Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
File: tE-FORdNAL-ov95JBD9IXDpYdSU.mft (raw, json)
Hash identifier: FLAutbqQxSGGRHwXpHV/FuKw7Ar6OwqLMldKrWUb8Y4=
Subject key identifier: C3:98:45:0D:F1:DD:B0:FC:79:2A:10:1F:58:52:88:04:99:55:C6:8D
Authority key identifier: B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
Certificate issuer: /CN=b44f8539174d00bfa8bfde49043f485c3a587525
Certificate serial: 019645C59D6BFEFF1585FAFB41A4E495AAA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
Manifest number: 14F4
Signing time: Thu 17 Apr 2025 22:01:40 +0000
Manifest this update: Thu 17 Apr 2025 22:01:40 +0000
Manifest next update: Fri 18 Apr 2025 22:01:40 +0000
Files and hashes: 1: tE-FORdNAL-ov95JBD9IXDpYdSU.crl (hash: u46Gd7Kc6yqQEllvMPz+5IAUDg9HVIfQwdpdl+BDK2s=)
2: xUV-1OBQ9tZ_Xv0-wwfyT7s6w0s.roa (hash: kyqwYkE6bzY0EYwjT0bnHVarYHy1IZctjgwIpdkE7zI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:c5:9d:6b:fe:ff:15:85:fa:fb:41:a4:e4:95:aa:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b44f8539174d00bfa8bfde49043f485c3a587525
Validity
Not Before: Apr 17 22:01:40 2025 GMT
Not After : Apr 18 22:01:40 2025 GMT
Subject: CN=c398450df1ddb0fc792a101f585288049955c68d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0e:b0:c1:7c:69:0e:ca:20:28:5d:58:26:06:
2b:33:e6:bc:5c:a8:9a:02:a3:51:9e:7e:0e:1a:59:
e5:e1:f0:56:25:4b:81:94:36:74:f9:d5:dd:94:3e:
e7:82:d8:a4:64:e3:ba:68:96:0c:9e:9d:e6:10:81:
79:d4:65:2f:d4:22:b0:3f:85:77:b3:37:e3:ed:c0:
16:3f:a1:f4:41:18:c3:bc:21:37:0d:b8:a5:64:e0:
3a:a4:10:6d:42:b1:0a:de:62:eb:83:f8:dc:df:39:
04:08:d9:04:a6:90:3f:65:b5:1e:41:4c:87:9e:42:
af:2d:ff:05:2f:ad:d9:47:ad:19:20:aa:3f:76:1f:
d6:fd:0e:7b:fc:6d:2b:f5:be:2c:12:8b:13:63:5b:
28:4b:1b:21:4f:c1:2d:a2:b8:f3:84:7f:c6:20:f8:
5c:fa:8e:bb:24:90:2f:fd:e0:70:78:c5:8c:d5:54:
88:fa:fe:17:41:d9:cd:ca:dc:97:0a:25:ac:50:fe:
db:84:93:85:f1:e5:bd:47:30:74:f4:d2:e7:8a:f7:
a4:97:eb:d1:75:8e:83:37:c7:e2:25:91:7e:e3:0e:
d4:65:7d:ca:e7:15:67:e4:d7:2f:24:9e:5a:ca:e8:
fd:8c:ae:4b:0f:ff:41:71:0e:c2:c3:be:2d:e9:4e:
19:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:98:45:0D:F1:DD:B0:FC:79:2A:10:1F:58:52:88:04:99:55:C6:8D
X509v3 Authority Key Identifier:
keyid:B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:e8:70:81:48:60:65:dd:48:bb:dc:a2:80:1b:e0:15:f5:0f:
64:f5:b6:5a:76:06:23:7a:2b:58:99:9f:d0:e8:95:24:a6:91:
cb:44:98:12:de:0f:b6:96:39:ca:96:49:31:b3:8c:74:7e:a3:
41:4b:2a:7b:fc:ac:2a:12:18:d7:c1:84:d1:86:08:6d:5b:61:
47:5c:36:00:26:ff:b4:f1:fb:95:2b:6c:56:d6:c0:6b:f6:22:
c1:82:0e:49:6f:ab:15:dc:75:53:b6:bd:31:75:7d:5c:79:ff:
a8:1b:e5:fb:2a:b1:d4:e6:af:ae:a2:2b:a6:bb:f6:81:05:6e:
2c:f0:04:72:5a:36:5a:c1:12:86:c8:d1:8c:a7:6d:5a:a8:a6:
70:35:ce:6d:78:f6:13:8c:28:a1:6d:97:b7:75:70:ab:ad:f7:
e3:f6:fd:cf:cf:d6:3e:88:db:5c:03:94:51:a4:48:0b:20:1c:
14:d6:6f:ee:55:8a:26:9b:68:e2:0f:09:d5:b1:9d:35:b1:ad:
6b:1c:c8:d8:20:03:21:77:f6:bc:ba:76:c3:44:59:0e:9a:d7:
fa:0c:8f:3a:5d:82:69:53:78:3c:de:bb:bf:9a:2f:ff:73:37:
e1:22:82:d2:9b:a4:98:f5:69:aa:fb:8e:76:40:51:5e:6e:19:
b3:39:fb:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 01:22:21 2025 by rpki-client