Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
File: TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft (raw, json)
Hash identifier: OefM8vSSYwL/vtCbLBhFTfiPNg5xcT5DQMrP9X3VAds=
Subject key identifier: 53:AD:6D:75:A8:6C:9E:12:2B:98:00:A7:70:ED:DF:A3:4C:83:D1:BC
Authority key identifier: 4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
Certificate issuer: /CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Certificate serial: 01967C7BEAB12B4C54D233E8E99D3FC93754
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
Manifest number: 14A4
Signing time: Mon 28 Apr 2025 13:00:17 +0000
Manifest this update: Mon 28 Apr 2025 13:00:17 +0000
Manifest next update: Tue 29 Apr 2025 13:00:17 +0000
Files and hashes: 1: TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl (hash: a90rEbHyQng8WlCM870NN/Ry7QZ70UHJygmOkOcC/K4=)
2: ilNe5KDmG0o6LZVjHMLtOGd-0DQ.roa (hash: JkEgQ36ayeHC4m0mo3MRV7E4gABrbKLeaaxVJdDM2eE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:7b:ea:b1:2b:4c:54:d2:33:e8:e9:9d:3f:c9:37:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Validity
Not Before: Apr 28 13:00:17 2025 GMT
Not After : Apr 29 13:00:17 2025 GMT
Subject: CN=53ad6d75a86c9e122b9800a770eddfa34c83d1bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c1:83:3b:92:da:72:c0:8c:7d:a1:3e:5d:ed:
05:db:6a:c2:bb:43:43:49:d0:6c:4b:e8:7f:ed:01:
eb:b8:2f:30:78:14:f3:c9:0b:14:b9:c6:90:0a:3a:
ed:f6:fa:5d:7d:d0:8b:b1:32:c6:09:7e:2c:89:29:
47:9e:3b:e4:cb:2c:8b:ad:65:95:04:72:e7:99:9c:
24:1c:58:c5:ee:d5:42:09:b0:ab:f6:60:59:70:67:
32:30:49:f2:c7:f4:ee:63:42:0f:7b:03:d7:25:bb:
81:5c:60:c5:70:ca:39:f9:2a:9f:f7:27:72:68:83:
d2:dd:cd:81:a5:22:7f:72:05:75:c5:cb:5b:48:94:
ff:0d:23:33:99:1b:30:94:9a:da:78:24:2a:4b:c7:
1b:27:58:39:36:c2:05:7e:75:fa:33:3a:0a:e9:c6:
01:f6:c2:fb:ad:09:84:97:dd:59:95:33:7f:fd:7d:
63:5f:6e:c8:86:dd:d4:51:d9:70:8e:e0:70:17:cb:
af:9c:c6:4d:a8:8b:22:ae:52:fe:14:89:5e:21:df:
ea:33:9f:3e:35:99:d7:3a:34:14:65:85:42:33:90:
84:08:dc:f7:9e:6d:5c:c8:d6:7b:c2:d6:24:8d:47:
da:9d:8b:f4:83:12:2a:e1:9e:e1:1b:09:cc:bb:0f:
fd:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:AD:6D:75:A8:6C:9E:12:2B:98:00:A7:70:ED:DF:A3:4C:83:D1:BC
X509v3 Authority Key Identifier:
keyid:4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:bf:ab:da:aa:1c:17:76:0f:f3:25:e4:e4:a8:c9:c2:be:d4:
22:09:6b:25:05:0b:5e:98:55:d9:f1:70:30:92:06:02:bb:e1:
9f:9d:1e:1a:77:e4:13:d0:0b:8f:85:41:bf:50:30:67:c1:a9:
86:80:6e:b3:1b:a5:87:7e:f4:c2:b7:c6:8b:73:d3:0b:f4:2a:
85:ac:f9:38:1f:66:31:a7:42:ec:5c:b6:a2:67:f5:04:4b:27:
fa:b1:ec:b6:48:d3:e8:5d:ad:b7:b1:90:60:9c:d1:68:83:0e:
17:6c:02:7a:9c:1b:d5:64:78:60:8d:2a:28:39:50:b6:f0:be:
58:1f:16:63:8b:cb:7b:8c:cf:d0:ef:4c:00:d7:f7:a5:08:c5:
c3:4d:2c:c9:1b:99:8a:1c:a2:bb:77:50:03:cb:ad:d0:73:6b:
43:99:b7:e1:0d:5b:b8:a8:dc:51:c7:1b:fb:e7:6e:1e:d3:c8:
a1:6e:50:e1:23:d0:cc:19:62:b3:5b:dd:9f:60:a7:8d:2d:cc:
56:e1:96:bc:6b:66:96:c3:ff:39:c0:d1:82:39:12:61:7a:4f:
d5:ec:bc:b5:17:a5:0c:0b:5c:3b:63:97:ea:27:5b:9d:ad:82:
24:87:73:43:b1:0a:ce:ff:70:c5:3b:25:15:94:be:1c:30:c3:
0b:b5:c0:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:25:12 2025 by rpki-client