Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
File: _tdzOdk4vvCHWZKTwgGzufgiNiM.mft (raw, json)
Hash identifier: ANzUZxWfE/J+kBhuxYmiyoWfFMKfTMiAL5l3NRJZHNA=
Subject key identifier: A8:3C:20:B4:CC:85:3D:36:77:C2:EE:33:C9:EF:4B:27:76:C0:CF:CB
Authority key identifier: FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
Certificate issuer: /CN=fed77339d938bef087599293c201b3b9f8223623
Certificate serial: 01964AEB2AAAD57EB509851B9913ABAC3279
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
Manifest number: 148A
Signing time: Fri 18 Apr 2025 22:00:47 +0000
Manifest this update: Fri 18 Apr 2025 22:00:47 +0000
Manifest next update: Sat 19 Apr 2025 22:00:47 +0000
Files and hashes: 1: JiqQ-b59vNl0MF5eVXzf0TfeO3c.roa (hash: OKAd29RpT9wnjVFO/8cLOZm/b/ev+jNX/rx5kLKiews=)
2: _tdzOdk4vvCHWZKTwgGzufgiNiM.crl (hash: sXiG4o1hzzpxCdZxEmwmxTzgwucvg1Gpe9PO1uz7er8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:eb:2a:aa:d5:7e:b5:09:85:1b:99:13:ab:ac:32:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fed77339d938bef087599293c201b3b9f8223623
Validity
Not Before: Apr 18 22:00:47 2025 GMT
Not After : Apr 19 22:00:47 2025 GMT
Subject: CN=a83c20b4cc853d3677c2ee33c9ef4b2776c0cfcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fd:75:f6:1b:f7:c4:c6:f2:29:63:db:2a:49:
91:61:f0:e2:e5:3a:4c:0e:d5:5a:cd:95:3e:2d:b5:
19:68:09:31:28:9c:2c:d1:09:94:19:e5:33:51:2d:
11:26:4c:0a:67:17:f1:3e:bb:70:99:89:8c:d8:0e:
0a:5e:67:ee:db:2d:a8:c2:ae:c4:b4:4b:dc:b1:93:
af:7a:5a:58:b8:9f:77:2d:30:fa:0d:eb:c6:ae:70:
df:a5:3c:a8:29:3c:3e:90:29:91:6b:d8:1c:e0:89:
5e:ea:4d:49:49:ab:5e:47:25:88:73:6f:b5:cd:4a:
1c:44:6b:43:84:3b:24:7c:77:7c:69:dd:b4:f4:7b:
5b:36:60:37:6c:56:16:b9:9b:36:bd:4b:ba:d2:54:
2a:40:b8:c8:a4:bd:f7:1d:31:a0:f5:a3:14:1b:19:
5d:3a:7c:50:b3:f9:2a:49:a0:28:01:58:0d:18:6c:
74:15:5b:86:c6:19:17:1b:21:1b:c5:a4:17:77:a2:
0f:f1:2a:07:57:4b:6f:3d:62:48:00:0b:a8:2e:05:
67:06:0f:4e:e5:d8:3c:bd:7b:a6:2b:77:11:4a:45:
40:87:a6:2e:3c:56:7c:e6:3c:3a:ec:6a:87:2b:f9:
d2:e6:f0:fa:90:89:ec:f9:b2:e3:46:0d:94:19:3b:
26:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:3C:20:B4:CC:85:3D:36:77:C2:EE:33:C9:EF:4B:27:76:C0:CF:CB
X509v3 Authority Key Identifier:
keyid:FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:cb:15:ff:5f:98:75:4a:7c:83:07:c8:5d:44:c3:51:e7:57:
43:84:9a:d4:13:f0:65:2f:bc:fd:0b:6c:ff:b5:b2:a8:81:c6:
58:f6:42:f8:34:17:1f:9d:fa:6b:47:e9:35:d7:fb:ab:ee:ec:
56:d9:77:01:94:de:89:e4:be:b9:78:cb:ed:82:bb:5e:d7:ee:
16:bb:ab:55:63:6f:aa:a4:9b:48:e9:b0:0d:ed:f4:5c:ab:a9:
70:9c:81:ae:1e:d2:48:fd:76:cc:9d:17:73:c1:4b:eb:9a:07:
b4:8c:d4:0e:81:1d:b4:5d:bd:da:7b:84:ad:cc:9c:a2:de:3e:
01:46:c0:7f:cc:30:34:dc:5a:fb:b4:48:08:22:db:91:10:f4:
b5:37:4b:20:a6:d4:52:ce:ab:90:ba:6c:89:f6:39:9d:ee:51:
25:51:c7:a7:49:8c:4c:bf:80:f2:9c:34:95:40:3f:19:9d:36:
cd:51:72:70:eb:78:05:dd:27:1f:1d:f2:51:ba:3c:0f:bb:16:
cb:26:84:52:fb:ce:5c:e6:e2:6e:c8:62:b4:6e:b9:24:41:19:
78:4b:7b:95:ff:81:43:f3:04:5d:dd:e7:2d:c3:2f:48:9e:a1:
ee:c2:e1:03:d3:9f:a1:5a:de:06:4e:33:b5:7a:df:53:2f:5d:
be:e5:af:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 02:11:09 2025 by rpki-client