Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/f30602-5fa2-4ab8-99e7-c07f6c5a0aa7/1/TnxZtb-73klP0T13jm8i3adJYsE.mft
File: TnxZtb-73klP0T13jm8i3adJYsE.mft (raw, json)
Hash identifier: mTmN8JNNTNF7l9lfjTbwNyqTPtmXVDEO42hAspdaB0E=
Subject key identifier: B7:BF:29:0D:0A:3A:18:C1:D6:5F:A9:D5:94:A4:B7:60:F3:28:49:36
Authority key identifier: 4E:7C:59:B5:BF:BB:DE:49:4F:D1:3D:77:8E:6F:22:DD:A7:49:62:C1
Certificate issuer: /CN=4e7c59b5bfbbde494fd13d778e6f22dda74962c1
Certificate serial: 01964D7E1D8334A0C2267B49827F759B7042
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TnxZtb-73klP0T13jm8i3adJYsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/f30602-5fa2-4ab8-99e7-c07f6c5a0aa7/1/TnxZtb-73klP0T13jm8i3adJYsE.mft
Manifest number: 083C
Signing time: Sat 19 Apr 2025 10:00:32 +0000
Manifest this update: Sat 19 Apr 2025 10:00:32 +0000
Manifest next update: Sun 20 Apr 2025 10:00:32 +0000
Files and hashes: 1: TnxZtb-73klP0T13jm8i3adJYsE.crl (hash: s5RXE84cL1JgyItcTGOYyOOnbRQo66ytIPgliHzmUmk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/f30602-5fa2-4ab8-99e7-c07f6c5a0aa7/1/TnxZtb-73klP0T13jm8i3adJYsE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/f30602-5fa2-4ab8-99e7-c07f6c5a0aa7/1/TnxZtb-73klP0T13jm8i3adJYsE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TnxZtb-73klP0T13jm8i3adJYsE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:1d:83:34:a0:c2:26:7b:49:82:7f:75:9b:70:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e7c59b5bfbbde494fd13d778e6f22dda74962c1
Validity
Not Before: Apr 19 10:00:32 2025 GMT
Not After : Apr 20 10:00:32 2025 GMT
Subject: CN=b7bf290d0a3a18c1d65fa9d594a4b760f3284936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:20:a9:5b:81:51:ce:79:2e:ce:c8:1c:42:8a:
d8:63:46:68:de:30:f9:ba:8f:0b:25:cc:c8:c9:2e:
3d:86:9e:2a:33:af:6f:57:0d:70:44:b1:a1:9b:88:
5d:77:1a:68:60:fa:36:35:94:da:88:fb:6b:ec:4e:
99:99:9f:b4:59:f3:78:6f:ce:f6:07:68:46:a2:a6:
b3:e9:94:91:b9:76:8d:8f:6a:48:15:ff:99:68:b7:
f1:06:c6:f4:24:c6:16:e7:20:bb:3f:0a:ab:b3:4d:
3e:49:4a:d0:31:2f:70:d0:e6:70:71:24:5a:f7:a2:
00:62:52:d0:c1:c9:40:5a:87:3a:48:35:67:41:30:
ac:54:76:43:55:9c:60:29:c2:df:99:73:b3:28:03:
67:94:20:7a:b7:6e:fc:02:ef:bd:a6:37:d7:e0:f8:
84:b0:3d:a0:86:61:5e:f5:21:23:79:39:46:86:52:
b7:fa:d4:30:62:7f:34:4f:b7:e0:87:9f:fa:be:1f:
16:2f:1c:db:eb:ea:58:35:5b:88:e2:f9:60:8d:b8:
03:8b:75:55:6a:c4:3a:5f:66:98:a7:6c:4d:37:2e:
6f:3a:53:ff:b6:c1:56:f1:cf:aa:88:82:04:4b:ba:
d5:1c:9c:55:76:2f:fd:38:d3:4a:9a:9e:9e:9e:79:
1d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:BF:29:0D:0A:3A:18:C1:D6:5F:A9:D5:94:A4:B7:60:F3:28:49:36
X509v3 Authority Key Identifier:
keyid:4E:7C:59:B5:BF:BB:DE:49:4F:D1:3D:77:8E:6F:22:DD:A7:49:62:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TnxZtb-73klP0T13jm8i3adJYsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f30602-5fa2-4ab8-99e7-c07f6c5a0aa7/1/TnxZtb-73klP0T13jm8i3adJYsE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f30602-5fa2-4ab8-99e7-c07f6c5a0aa7/1/TnxZtb-73klP0T13jm8i3adJYsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:0b:44:0c:48:08:4c:0a:1c:70:04:3b:ce:4d:36:cf:0d:c6:
ff:3d:94:8f:bc:7b:3c:08:e3:9b:d6:16:e0:88:1e:ed:fe:bc:
e7:1d:13:df:12:be:07:5e:87:65:53:00:c9:f2:85:05:03:53:
19:66:32:2a:85:28:d9:eb:48:53:c7:18:e1:9f:9d:f9:19:70:
de:f4:e4:88:83:4e:47:c3:32:e2:3b:66:15:5d:f7:2c:1e:b1:
5a:d2:dc:15:fe:5d:a1:1f:ef:c1:03:b0:d9:02:70:0e:5d:b9:
92:d8:9e:34:85:11:a8:6b:3c:f3:a2:7d:d0:bb:bc:95:77:70:
8b:76:4e:4f:eb:dd:57:7d:d0:35:25:ff:9a:72:d5:ec:81:6d:
71:71:67:89:10:7b:a2:c2:8a:f4:e2:b1:6c:f3:da:c1:dd:02:
9e:ac:e2:f8:21:30:8d:29:67:41:3b:28:2d:57:f6:ca:0b:47:
70:f6:8e:34:f0:34:60:37:cc:ab:1c:3c:d5:c6:dc:07:30:8c:
cd:dc:b4:d8:99:62:2d:d6:f7:2d:3f:a9:91:6e:9c:db:8d:42:
2f:76:06:4f:be:ae:0d:f9:3f:a7:75:60:fc:0f:a4:1a:ed:0b:
8e:23:98:8e:71:4b:f3:9d:27:22:56:9a:99:f6:fe:18:a9:80:
c6:d1:0b:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:03:47 2025 by rpki-client