Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
File: TBdAzvl0ncKw9fiM3xA02oHWBtw.mft (raw, json)
Hash identifier: r/YchVzQO818zHIGYQSHifzeFLOiXvo5rUC0vD+gpDQ=
Subject key identifier: 5D:65:5E:A9:32:FC:7B:33:4F:2B:32:E8:F5:B5:96:C2:B7:67:32:F3
Authority key identifier: 4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
Certificate issuer: /CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Certificate serial: 01967530896E141681050F67244DAC019F6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
Manifest number: 0E8D
Signing time: Sun 27 Apr 2025 03:00:37 +0000
Manifest this update: Sun 27 Apr 2025 03:00:37 +0000
Manifest next update: Mon 28 Apr 2025 03:00:37 +0000
Files and hashes: 1: 9UfG7ZfqsnxXdNjOVBB4EufGuiU.roa (hash: nBGGqWZhxqHLJh+Oq/1SCIlZ0ENh9e+rLU6y/LQvQNA=)
2: TBdAzvl0ncKw9fiM3xA02oHWBtw.crl (hash: lowkIl8w2ZINIKtb9xddNwMq23Y3ASBC1Y/9sfdNVAs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 03:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:30:89:6e:14:16:81:05:0f:67:24:4d:ac:01:9f:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Validity
Not Before: Apr 27 03:00:37 2025 GMT
Not After : Apr 28 03:00:37 2025 GMT
Subject: CN=5d655ea932fc7b334f2b32e8f5b596c2b76732f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:bf:57:b8:72:40:21:38:7f:af:90:23:97:78:
af:ee:31:72:4f:bc:1b:a5:70:0a:7d:c5:df:d1:d9:
45:c6:65:45:0a:d4:91:a5:16:36:1b:f8:fc:a2:cf:
0c:07:ab:4f:18:50:cf:4b:73:ee:d5:7c:93:47:c5:
1e:91:e9:cf:df:66:6c:81:23:3f:1c:3b:06:e4:d2:
31:e4:5b:02:cf:8d:7d:3f:5c:91:1a:51:68:45:38:
6f:d6:71:d4:5b:d8:0b:70:57:62:b7:85:5f:ab:2c:
cc:c4:b8:cb:58:a9:7d:25:71:e9:e9:67:fd:16:a4:
94:aa:d9:43:b1:8e:8b:5a:08:f1:c9:69:32:32:f9:
9c:db:23:da:52:6a:65:3e:b1:23:2e:0d:8d:13:85:
ec:72:aa:bb:ed:45:2c:97:1d:4d:e8:b7:9d:e5:24:
bb:77:b9:31:9f:ab:20:38:6a:e3:7c:e1:66:57:d1:
8e:c3:62:eb:0d:db:e1:3f:2e:20:f6:82:80:87:aa:
35:85:d8:21:d6:19:00:a8:e0:13:91:47:00:d4:b0:
eb:2e:97:78:44:0c:c4:bb:97:19:52:fe:2f:6b:1f:
af:44:5c:92:ca:6e:21:50:00:1c:0e:89:fe:9c:8d:
1f:86:9a:cb:d3:1b:32:a5:1c:3c:c0:6f:54:bb:88:
53:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:65:5E:A9:32:FC:7B:33:4F:2B:32:E8:F5:B5:96:C2:B7:67:32:F3
X509v3 Authority Key Identifier:
keyid:4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:1b:be:0e:af:fc:e5:fe:f2:84:8c:ed:fe:84:a8:21:70:41:
aa:3e:67:d6:ae:a4:06:63:8d:2b:45:4d:dc:f7:30:01:89:f8:
12:22:68:3e:fb:69:9a:35:19:cd:9b:b5:18:01:5f:c8:2c:a6:
4c:df:37:11:af:8e:0c:f1:33:52:95:87:64:a3:40:20:fc:a8:
9b:59:2e:42:5e:da:b7:b8:eb:d3:10:87:ab:d5:da:bc:29:5b:
0d:6f:fe:f3:52:9b:69:f7:d7:f5:68:d8:86:28:fd:7c:34:5f:
24:27:68:b6:e1:43:9f:10:d9:55:e5:50:00:b4:f5:d1:66:ec:
46:b3:7c:32:fc:fa:6b:85:a0:f5:75:46:62:3c:07:6d:dc:82:
c1:27:27:00:97:b0:0c:62:e7:7a:24:f4:94:0e:d5:98:14:87:
dc:1a:be:51:95:6c:de:18:d7:6a:1a:a3:9f:b7:e2:f9:d4:db:
67:78:49:97:82:10:89:ee:8b:e6:14:eb:f6:57:05:ee:0f:cb:
f4:80:89:7a:4b:d4:e8:5e:86:dd:0f:e5:94:ee:66:f2:5b:41:
d3:a3:d7:5a:a9:17:5f:16:09:39:94:4d:be:2a:d5:6a:d4:e5:
d4:71:33:5d:1c:3d:23:a9:67:f3:ac:df:22:67:e0:a9:2d:fb:
54:c8:d4:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 10:22:38 2025 by rpki-client