Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
File: tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft (raw, json)
Hash identifier: aAelle3PdonWxrHbWnbU7Af68R8EiZNpV1C1QHgvTmA=
Subject key identifier: DF:7F:C9:C4:95:B3:0B:59:20:9B:47:C6:AC:AA:6D:DE:7F:51:AD:B7
Authority key identifier: B5:94:EB:B6:74:8F:DC:12:12:7C:3F:92:7E:7F:B9:B1:AF:89:26:2C
Certificate issuer: /CN=b594ebb6748fdc12127c3f927e7fb9b1af89262c
Certificate serial: 01964F6D18EEA45B2D3065761FB47CB1C7D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZTrtnSP3BISfD-Sfn-5sa-JJiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
Manifest number: 14F8
Signing time: Sat 19 Apr 2025 19:01:11 +0000
Manifest this update: Sat 19 Apr 2025 19:01:11 +0000
Manifest next update: Sun 20 Apr 2025 19:01:11 +0000
Files and hashes: 1: tZTrtnSP3BISfD-Sfn-5sa-JJiw.crl (hash: cunz9VZFqf1bxqNqfEgv+hlXZZXNcbw+Orhc1ZYQvdA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tZTrtnSP3BISfD-Sfn-5sa-JJiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 19:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6d:18:ee:a4:5b:2d:30:65:76:1f:b4:7c:b1:c7:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b594ebb6748fdc12127c3f927e7fb9b1af89262c
Validity
Not Before: Apr 19 19:01:11 2025 GMT
Not After : Apr 20 19:01:11 2025 GMT
Subject: CN=df7fc9c495b30b59209b47c6acaa6dde7f51adb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8e:e9:bf:29:01:68:62:de:0b:48:46:b0:86:
d6:41:3c:79:19:9f:20:b7:93:5b:ff:4d:90:8b:26:
74:1c:1e:41:fe:1f:0d:1d:e3:bc:f3:a2:54:b8:32:
8b:1f:14:05:e0:61:1f:30:1b:f9:f0:9f:c1:5d:7d:
a5:29:ae:d2:0d:6a:7e:6a:31:6d:fb:d6:20:37:70:
5d:55:e7:83:a3:45:57:26:a4:8e:4a:7f:8a:d2:37:
1c:8b:e7:d6:82:ee:7f:0c:45:f2:3a:b4:54:5a:73:
87:93:1b:c6:eb:b0:31:9a:3c:88:27:07:44:af:d5:
aa:a5:e3:33:64:35:78:ab:d9:9d:a8:c1:8d:11:97:
fc:0b:08:04:ae:d9:5f:55:55:d7:9e:48:9e:5f:85:
7c:b2:f3:1d:5b:e6:13:ba:2d:96:e1:0e:3c:4b:4d:
8d:0a:df:3e:43:e6:92:b2:32:d2:1f:09:56:63:c0:
05:fc:6b:80:14:18:05:2a:1f:61:79:2e:fe:b1:a6:
cc:55:46:9b:3a:66:9f:6e:59:ca:be:b8:1b:d4:0c:
41:a3:d6:42:42:36:a5:7c:38:36:e3:39:f9:c9:01:
37:be:67:d7:70:e3:48:4c:4a:ba:d1:82:5d:8f:94:
43:7f:51:03:f4:58:cc:51:11:11:63:3e:ec:0c:7a:
7d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:7F:C9:C4:95:B3:0B:59:20:9B:47:C6:AC:AA:6D:DE:7F:51:AD:B7
X509v3 Authority Key Identifier:
keyid:B5:94:EB:B6:74:8F:DC:12:12:7C:3F:92:7E:7F:B9:B1:AF:89:26:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZTrtnSP3BISfD-Sfn-5sa-JJiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:f9:be:9d:3f:1a:fb:70:ab:3c:6c:9f:57:6d:17:40:98:80:
14:80:e9:15:db:e4:1d:88:d6:8a:9e:96:6d:8f:7d:10:43:1b:
a9:56:1a:94:83:ce:0f:a7:1c:9d:4f:1e:da:f8:1f:fd:72:85:
12:e4:66:d1:2d:d2:06:78:96:05:9d:25:d4:59:cf:38:18:7f:
cf:80:b8:9a:cc:b7:8c:31:c4:cb:79:2f:01:2b:32:88:e8:ba:
b8:7f:b5:b1:24:a2:cb:0c:b4:cd:a2:c1:59:01:4e:99:df:e8:
13:55:8b:af:55:3c:45:06:1e:1e:7b:ad:a9:13:9d:ca:fc:e9:
c9:cd:7d:e5:c1:a3:19:bf:2f:cc:13:e2:da:e0:fe:4c:5c:ae:
d4:8e:ac:6c:ba:34:73:ea:f5:94:97:16:54:72:98:c9:91:cc:
05:df:1d:0d:5b:f3:54:20:4a:b5:fe:9d:51:87:9d:2a:74:ab:
74:5f:17:e1:29:15:97:09:71:76:ae:4f:0d:e8:dd:de:51:2d:
c1:a7:5a:ae:0d:ec:eb:6b:a4:35:3e:53:27:d8:d5:42:2e:c3:
f0:a8:3a:a2:f0:84:8d:0b:7f:e2:47:37:1a:b6:40:d0:3d:5b:
b2:33:54:da:af:c9:77:88:64:8e:77:85:5e:e9:1c:16:11:a7:
56:3e:71:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:07:14 2025 by rpki-client