Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
File: tpHQC9tiauVzB9XNTord2UdWgLM.mft (raw, json)
Hash identifier: bnrFwHF5QFYYLgD85vVfvTGwMAOq7jTU4A8K83jQm4k=
Subject key identifier: B3:4C:2F:DA:78:77:06:0F:C6:6F:25:7A:F8:46:DD:B6:91:49:DA:9E
Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Certificate serial: 019676E81FD7B8E523AAEBD5D993519E9B3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
Manifest number: 0DE3
Signing time: Sun 27 Apr 2025 11:00:46 +0000
Manifest this update: Sun 27 Apr 2025 11:00:46 +0000
Manifest next update: Mon 28 Apr 2025 11:00:46 +0000
Files and hashes: 1: AQvnwjdpCCJVGghqg0nwe9L0mVk.roa (hash: lmMkrxQHgFH9/tCkdiNxxBNSfZZ+AeKUjyZG6YnOW/4=)
2: tpHQC9tiauVzB9XNTord2UdWgLM.crl (hash: RY67Lsdcg1Efzby7qGjKuA8/zifqwYJYgcYWGlbd318=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e8:1f:d7:b8:e5:23:aa:eb:d5:d9:93:51:9e:9b:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Validity
Not Before: Apr 27 11:00:46 2025 GMT
Not After : Apr 28 11:00:46 2025 GMT
Subject: CN=b34c2fda7877060fc66f257af846ddb69149da9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:53:c7:f8:a3:16:5f:bc:f4:13:07:4f:cf:97:
43:51:08:49:a1:6e:15:fe:ee:7d:75:2b:a2:82:80:
28:fb:08:8b:e2:12:6e:63:96:31:7e:2d:6c:d9:51:
ea:b5:e5:e6:19:ca:57:4f:5e:18:c4:74:65:f3:82:
86:d7:2f:6c:7c:d0:72:4c:2f:47:3d:ce:63:69:17:
47:99:37:35:ab:31:13:cb:ea:fb:2a:f4:f1:6c:f1:
fd:6f:d0:c8:f6:48:fe:0e:7a:1f:d5:e2:77:d8:ab:
7a:44:15:1e:3b:4b:da:12:3c:48:16:ad:25:69:a3:
d6:66:2b:aa:24:cd:a7:38:42:5d:81:33:ee:fb:d7:
c5:41:82:cc:22:d3:ad:88:a2:8f:d0:04:b5:6d:5e:
48:f4:2b:d8:ed:39:f6:3e:55:2b:f2:13:44:70:76:
cb:c4:e7:78:04:f3:d3:26:45:e2:2e:74:16:1e:43:
b3:33:59:6a:0a:d7:ca:84:ae:56:05:e3:09:e0:9c:
3c:fa:96:77:a1:e5:3d:f3:8c:d2:20:b4:49:25:a3:
22:19:dc:0e:1d:31:e0:8a:dc:d0:22:53:a0:2a:aa:
36:64:b6:1f:b8:44:55:36:20:06:59:44:53:8a:7a:
7c:e2:c5:29:66:8c:72:8d:ab:bc:06:f7:48:10:ff:
9f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:4C:2F:DA:78:77:06:0F:C6:6F:25:7A:F8:46:DD:B6:91:49:DA:9E
X509v3 Authority Key Identifier:
keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:6e:27:10:62:7e:91:64:0b:99:11:8a:e4:31:65:f5:53:63:
cf:89:e8:04:89:d9:ca:99:80:d4:88:36:88:13:15:d7:50:b0:
f7:c1:71:18:e5:3e:fc:34:77:38:4e:08:75:42:f1:de:ac:4a:
0b:d6:16:8c:b1:77:52:09:52:3a:70:fb:8b:bd:1d:03:5d:00:
36:f3:57:a8:56:42:ce:ba:02:5f:9f:96:a1:58:ee:da:11:76:
fc:78:aa:a4:bb:f5:0f:61:3c:cb:eb:5c:d0:7b:b7:5c:f7:93:
1f:0c:41:f1:81:34:e8:0b:cc:7e:4a:ee:66:db:97:6d:c8:93:
69:be:2c:33:89:a4:28:15:76:43:7a:ef:37:4e:52:fa:ab:47:
e6:17:74:da:ee:92:90:09:e1:c4:d2:de:7e:d7:9e:9e:a7:64:
bd:a8:aa:a3:74:13:47:74:99:64:60:3c:e7:18:ec:c6:e8:2d:
bd:83:8a:a1:c7:ff:55:24:4b:6a:a4:0a:5b:0a:5f:a2:f2:b2:
16:1b:c1:bc:3d:04:0e:e9:36:a6:d2:4b:24:b2:b3:c4:7b:e6:
a6:dd:66:26:ea:f6:8a:41:e4:c5:e3:e3:a0:3b:43:be:8c:ee:
28:d2:7a:13:d7:f1:87:e6:2c:d9:95:9e:cd:a5:c4:93:90:a9:
60:6e:de:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 15:21:13 2025 by rpki-client