:67:8e:20:
52:46:c4:28:12:11:79:50:89:de:2e:c2:92:85:1a:
30:5e:41:46:39:8a:41:87:c0:5f:ea:e4:f0:bb:90:
f8:63:03:38:de:a3:4b:27:d4:9b:08:fa:8d:ae:7f:
f5:88:91:0f:1b:f6:c4:c4:ab:29:43:b2:d1:4e:a1:
31:52:87:1f:fa:66:08:1a:e9:ec:9a:c8:25:c4:5c:
cc:e3:49:d7:f6:95:7a:71:0a:88:36:60:75:87:86:
50:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:97:4A:C8:0C:C4:0D:23:B2:99:10:06:45:D4:1D:2D:BC:44:54:58
X509v3 Authority Key Identifier:
keyid:4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:0f:63:33:0f:8e:38:be:a2:5d:a8:6c:a3:9a:5b:5e:d8:bd:
41:3f:5e:09:57:17:43:48:d0:4e:02:e3:ab:a9:02:31:95:46:
f7:c5:61:d3:0c:17:06:a9:b2:f1:e5:12:3b:d1:b1:7d:d2:66:
1b:d0:8f:57:45:fb:04:7e:83:e7:d4:c1:70:75:78:d3:4e:c4:
41:65:28:2c:f4:2f:1b:ed:84:fe:f2:eb:73:f3:8b:8c:24:e2:
d9:78:f0:34:92:d5:00:61:0e:ed:ba:a2:e7:f4:3d:d5:41:85:
a7:f2:ef:ab:81:51:0d:9d:50:8f:ec:40:00:06:81:d8:81:76:
08:04:67:ff:90:c6:aa:e9:8b:1a:f7:bb:ad:f0:44:d6:c4:81:
95:70:41:24:ee:57:07:84:62:d5:5b:f4:2e:5f:02:14:a1:f3:
a1:f9:82:cf:48:e8:79:32:54:7f:ac:94:ff:a4:f1:2f:69:9a:
92:2b:bb:ba:d2:ef:d5:73:de:65:c4:ef:59:19:4c:ed:13:02:
fc:4b:ee:59:a1:30:12:bd:e7:ba:c6:eb:da:7f:1d:a9:b6:90:
08:55:50:70:ac:f6:3f:8d:d8:bf:67:43:e7:b9:08:fd:47:51:
c5:27:43:ae:16:89:2b:d4:f9:73:82:0c:10:c7:3f:43:3b:0b:
eb:95:8e:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 05:51:32 2025 by rpki-client