Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
File: tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft (raw, json)
Hash identifier: qva73laKDwS8NZuzU+WLMHqBWuTJJAFvfPiFDHv+oKo=
Subject key identifier: 83:4F:C9:CD:2C:FD:DC:F4:86:16:CF:18:ED:6A:3D:6D:1A:C8:56:C3
Authority key identifier: B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5
Certificate issuer: /CN=b4714bfd982ed297e5c73ece74d222e5274c1fb5
Certificate serial: 019685B644620877134E92874B6F5BBDD12A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
Manifest number: 123E
Signing time: Wed 30 Apr 2025 08:00:36 +0000
Manifest this update: Wed 30 Apr 2025 08:00:36 +0000
Manifest next update: Thu 01 May 2025 08:00:36 +0000
Files and hashes: 1: j1BO9Furs7_Q3tvlbetVSRlAckY.roa (hash: tdoQUM0H+jW+enIWtoFRlfboER49yX/MAZeA5JaKIMs=)
2: tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl (hash: TJdNzpB9EkcqdW6l435R81tWJVCjgvX4MxHjRitB6a4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:b6:44:62:08:77:13:4e:92:87:4b:6f:5b:bd:d1:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4714bfd982ed297e5c73ece74d222e5274c1fb5
Validity
Not Before: Apr 30 08:00:36 2025 GMT
Not After : May 1 08:00:36 2025 GMT
Subject: CN=834fc9cd2cfddcf48616cf18ed6a3d6d1ac856c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:25:a6:97:a5:ae:85:bb:d6:d6:76:ac:66:40:
45:ce:5c:49:61:e6:f9:de:b4:92:b5:3e:f1:52:a8:
be:ee:e7:8c:65:c3:e5:5b:2a:75:34:ff:08:69:05:
c5:05:43:1e:a2:a8:31:a5:1e:cf:4c:6a:91:50:2f:
dc:85:1e:65:0b:c7:14:4b:54:72:64:bf:bf:5f:b1:
94:9f:2b:52:6b:d6:ef:c7:c5:b7:1e:a7:3e:9b:b6:
d4:20:49:e3:80:9f:40:20:71:bb:70:49:d1:4d:99:
e6:48:46:2f:c9:ae:87:69:ea:8c:b4:7e:ff:d7:84:
00:d1:ae:47:5b:73:ea:d7:af:f1:7e:34:5e:6d:44:
f5:c4:ed:92:67:0c:e2:63:af:b6:7c:e3:13:39:a6:
c2:ed:7f:da:6f:56:9f:c8:52:9f:00:38:a9:dd:22:
73:03:18:55:a8:4c:f8:61:bd:71:d2:8c:3b:4f:82:
da:45:a1:ea:e1:7c:54:4e:24:4b:e6:2d:31:c7:a1:
85:d7:95:4b:3c:68:7c:fd:95:a9:52:53:39:4d:a7:
22:95:83:48:31:6e:2d:ce:48:d6:67:9d:72:c9:99:
6a:d8:83:15:1b:f9:ca:e8:49:7b:e4:ec:46:bb:58:
77:96:8c:04:0d:d5:8e:a3:55:80:24:5c:e7:24:0a:
f1:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:4F:C9:CD:2C:FD:DC:F4:86:16:CF:18:ED:6A:3D:6D:1A:C8:56:C3
X509v3 Authority Key Identifier:
keyid:B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:4b:36:11:3c:c4:88:c0:c1:c5:02:58:3e:1e:67:9b:a1:ef:
5d:ee:7b:51:51:20:6b:02:fd:f9:09:8d:37:c6:9e:b2:15:d5:
18:ca:77:a5:04:f5:73:d2:48:c6:4f:ed:9c:0f:0b:72:dd:72:
82:02:e4:25:19:1b:79:7c:a8:72:a9:ad:a8:1c:39:90:c5:04:
45:83:7b:74:ca:d0:20:cd:fa:90:1d:ee:04:bf:94:5b:41:7e:
91:a0:19:2f:a8:1f:08:c1:55:d0:f6:37:4e:21:e2:22:e0:70:
5c:6a:e4:c3:93:e7:b0:b3:25:da:00:71:ae:ac:39:74:4b:10:
59:aa:29:45:57:29:ff:4d:31:d6:07:e3:32:39:60:fd:9a:08:
a7:f4:8c:fc:b1:38:87:ff:70:4b:e8:48:47:74:6c:04:02:aa:
90:eb:96:ee:e4:47:ff:5c:5e:21:f1:34:92:f1:c5:3b:22:b7:
d8:7d:90:74:c3:0e:9d:9c:43:5f:62:63:23:66:ac:49:ae:36:
c1:39:96:d1:12:05:3b:2a:0b:01:6c:19:3b:00:7a:2d:c2:8a:
8e:39:c2:b2:83:83:f0:0f:0c:32:48:79:43:92:09:ba:85:fb:
1a:a1:db:0d:fb:cc:59:ae:54:62:18:bd:5a:4f:5d:63:3d:bf:
69:64:e3:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 13:38:40 2025 by rpki-client