Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
File: _ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft (raw, json)
Hash identifier: 9i3scdWSWgLTLvaaZjhdR5I2JnllcY3qfOcW02n+wkM=
Subject key identifier: 3C:70:66:15:98:F8:97:0B:B2:02:D5:4C:BE:AF:3C:ED:29:26:CA:74
Authority key identifier: FD:E7:2D:43:F4:C8:2B:11:46:73:7B:11:61:97:23:18:30:BF:65:D6
Certificate issuer: /CN=fde72d43f4c82b1146737b116197231830bf65d6
Certificate serial: 01965349736FE27E682C68583DA0B2234534
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
Manifest number: 14FC
Signing time: Sun 20 Apr 2025 13:00:44 +0000
Manifest this update: Sun 20 Apr 2025 13:00:44 +0000
Manifest next update: Mon 21 Apr 2025 13:00:44 +0000
Files and hashes: 1: NEbsKu77gYfpibY3_TC8dQH80XA.roa (hash: aeVQJbng3C7RHWncwne+AehQ3FDANQdssqp/Bjc9vag=)
2: _ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl (hash: DEFMA8FmYmTzquRKURVhCQWnhyf4Cned5WH/q6rjpH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:73:6f:e2:7e:68:2c:68:58:3d:a0:b2:23:45:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fde72d43f4c82b1146737b116197231830bf65d6
Validity
Not Before: Apr 20 13:00:44 2025 GMT
Not After : Apr 21 13:00:44 2025 GMT
Subject: CN=3c70661598f8970bb202d54cbeaf3ced2926ca74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ae:78:30:ee:1e:c9:14:70:6c:f6:b0:93:ba:
ff:db:42:df:42:3c:4f:01:2f:8f:0d:e6:2a:19:83:
2a:1b:18:1d:fb:90:51:8c:5a:5b:46:c6:3a:28:19:
7b:16:c3:50:8a:13:cd:ec:d3:1a:9a:4c:0a:42:51:
4e:d4:ec:09:7b:72:46:ee:b2:b2:84:86:aa:c8:5a:
f8:1f:fd:86:63:43:ef:ba:92:ed:c8:8f:5a:93:fc:
6d:3d:f5:92:9a:06:c9:be:cb:42:80:86:9d:a4:ae:
d5:2c:82:71:80:65:df:8d:b5:3a:7e:71:28:75:9e:
f9:3f:e5:9c:6a:62:55:d5:46:a3:bc:fd:ff:e2:e1:
49:9e:fc:ca:fe:b4:5f:e8:b7:91:06:9c:2e:07:2d:
40:a6:ab:40:ac:d2:39:65:af:67:e1:24:c9:f5:db:
9c:b2:81:0e:01:ad:9c:0b:53:00:88:06:4b:52:52:
20:f4:f3:ca:d9:6e:3c:18:5e:2a:84:63:74:31:df:
23:d0:c8:2f:47:2e:38:64:34:dd:ea:13:b2:39:b7:
54:fb:4f:f1:0b:30:e8:14:bb:59:fc:9a:33:6e:51:
ee:66:c2:24:5a:20:85:42:70:65:b0:66:fb:10:d2:
eb:bc:c5:26:85:fb:c2:7b:6e:f1:8d:b8:c1:28:86:
95:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:70:66:15:98:F8:97:0B:B2:02:D5:4C:BE:AF:3C:ED:29:26:CA:74
X509v3 Authority Key Identifier:
keyid:FD:E7:2D:43:F4:C8:2B:11:46:73:7B:11:61:97:23:18:30:BF:65:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:10:4d:f5:11:8a:60:e5:17:d3:a0:97:02:4f:02:aa:9b:22:
bd:c7:a3:df:5c:6c:a7:06:3b:0e:8a:0f:17:e1:23:a7:c5:77:
e2:c9:b8:73:01:00:04:57:b4:1a:0a:5f:3b:2c:98:00:94:ea:
fc:1e:ef:79:59:f3:7a:02:63:d9:6a:90:3d:c6:3f:84:9b:6e:
4c:1e:00:16:2b:c9:da:fa:c1:8c:e1:d3:4a:6d:01:df:02:fd:
8b:11:92:16:36:ed:18:c7:2a:68:56:c7:43:eb:e0:95:a4:b6:
fc:8c:fe:48:b0:70:a6:4a:47:86:6a:e4:03:09:dc:64:f4:9e:
0c:43:5e:5c:02:02:0d:e1:1a:c6:dd:b7:b5:32:b5:e8:db:64:
b2:27:01:dd:97:2e:c8:39:7c:ee:b7:bf:53:fc:f3:e8:a9:a0:
b2:d7:29:f9:4b:23:82:34:b1:76:6c:f1:71:6e:fc:5f:9d:16:
80:7d:0e:8e:82:eb:07:bd:63:97:75:a1:da:5a:be:23:62:18:
59:50:09:bd:02:06:5e:00:8c:a4:5b:25:2a:6b:f6:19:6c:10:
65:11:26:1e:8a:44:95:1c:af:f1:19:1d:b9:e0:f9:3b:00:ee:
f9:e6:b5:af:d9:d9:de:57:e5:0d:56:53:3e:7c:b6:91:6f:69:
23:a9:fe:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:20:22 2025 by rpki-client