Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
File: tDlfbOqaAYpMyEgY5qo1INMiIYs.mft (raw, json)
Hash identifier: Y2qupC+LaqTWvaDjOQy/J95ocZwRCP87NONYirjPnlo=
Subject key identifier: D9:EC:0F:41:A9:43:61:AE:AA:E5:B4:EE:27:00:CE:9D:52:5B:56:B8
Authority key identifier: B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
Certificate issuer: /CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Certificate serial: 0196515BF4C2F223EE6E98304522800897B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
Manifest number: 0B7E
Signing time: Sun 20 Apr 2025 04:01:43 +0000
Manifest this update: Sun 20 Apr 2025 04:01:43 +0000
Manifest next update: Mon 21 Apr 2025 04:01:43 +0000
Files and hashes: 1: UoFhfe1D4fv5504pD16hAMtOHqM.roa (hash: f5OjLqYpJfmM6P+Sc+etueFJmxpiBV6zei8gZZWeXpE=)
2: tDlfbOqaAYpMyEgY5qo1INMiIYs.crl (hash: 6izyv/xJIiXNoSS7igGj3cl6W33oYuYv9pKOBBnpjL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5b:f4:c2:f2:23:ee:6e:98:30:45:22:80:08:97:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Validity
Not Before: Apr 20 04:01:43 2025 GMT
Not After : Apr 21 04:01:43 2025 GMT
Subject: CN=d9ec0f41a94361aeaae5b4ee2700ce9d525b56b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7f:62:5d:f7:d9:7e:02:f7:f8:07:aa:72:7b:
4c:8b:af:54:20:cf:d6:a8:91:00:04:14:3c:5d:8f:
c5:1e:19:d0:ee:41:17:1c:b3:95:cd:be:a2:c0:36:
9a:14:c7:c3:99:e2:37:c6:83:ef:d8:b9:0c:95:4c:
2b:5b:bd:1f:b7:3a:5d:20:51:58:c6:b3:d3:c2:6d:
ba:43:53:d2:bb:ef:80:41:1d:ed:d6:87:bb:9b:cd:
9f:49:55:c8:56:1b:3d:db:9f:0d:2a:8a:f2:0b:d6:
5a:01:a2:df:29:a4:8e:e2:fa:83:86:2d:5b:aa:1f:
86:d3:0b:4f:f3:28:dc:7b:20:10:64:d9:6d:04:84:
e3:e4:55:8f:02:c0:f1:03:27:3a:d1:d1:ae:de:11:
05:41:9d:59:1c:4d:64:03:db:ad:c3:e9:f3:f4:b2:
97:70:df:45:28:39:d4:68:af:8f:a7:1d:47:dd:53:
8a:17:4a:a5:50:aa:04:bb:1a:27:81:39:6c:c4:fd:
53:66:c5:ab:99:89:5b:df:d1:69:51:81:d5:1a:96:
85:00:6d:71:84:bb:f3:99:03:90:cd:e6:f0:f8:fd:
e8:b5:db:ba:de:47:18:68:fb:fe:3c:7b:cd:6a:f4:
bc:f0:37:a0:5b:69:b4:0b:78:d1:f9:59:e5:eb:6a:
36:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:EC:0F:41:A9:43:61:AE:AA:E5:B4:EE:27:00:CE:9D:52:5B:56:B8
X509v3 Authority Key Identifier:
keyid:B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:b4:86:e6:17:74:18:14:1a:72:77:21:cf:2b:75:84:db:a2:
f3:ab:9a:61:e6:1c:bc:8d:f4:53:84:0f:11:a8:76:13:fe:c1:
26:8d:25:43:c8:ad:e3:e2:cf:49:13:0b:44:e8:a9:fa:ec:94:
45:cd:b3:7a:40:fe:18:ee:b7:04:42:f0:2f:e8:2c:cc:09:0a:
0a:49:a5:a7:b7:7d:71:2b:03:e0:c8:ff:69:a1:ad:42:e5:f2:
a7:d4:df:30:c9:d5:bd:2b:13:6b:4a:c6:eb:6c:24:69:3e:e6:
65:a0:a1:4e:53:1b:e9:4d:bc:8e:15:0c:02:28:a9:8c:49:95:
94:c0:55:06:ea:5c:e4:43:22:98:6b:71:a8:72:87:26:67:16:
ba:e9:c2:0b:b4:a1:f9:28:01:31:d4:43:45:cf:02:2e:e7:6b:
28:37:fa:3f:00:7d:5c:72:c9:b5:56:bf:cd:a7:9d:40:9a:9a:
c9:97:c6:2d:e2:7c:d1:2e:fa:e3:56:92:87:bd:0b:53:68:91:
78:a4:72:f9:dd:50:54:36:eb:b6:b3:32:47:fb:4e:67:81:88:
50:3a:ae:7a:fe:39:f8:a2:04:fb:1a:65:5d:a8:47:3d:56:e3:
4b:f6:f2:37:20:30:16:9c:b8:b8:25:25:5a:82:f1:ed:46:18:
25:a8:8f:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:16:11 2025 by rpki-client