Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
File: TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft (raw, json)
Hash identifier: OQBK4XnNRqC0+7OYqsk5EsxnAuBsR3+6/6NakmNzSj0=
Subject key identifier: DE:44:D8:9C:3B:79:1B:0D:56:30:77:84:4F:E7:4D:11:E7:0B:8E:02
Authority key identifier: 4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE
Certificate issuer: /CN=4da3711dc5de45f2f5b47901659e956d938272fe
Certificate serial: 01962A1751691AB2528685D613426C9019E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
Manifest number: 14E8
Signing time: Sat 12 Apr 2025 13:01:33 +0000
Manifest this update: Sat 12 Apr 2025 13:01:33 +0000
Manifest next update: Sun 13 Apr 2025 13:01:33 +0000
Files and hashes: 1: 7YKaewqyZbI9lVFIivFUL2FPVzU.roa (hash: wf42n7crwFg9XaXHUPxEE3NTHiwbzXO1xRDVNEMLG6A=)
2: TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl (hash: ac6l0GsGDweml9b/XMDdo2tKq0YFGqafBka/uFMlQfM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 13:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2a:17:51:69:1a:b2:52:86:85:d6:13:42:6c:90:19:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da3711dc5de45f2f5b47901659e956d938272fe
Validity
Not Before: Apr 12 13:01:33 2025 GMT
Not After : Apr 13 13:01:33 2025 GMT
Subject: CN=de44d89c3b791b0d563077844fe74d11e70b8e02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d0:5f:0e:31:6d:1e:03:0a:07:f3:5a:2e:f6:
75:ed:db:1f:ea:84:4a:a3:08:72:1e:8c:97:d8:2b:
2c:27:53:36:72:61:c3:5f:20:3e:9e:72:c3:98:c5:
84:ec:5e:62:a5:6e:06:32:19:af:d4:7a:54:52:95:
b2:f6:18:aa:e9:19:94:50:8b:1f:c2:46:60:bd:3b:
20:43:fe:45:d9:73:2f:5e:51:9c:28:82:e1:a4:e3:
85:5a:cc:99:5b:ee:2f:06:99:cb:47:3a:2e:f5:26:
9e:51:cf:b5:15:27:ea:49:a9:0e:a9:ee:58:2b:7d:
99:c0:5a:f6:72:f8:ad:35:9d:60:99:f1:0d:ea:18:
1c:a6:74:a9:a1:4b:5e:a9:c7:95:e5:21:5d:ae:fa:
66:19:f5:a7:4d:23:b7:c1:21:e7:35:f1:bb:17:5d:
d1:47:83:b1:59:10:33:63:98:32:ce:85:04:d4:12:
88:20:d7:38:40:b4:e8:66:d2:0e:88:89:e1:b1:7b:
e7:67:cc:3b:47:87:b2:2c:34:17:08:bf:cb:7e:ce:
a4:1c:aa:dc:dd:d4:d6:15:60:2d:29:09:70:59:17:
3b:96:1f:aa:ee:72:38:ac:bb:5f:fc:a1:17:b5:0c:
83:e0:86:53:5a:76:23:b9:af:14:05:f6:7d:b5:33:
e7:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:44:D8:9C:3B:79:1B:0D:56:30:77:84:4F:E7:4D:11:E7:0B:8E:02
X509v3 Authority Key Identifier:
keyid:4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:3a:67:9f:75:ab:f0:a3:0b:4a:82:42:9b:70:cb:b1:20:3e:
e7:32:aa:77:08:76:06:19:bc:5a:4d:99:e4:26:68:92:53:0e:
c0:7c:a2:fc:22:cb:73:08:db:98:ca:bc:a3:dc:8a:07:59:3f:
ea:75:37:0b:3d:bd:81:18:96:fd:dc:de:72:ae:62:d7:16:28:
a9:47:1f:f2:7b:23:58:a7:3e:f5:b2:2c:9c:46:b2:59:87:e7:
10:59:5b:3e:18:b2:02:e5:4e:9e:69:b4:f0:3d:03:f1:f3:3e:
0f:7c:b7:d1:62:7d:39:c0:7e:9e:f0:6f:06:73:9e:d3:0e:1e:
7f:23:4b:b6:07:dd:0d:b4:74:9d:fb:1b:32:e0:b2:62:ab:08:
2c:cc:a5:00:fa:7e:20:dd:ab:b8:90:8e:79:77:b7:98:f4:62:
f5:a6:f6:fc:20:f1:dc:b9:b1:7c:ec:ef:62:d2:35:81:e3:2e:
80:9f:38:3c:3d:0d:8d:33:8c:5b:50:36:fd:5e:0e:1a:84:f7:
07:29:4a:03:07:07:59:8a:b9:67:cd:76:29:f2:6e:37:91:1b:
35:97:93:23:ab:fb:ae:55:4b:99:a9:58:4b:d1:4a:09:fd:ca:
5a:95:ef:4c:98:e4:fc:73:6c:e1:87:9f:83:c3:2c:71:3a:76:
33:b1:02:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYqF1FpGrJShoXWE0JskBnkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkYTM3MTFkYzVkZTQ1ZjJmNWI0NzkwMTY1OWU5NTZkOTM4
MjcyZmUwHhcNMjUwNDEyMTMwMTMzWhcNMjUwNDEzMTMwMTMzWjAzMTEwLwYDVQQD
EyhkZTQ0ZDg5YzNiNzkxYjBkNTYzMDc3ODQ0ZmU3NGQxMWU3MGI4ZTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdBfDjFtHgMKB/NaLvZ17dsf6oRK
owhyHoyX2CssJ1M2cmHDXyA+nnLDmMWE7F5ipW4GMhmv1HpUUpWy9hiq6RmUUIsf
wkZgvTsgQ/5F2XMvXlGcKILhpOOFWsyZW+4vBpnLRzou9SaeUc+1FSfqSakOqe5Y
K32ZwFr2cvitNZ1gmfEN6hgcpnSpoUteqceV5SFdrvpmGfWnTSO3wSHnNfG7F13R
R4OxWRAzY5gyzoUE1BKIINc4QLToZtIOiInhsXvnZ8w7R4eyLDQXCL/Lfs6kHKrc
3dTWFWAtKQlwWRc7lh+q7nI4rLtf/KEXtQyD4IZTWnYjua8UBfZ9tTPn+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN5E2Jw7eRsNVjB3hE/nTRHnC44CMB8GA1UdIwQY
MBaAFE2jcR3F3kXy9bR5AWWelW2TgnL+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGFOeEhjWGVSZkwxdEhrQlpaNlZiWk9DY3Y0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9hODMxYzAtNDU3Yy00YmE4LWJlYzct
ZTI1MTEwOWJmZDE5LzEvVGFOeEhjWGVSZkwxdEhrQlpaNlZiWk9DY3Y0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9hODMxYzAtNDU3Yy00YmE4LWJlYzctZTI1MTEwOWJmZDE5
LzEvVGFOeEhjWGVSZkwxdEhrQlpaNlZiWk9DY3Y0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFTpnn3Wr
8KMLSoJCm3DLsSA+5zKqdwh2Bhm8Wk2Z5CZoklMOwHyi/CLLcwjbmMq8o9yKB1k/
6nU3Cz29gRiW/dzecq5i1xYoqUcf8nsjWKc+9bIsnEayWYfnEFlbPhiyAuVOnmm0
8D0D8fM+D3y30WJ9OcB+nvBvBnOe0w4efyNLtgfdDbR0nfsbMuCyYqsILMylAPp+
IN2ruJCOeXe3mPRi9ab2/CDx3LmxfOzvYtI1geMugJ84PD0NjTOMW1A2/V4OGoT3
BylKAwcHWYq5Z812KfJuN5EbNZeTI6v7rlVLmalYS9FKCf3KWpXvTJjk/HNs4Yef
g8MscTp2M7ECqQ==
-----END CERTIFICATE-----
Generated at Sat Apr 12 18:34:35 2025 by rpki-client