Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
File: TMC300XPrlNH086YtCQbkA5KnvM.mft (raw, json)
Hash identifier: 8zRuCgb+i9GCiOaY2SpuTsnpxnzrDiK3PgisZi5Vc3Q=
Subject key identifier: D7:1A:59:D4:DD:B5:7C:30:18:4D:44:86:E8:8D:20:D7:37:AF:05:C6
Authority key identifier: 4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
Certificate issuer: /CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Certificate serial: 01965537509E117695AAE59AC93779289C89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
Manifest number: 0671
Signing time: Sun 20 Apr 2025 22:00:10 +0000
Manifest this update: Sun 20 Apr 2025 22:00:10 +0000
Manifest next update: Mon 21 Apr 2025 22:00:10 +0000
Files and hashes: 1: TMC300XPrlNH086YtCQbkA5KnvM.crl (hash: YbBhIl5ruYp9QhGtMu7xqNTRbG1u3/wsd3O47sgiht8=)
2: Vh_JUxD0F48NbjyYRcDhXuGyEXI.roa (hash: RX3aXV1jt4pV7znP3Nr6a04cOEHqVMLgDW/kqRB9jNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:50:9e:11:76:95:aa:e5:9a:c9:37:79:28:9c:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Validity
Not Before: Apr 20 22:00:10 2025 GMT
Not After : Apr 21 22:00:10 2025 GMT
Subject: CN=d71a59d4ddb57c30184d4486e88d20d737af05c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:18:f2:f1:33:52:c3:14:6e:f2:bd:56:21:4a:
25:2c:fd:39:03:88:2b:6e:d2:9e:c3:49:d5:17:ec:
df:cb:fc:51:1f:1d:a5:77:b1:1f:34:90:a7:6d:ec:
5d:c0:56:5d:20:6e:3c:63:1f:56:71:b0:9f:dd:ad:
03:88:ff:53:9d:02:bf:23:c5:4f:c6:d4:60:c0:d5:
e3:35:71:57:cb:ae:04:00:91:1e:0b:a9:a3:89:bb:
7d:3e:d9:ce:47:1d:8b:04:cd:43:6d:8c:c7:b5:08:
9b:3f:83:37:1b:ac:4b:36:40:6b:46:b1:ab:65:fd:
27:57:36:da:ab:54:8c:79:4f:df:cb:c4:15:35:c2:
41:a6:ec:db:96:bf:d5:dd:f7:10:e2:0b:dc:4e:2c:
21:ae:71:93:01:b2:b5:94:6a:77:b4:c3:41:7d:74:
54:8f:28:d2:4c:78:da:92:61:f5:15:5e:15:a3:5a:
08:93:22:13:80:cd:5c:24:a0:b1:70:ce:44:ed:64:
9e:82:70:4c:69:20:a9:0d:5b:d8:ee:a5:8c:67:f9:
6c:59:e0:1d:b3:21:11:ab:48:99:5e:b7:5f:f3:74:
87:9b:0f:1f:a3:ef:28:64:62:b3:5d:b4:d5:0d:d7:
19:08:b5:44:39:9e:60:72:0a:a9:ed:a3:03:f0:e1:
5d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:1A:59:D4:DD:B5:7C:30:18:4D:44:86:E8:8D:20:D7:37:AF:05:C6
X509v3 Authority Key Identifier:
keyid:4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:9e:01:7c:2a:eb:4c:8a:66:d7:1c:91:0d:c5:77:8f:5c:e6:
fd:c5:d8:96:4b:c5:49:19:35:ff:b5:fc:3f:9c:48:44:42:b1:
ec:5b:4f:62:2e:83:f9:17:24:e8:65:17:af:12:ef:6d:56:09:
2d:bc:4a:bd:65:79:a8:f4:23:28:b4:38:51:6f:2f:cb:86:09:
70:d1:56:6d:bc:63:a1:df:76:ef:14:3a:74:7d:50:09:fb:ef:
9f:3e:48:6a:47:4c:14:a4:04:42:ef:c6:bc:01:f8:53:22:f5:
bd:c5:7c:e4:dd:3c:3c:12:9d:43:77:8d:37:5e:34:c3:fc:41:
63:ca:b0:34:1d:a6:4e:a9:3c:ab:7b:bc:a7:86:87:a6:d0:4d:
8d:6f:46:1c:e7:a4:0c:5a:c6:48:7a:52:bd:17:0c:91:83:90:
a5:47:4e:21:c9:c3:22:8f:d7:d0:7c:da:3a:82:0f:68:e8:da:
ea:a3:52:46:39:23:09:92:7e:99:b5:1d:27:29:25:5f:51:6f:
b8:c9:80:ef:83:40:c0:3d:a6:ce:6b:d2:87:bd:75:29:42:a2:
3d:1e:92:e4:06:29:95:8d:0d:61:63:df:cb:52:56:ab:dd:0d:
2c:e6:3a:2b:10:b6:1a:b0:bf:31:fa:8b:e2:18:69:c5:8a:7d:
0c:aa:96:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:05:20 2025 by rpki-client