Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
File: tDlfbOqaAYpMyEgY5qo1INMiIYs.mft (raw, json)
Hash identifier: 2cThShw+vA0cfI+FCy84OscApIL7t3bQjv4+9lk56m0=
Subject key identifier: CF:52:46:E7:46:A6:44:8F:94:28:4A:9B:1D:F4:BF:40:62:F4:A2:2D
Authority key identifier: B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
Certificate issuer: /CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Certificate serial: 01958C600A85F495605349C65CCF77EAF364
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
Manifest number: 0B18
Signing time: Wed 12 Mar 2025 22:00:59 +0000
Manifest this update: Wed 12 Mar 2025 22:00:59 +0000
Manifest next update: Thu 13 Mar 2025 22:00:59 +0000
Files and hashes: 1: UoFhfe1D4fv5504pD16hAMtOHqM.roa (hash: f5OjLqYpJfmM6P+Sc+etueFJmxpiBV6zei8gZZWeXpE=)
2: tDlfbOqaAYpMyEgY5qo1INMiIYs.crl (hash: fYJeJ2k+bh+GVLOtS+EsbdB77oyhriWMAVWEzl8+WME=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:60:0a:85:f4:95:60:53:49:c6:5c:cf:77:ea:f3:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Validity
Not Before: Mar 12 22:00:59 2025 GMT
Not After : Mar 13 22:00:59 2025 GMT
Subject: CN=cf5246e746a6448f94284a9b1df4bf4062f4a22d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:86:0d:8e:3c:32:c3:fa:28:a0:64:fd:0b:c5:
5e:13:bc:7f:01:b2:bb:26:e9:0f:42:bf:0e:4d:4a:
7f:3d:39:3a:85:89:5d:85:bd:cf:91:b3:10:7c:f3:
04:c2:a0:ea:e8:09:00:36:11:91:e3:21:03:9e:fb:
96:86:3d:7a:85:dd:01:97:96:6f:26:3b:69:88:5d:
f0:9c:aa:4c:63:5c:64:a2:1d:d9:a7:4e:7c:b0:57:
51:5c:25:d1:1d:7c:b1:e3:d9:4e:79:8b:d7:57:49:
42:c7:22:b9:13:d0:04:39:58:a6:7f:44:ee:11:f3:
d6:63:5f:3f:1c:ea:11:db:d0:3f:ab:29:04:68:be:
31:00:ee:15:3f:dd:9e:a8:4c:81:c7:d6:a2:15:ee:
85:52:81:7a:7f:e7:55:dd:2d:a9:ee:98:da:f9:fe:
a6:b3:68:0a:35:c6:78:2e:3e:f0:64:0f:62:db:87:
10:22:19:01:54:3d:72:52:71:cd:78:ca:31:dc:94:
ab:59:3d:df:d9:74:d7:19:54:41:2f:49:4d:59:fa:
11:1d:73:cc:b0:24:b8:87:37:4e:7b:98:3a:b3:5b:
1f:ca:08:93:7c:8f:2c:b8:cd:d0:77:76:e0:d5:e8:
48:3d:19:f1:ef:c2:9b:d3:0d:57:9b:88:03:53:a7:
6a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:52:46:E7:46:A6:44:8F:94:28:4A:9B:1D:F4:BF:40:62:F4:A2:2D
X509v3 Authority Key Identifier:
keyid:B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:37:0b:b0:da:72:a9:57:a6:90:36:8b:08:ee:5b:31:df:04:
35:0a:3f:fd:b6:b5:78:7c:91:47:00:67:83:8d:8d:c2:24:4e:
f4:27:52:08:94:4b:d1:f4:3d:d8:aa:5b:e9:47:37:65:d2:f7:
e1:96:a9:2b:0c:40:20:23:43:93:2e:07:05:7c:52:54:12:5a:
56:8d:f9:bd:e6:ac:69:54:0e:1f:ba:c8:17:26:0f:f1:2e:d2:
40:8f:56:5a:e1:e0:93:49:9a:cf:bf:c7:de:3a:ec:a6:a3:ca:
44:95:1d:36:fa:00:5c:63:bb:a1:e4:d5:d9:2a:0a:e9:a0:39:
5d:fe:75:21:de:be:28:3f:29:e4:7b:7f:3e:f6:29:3a:9e:a1:
4b:bf:e3:3b:80:b4:90:73:23:18:a3:11:37:15:8d:e8:92:05:
41:59:6a:fb:8e:5f:69:7f:a4:1b:f8:8f:e1:08:c8:13:84:19:
3b:1b:4a:5c:e7:54:5c:50:71:bd:1b:58:d6:92:d0:bb:77:70:
42:7f:14:6f:41:37:dd:77:13:ed:f5:7b:4d:0f:3c:e9:06:ef:
36:ab:ba:f8:19:0e:19:8e:e0:3d:a3:fa:8d:b7:94:8e:87:53:
59:0c:f0:06:dd:9c:e9:9a:4f:35:b8:77:c3:00:0f:4b:00:76:
10:7f:c5:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:09 2025 by rpki-client