Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
File: 1-TmwPxKU69NaOxXWldfpH4y0H6A.mft (raw, json)
Hash identifier: LkH0tZ6nzCrrv8aRhWqLkWMknJkD3MJ69so6L943hok=
Subject key identifier: DC:08:2B:17:77:ED:D2:F8:EB:91:6D:A5:59:12:DD:15:54:0D:AE:16
Authority key identifier: F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0
Certificate issuer: /CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0
Certificate serial: 019652DB5A474453EDE7B22DF56C7AAC9DC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
Manifest number: 1148
Signing time: Sun 20 Apr 2025 11:00:29 +0000
Manifest this update: Sun 20 Apr 2025 11:00:29 +0000
Manifest next update: Mon 21 Apr 2025 11:00:29 +0000
Files and hashes: 1: 1-TmwPxKU69NaOxXWldfpH4y0H6A.crl (hash: OEF8CxnlsFL0Sfo21YT8pS3oM+FUT70BHIC1OGkXJJU=)
2: S1K-LNOfEdqMwJPR6JwjXy3twNM.roa (hash: 6+dgtQWWnCxkd6rViHnDLK3NWbLzGQNeNx6DA6f+PL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:5a:47:44:53:ed:e7:b2:2d:f5:6c:7a:ac:9d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0
Validity
Not Before: Apr 20 11:00:29 2025 GMT
Not After : Apr 21 11:00:29 2025 GMT
Subject: CN=dc082b1777edd2f8eb916da55912dd15540dae16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:75:96:66:56:c4:3c:e7:2b:b8:bf:1e:1a:ec:
12:a2:5d:10:bf:06:0f:01:74:55:e4:d5:d3:c8:37:
e6:af:26:d9:55:0f:11:19:69:1d:aa:fc:bc:c5:b9:
30:93:8b:13:c3:e1:b9:57:27:40:88:0d:bd:b4:49:
53:71:2f:88:33:ec:02:3a:b8:c6:ef:6e:92:03:d4:
3c:82:ad:ef:3c:58:5e:3f:46:f9:e0:d4:c0:95:e7:
d2:1d:ef:02:59:14:39:b8:8e:e3:45:3f:50:72:47:
9f:2d:33:45:02:68:5b:68:b2:18:db:bb:f8:2a:75:
eb:74:7a:3d:ce:81:13:99:a3:06:c7:fe:71:50:56:
1f:80:36:2a:1f:1e:17:8f:04:d7:74:1e:27:cb:e5:
59:83:ef:02:5b:f7:6e:4b:8c:7f:e8:90:a2:39:1b:
e1:82:f6:3e:e6:de:73:a4:99:27:d5:c6:a3:f0:fa:
66:05:7f:0d:d2:bf:ef:6b:16:ae:99:b9:c7:4d:60:
ee:99:70:bd:4d:2c:b8:55:b5:21:21:26:50:c3:6b:
79:ac:ab:55:ed:2e:94:a5:d6:e1:fe:b9:c9:be:d2:
e6:67:e6:f1:09:46:75:37:ed:b7:3f:47:e1:3c:c3:
e5:0d:08:9d:ad:b4:29:57:91:c1:f9:b5:c0:d6:a4:
25:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:08:2B:17:77:ED:D2:F8:EB:91:6D:A5:59:12:DD:15:54:0D:AE:16
X509v3 Authority Key Identifier:
keyid:F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:e0:5d:57:30:fa:8c:df:3e:b8:e9:00:4f:8e:ce:7f:53:75:
6c:6f:a7:81:ca:7a:e8:6e:43:91:59:8f:ee:4b:60:d2:6e:50:
ad:b1:11:c3:aa:8a:b7:24:2e:35:16:01:e9:09:aa:e4:bb:e2:
77:76:1b:dd:5e:bc:86:c4:52:8d:45:91:6b:40:2c:83:08:c4:
20:b6:a5:3a:fd:3c:93:84:37:e4:c4:a5:9a:a3:ce:66:9d:58:
e8:57:7a:d7:d5:81:63:cb:2a:63:c9:2d:89:8e:ab:a6:27:6e:
f0:24:3f:7f:d2:66:1c:6b:68:55:c6:cd:c1:5b:1d:e5:30:7e:
64:08:5d:f8:ca:ec:d2:48:18:2b:9e:ff:a6:90:4d:cc:f3:cf:
38:5b:31:77:47:b4:67:e0:69:c2:90:1a:df:34:ab:5b:7e:0b:
6d:0d:3f:fd:01:ff:1f:5e:e9:9f:41:74:6f:9b:7a:01:ac:81:
bd:ab:31:90:22:3a:82:98:81:48:e7:a9:8d:51:cb:41:a3:33:
d5:e0:62:1e:a6:cf:3d:68:8b:63:75:00:41:73:75:a1:66:4c:
42:cb:1e:6b:5f:00:b6:e4:a6:74:6a:67:e2:51:99:bb:94:d3:
2b:57:f1:eb:4b:75:39:1d:9f:a3:f3:15:4d:6f:ce:bb:a1:0f:
8f:a8:4d:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:15:04 2025 by rpki-client