Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
File: tPSWmNCOjCg8DfKoLxaZfmJZurY.mft (raw, json)
Hash identifier: ZMsRyBWAQL24E6t24gSkExS07tkapkIuLnok80DPz1I=
Subject key identifier: 7D:CF:0D:99:4D:B9:88:BE:55:4F:EC:3C:3D:58:1B:56:11:7E:F0:11
Authority key identifier: B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6
Certificate issuer: /CN=b4f49698d08e8c283c0df2a82f16997e6259bab6
Certificate serial: 019656133D4A68D8B99DED597606D1341642
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
Manifest number: 06CB
Signing time: Mon 21 Apr 2025 02:00:23 +0000
Manifest this update: Mon 21 Apr 2025 02:00:23 +0000
Manifest next update: Tue 22 Apr 2025 02:00:23 +0000
Files and hashes: 1: tPSWmNCOjCg8DfKoLxaZfmJZurY.crl (hash: EtHMheBq/hA3eBH2BcEIUjQdELCQAyTDgwe8Vy7h27g=)
2: xzawIGSZ9gaUq6klJYybOrl_u8k.roa (hash: 1673awjNQrA/kSjVn3AcQmjZN9mvF8MpaJPKmYa0E/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:3d:4a:68:d8:b9:9d:ed:59:76:06:d1:34:16:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f49698d08e8c283c0df2a82f16997e6259bab6
Validity
Not Before: Apr 21 02:00:23 2025 GMT
Not After : Apr 22 02:00:23 2025 GMT
Subject: CN=7dcf0d994db988be554fec3c3d581b56117ef011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0c:6b:9c:af:44:fb:5f:3b:3f:d1:24:90:57:
fa:ae:10:83:30:4f:64:71:7b:5f:e1:55:ec:8b:06:
76:55:4e:58:cf:00:d5:34:26:2c:9e:89:a3:af:1f:
bf:cf:6a:da:63:7c:e2:b7:4d:41:01:c0:35:57:a8:
49:ef:e1:ed:02:cc:74:36:90:22:fd:0e:fb:1e:c9:
bd:db:75:95:6b:22:ab:f6:75:33:01:5d:5f:2d:b3:
2c:e8:3d:cf:8c:7a:54:2e:3c:02:48:0c:04:42:5a:
0b:56:46:ce:d4:ce:95:a9:fa:a6:42:53:6c:4c:a2:
7a:1b:42:52:e8:c8:77:1a:71:cf:0c:a0:41:57:9b:
0c:f5:1f:71:cd:3d:ee:82:de:eb:85:3e:bf:86:48:
21:0d:bf:58:aa:a8:7e:03:4a:cf:57:3d:47:66:de:
14:5f:f6:7f:7f:0c:ab:fe:31:ee:af:7c:2a:76:2a:
62:e8:d9:6a:31:83:1f:0e:f4:4b:e4:88:20:05:3b:
6a:94:8f:07:04:77:ec:ee:e1:2c:1c:11:56:f5:6f:
4b:30:3b:80:00:a7:ef:da:bc:a6:a8:e3:1b:50:58:
4d:7c:b2:78:17:62:19:b0:f4:eb:c2:47:c7:7c:a7:
e7:f6:e6:c7:42:dd:16:21:36:e6:35:23:bc:eb:92:
e0:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:CF:0D:99:4D:B9:88:BE:55:4F:EC:3C:3D:58:1B:56:11:7E:F0:11
X509v3 Authority Key Identifier:
keyid:B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:be:2e:a0:75:5f:d8:a6:2a:3b:6e:67:97:7f:4c:20:33:c6:
c7:e2:68:79:43:ab:d3:e8:a6:79:2b:3f:fd:cd:39:b4:5b:09:
2b:2c:8c:5d:bf:90:eb:7d:36:58:cd:7a:06:a7:77:e0:f8:75:
2f:80:66:4a:4d:78:f3:d9:aa:ec:21:98:6f:29:d2:7f:18:a3:
ab:2c:f6:45:e0:e8:f4:62:cb:96:6a:98:ca:e2:57:f2:ee:62:
5e:20:09:56:f0:ca:68:44:62:79:ee:d2:75:04:be:14:37:fe:
2b:98:4d:43:e5:50:51:80:3c:13:f0:0c:ae:a8:6b:d1:ae:4f:
76:0e:73:bf:d9:55:33:84:aa:c3:ae:f2:03:f1:83:e3:a2:52:
9f:29:24:f0:ab:09:e3:1a:24:0e:a2:d3:7f:83:24:b5:af:16:
7e:85:f1:54:ff:f8:7f:04:ad:10:cf:ff:a3:f8:ee:d7:cc:9e:
c0:68:27:43:8c:c4:e9:ff:6c:4d:fc:c6:af:e2:04:39:5f:4b:
96:2d:a5:ca:10:f9:5a:d2:87:e6:19:52:f3:14:40:fd:2c:e3:
2a:1b:f7:05:e3:f8:8c:2b:65:1a:44:da:8a:e4:c0:cb:56:89:
46:29:5a:69:5b:42:f7:87:8c:56:9e:10:dd:8f:c6:88:ad:b4:
b8:b2:d2:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZWEz1KaNi5ne1ZdgbRNBZCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0ZjQ5Njk4ZDA4ZThjMjgzYzBkZjJhODJmMTY5OTdlNjI1
OWJhYjYwHhcNMjUwNDIxMDIwMDIzWhcNMjUwNDIyMDIwMDIzWjAzMTEwLwYDVQQD
Eyg3ZGNmMGQ5OTRkYjk4OGJlNTU0ZmVjM2MzZDU4MWI1NjExN2VmMDExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2wxrnK9E+187P9EkkFf6rhCDME9k
cXtf4VXsiwZ2VU5YzwDVNCYsnomjrx+/z2raY3zit01BAcA1V6hJ7+HtAsx0NpAi
/Q77Hsm923WVayKr9nUzAV1fLbMs6D3PjHpULjwCSAwEQloLVkbO1M6VqfqmQlNs
TKJ6G0JS6Mh3GnHPDKBBV5sM9R9xzT3ugt7rhT6/hkghDb9Yqqh+A0rPVz1HZt4U
X/Z/fwyr/jHur3wqdipi6NlqMYMfDvRL5IggBTtqlI8HBHfs7uEsHBFW9W9LMDuA
AKfv2rymqOMbUFhNfLJ4F2IZsPTrwkfHfKfn9ubHQt0WITbmNSO865LgPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH3PDZlNuYi+VU/sPD1YG1YRfvARMB8GA1UdIwQY
MBaAFLT0lpjQjowoPA3yqC8WmX5iWbq2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBTV21OQ09qQ2c4RGZLb0x4YVpmbUpadXJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9mNjNkNzYtMmZiNi00M2EyLWJmZWMt
OWY3YWEwOTQzMDNiLzEvdFBTV21OQ09qQ2c4RGZLb0x4YVpmbUpadXJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS9mNjNkNzYtMmZiNi00M2EyLWJmZWMtOWY3YWEwOTQzMDNi
LzEvdFBTV21OQ09qQ2c4RGZLb0x4YVpmbUpadXJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ74uoHVf
2KYqO25nl39MIDPGx+JoeUOr0+imeSs//c05tFsJKyyMXb+Q6302WM16Bqd34Ph1
L4BmSk1489mq7CGYbynSfxijqyz2ReDo9GLLlmqYyuJX8u5iXiAJVvDKaERiee7S
dQS+FDf+K5hNQ+VQUYA8E/AMrqhr0a5Pdg5zv9lVM4Sqw67yA/GD46JSnykk8KsJ
4xokDqLTf4Mkta8WfoXxVP/4fwStEM//o/ju18yewGgnQ4zE6f9sTfzGr+IEOV9L
li2lyhD5WtKH5hlS8xRA/SzjKhv3BeP4jCtlGkTaiuTAy1aJRilaaVtC94eMVp4Q
3Y/GiK20uLLSIQ==
-----END CERTIFICATE-----
Generated at Mon Apr 21 10:41:42 2025 by rpki-client