Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
File: tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft (raw, json)
Hash identifier: YnES2dO3ga+vBlA8DFiCZH2lAYPhuyMbqr26GldlB9c=
Subject key identifier: 67:3A:74:27:DA:15:95:B4:54:41:1F:6B:EC:DD:1D:82:C1:D2:DB:AF
Authority key identifier: B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
Certificate issuer: /CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Certificate serial: 01958EBD270A9AF02A6A6CB9F5A1AB2B70C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
Manifest number: 0AC8
Signing time: Thu 13 Mar 2025 09:01:55 +0000
Manifest this update: Thu 13 Mar 2025 09:01:55 +0000
Manifest next update: Fri 14 Mar 2025 09:01:55 +0000
Files and hashes: 1: 6mSAzptlMtavroiRBEbzErufO08.roa (hash: lJ5Bp/WretmXqwZLM24/DP1Oy5iyysz4o7F+olg5yZQ=)
2: tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl (hash: ZY27q63+Fw58reEnKJ/YCnffY2pcqX+LEoXpJ4Wp/Ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:bd:27:0a:9a:f0:2a:6a:6c:b9:f5:a1:ab:2b:70:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Validity
Not Before: Mar 13 09:01:55 2025 GMT
Not After : Mar 14 09:01:55 2025 GMT
Subject: CN=673a7427da1595b454411f6becdd1d82c1d2dbaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:21:64:2a:4b:26:b2:2e:14:8c:dc:a6:a7:95:
c8:83:8d:34:a8:d0:9d:00:db:ac:77:22:d6:06:98:
26:64:ca:1c:b6:ef:43:eb:12:38:cc:cd:3d:71:ac:
b0:04:82:71:d1:04:8e:80:bf:19:b1:23:50:b5:6b:
a9:eb:8b:bf:90:5d:9f:a9:81:51:b5:fd:00:a3:0e:
4f:47:db:34:c7:93:9d:96:be:45:95:8a:e4:97:8a:
75:d9:3f:15:eb:04:d5:d4:1a:c5:53:09:84:a6:31:
b9:a1:6d:2d:ee:35:5d:ae:fa:d1:3b:b0:7f:5b:c7:
d0:98:a3:99:b0:f8:8a:69:4a:bd:a0:c4:a9:c8:11:
6b:f7:56:3b:d9:29:50:f8:2f:72:db:79:c0:b2:49:
91:9e:7c:7a:47:e2:a6:a3:37:73:e2:2e:e8:72:42:
92:5e:1a:1a:cd:b1:e9:65:78:42:b6:c5:bf:91:d4:
53:9c:9a:cd:ab:65:d8:19:c8:88:02:65:ac:e9:d4:
1f:14:41:2c:e2:99:0e:64:37:ec:90:cb:df:7d:90:
36:d8:54:88:d2:6a:25:df:2e:9b:2a:97:f4:58:67:
2e:fd:21:74:7b:12:b7:72:73:d5:e1:46:23:8e:61:
11:91:6b:7b:ac:c5:19:d2:f7:42:1d:ae:f3:c0:76:
04:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:3A:74:27:DA:15:95:B4:54:41:1F:6B:EC:DD:1D:82:C1:D2:DB:AF
X509v3 Authority Key Identifier:
keyid:B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:9d:c2:58:0b:9b:8d:26:bb:b4:5f:22:dd:e7:b7:1d:39:7b:
f9:24:5f:63:95:c4:56:ee:59:0b:89:bb:8a:bc:9c:eb:88:a2:
5f:85:58:cb:bd:d5:06:9c:e6:f1:5c:16:40:26:a0:3c:47:e5:
24:95:77:33:72:ff:be:37:7c:44:60:9d:7a:36:34:d6:6a:00:
91:f9:1c:57:a2:15:fc:7f:8e:6b:f2:f7:1a:91:7b:30:fc:aa:
0a:5e:c8:e8:ba:65:0c:0f:6c:ce:b1:66:c3:91:c3:f0:05:d8:
61:e9:f1:7d:89:5e:ea:a8:56:48:c9:8b:12:76:d7:41:69:4c:
89:21:aa:2a:47:28:77:30:95:70:b7:6f:1b:67:8c:34:9c:19:
99:ec:da:82:eb:0e:a0:84:d0:3c:ae:c8:4d:13:d5:1a:d4:6f:
67:4d:3c:22:7b:a7:0f:a2:cd:58:32:b2:59:98:0d:0b:6a:db:
6b:45:9d:b2:48:57:bf:f0:db:ce:33:86:78:af:77:2d:52:d7:
eb:ba:53:4b:45:d2:a8:e9:b0:d6:6c:30:0a:c4:8c:b4:7c:e4:
66:a2:82:b4:68:a9:ef:7a:f9:5e:f1:29:00:54:27:81:f0:3c:
a4:a1:c9:09:8f:a1:5b:e8:58:f6:39:f7:27:55:fc:c8:90:1d:
05:d1:59:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:50:05 2025 by rpki-client