Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
File: tIENfJv8WLngoeWRacPdMi3p9zc.mft (raw, json)
Hash identifier: oNhOofhN/hM1ld0Zi9gjxrKD40fwKr53EIQiHKaca+8=
Subject key identifier: EF:3E:76:0A:6A:54:A7:E7:B8:B4:E0:4B:A6:84:A1:B0:46:08:BF:8F
Authority key identifier: B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
Certificate issuer: /CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Certificate serial: 01964A0F5772A40387486C0DB711CA8B806D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
Manifest number: 14F8
Signing time: Fri 18 Apr 2025 18:00:41 +0000
Manifest this update: Fri 18 Apr 2025 18:00:41 +0000
Manifest next update: Sat 19 Apr 2025 18:00:41 +0000
Files and hashes: 1: jHERjwHQQByovrguIT9kNAenUlw.roa (hash: fC13Nqgu9Ca7tsn1KpGgJ5T6X5W9BeqrdrYm3SZE1Rs=)
2: tIENfJv8WLngoeWRacPdMi3p9zc.crl (hash: 1RHdOLvfBTO6zkXdSffjA4nzx8JfHKGJdtqssL8JQvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 14:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:0f:57:72:a4:03:87:48:6c:0d:b7:11:ca:8b:80:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Validity
Not Before: Apr 18 18:00:41 2025 GMT
Not After : Apr 19 18:00:41 2025 GMT
Subject: CN=ef3e760a6a54a7e7b8b4e04ba684a1b04608bf8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:29:80:40:c2:34:63:9b:e0:66:eb:d9:5f:5e:
cb:21:11:e3:cf:ee:20:34:d5:e4:29:9e:b9:20:2b:
e5:8c:15:e7:c1:5c:1b:8b:61:ed:e6:ac:39:2d:f5:
ed:b3:e5:0d:61:76:2d:8d:72:e2:73:11:b7:f5:e7:
67:f2:d1:9f:db:7e:ae:1b:f7:8d:56:e1:80:ed:4c:
94:de:53:ad:1b:74:7d:f4:0e:bb:c4:04:48:49:8e:
2f:d2:c2:1b:d6:b6:88:fe:93:ff:ac:0e:2d:ca:6e:
9a:d3:7f:db:10:9f:81:67:0e:b5:d7:ad:80:23:32:
d7:bc:f6:f7:88:5a:c1:e3:33:dc:f1:49:e0:e9:55:
5f:32:6a:96:90:f4:ec:c0:1e:21:b4:9b:bc:69:97:
91:ea:af:61:a9:5b:e2:e5:21:12:1f:a0:63:32:b2:
a3:78:65:f1:a6:54:93:58:75:57:48:e9:cf:eb:b0:
3a:58:fa:0e:9b:96:e2:a3:c5:b6:3d:20:5e:e0:ef:
46:74:93:11:e1:fe:d7:71:80:21:17:37:27:f5:cd:
63:3c:89:eb:7b:c8:b2:ff:6a:ee:c2:48:fb:e2:05:
fb:30:cd:e5:57:af:5e:d3:3f:6c:86:1b:3c:e9:b3:
77:4e:c6:d5:80:f6:6a:46:2a:a2:b4:47:be:5e:1e:
14:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:3E:76:0A:6A:54:A7:E7:B8:B4:E0:4B:A6:84:A1:B0:46:08:BF:8F
X509v3 Authority Key Identifier:
keyid:B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:ea:42:e4:19:24:b5:2e:33:d7:0f:4d:3e:6a:dc:7e:8d:95:
82:a8:3a:bb:a7:38:6e:4e:b1:2c:44:f0:f3:48:62:77:90:18:
8c:15:2a:fc:98:3e:24:27:bc:8c:01:d7:b1:b6:93:51:82:0d:
cf:87:24:f3:e1:75:13:7d:c9:7d:31:52:b9:8d:96:10:70:28:
f7:62:69:ac:13:0d:fd:c7:2d:e3:9e:51:1c:01:a8:ee:fe:52:
7d:56:a8:5b:c1:38:bd:c7:68:4b:d6:44:c4:10:b2:f0:e9:0c:
64:18:01:2e:f2:db:ed:82:55:43:0b:9f:90:9b:76:33:72:e8:
01:e9:dc:5b:80:92:1a:e5:01:49:5f:2b:76:fc:01:22:be:06:
6e:5c:54:05:59:de:f1:f1:33:40:f4:a3:64:50:4c:ea:7a:e0:
3d:d5:1b:a5:b4:03:77:03:35:63:11:0a:e1:2b:b6:e4:c7:ea:
d0:c1:8e:7e:f2:aa:7c:ee:25:23:37:aa:e2:ed:fd:50:b8:da:
cc:36:4b:76:0b:49:cb:1e:42:08:4a:04:62:e2:86:ec:1a:4f:
23:6f:bc:19:09:db:ce:f7:11:12:45:81:1c:f6:19:82:9e:7f:
fb:4d:93:77:93:0e:96:d5:ae:7d:2d:24:68:95:93:45:b0:2b:
62:a9:5e:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:59:29 2025 by rpki-client