Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: uPRAYTFIzLZv9Bi5gsMEAn6mtm2C2kcFhjb/b8gccow=
Subject key identifier: 90:2A:32:EA:53:AF:43:05:8E:DB:65:8C:06:D2:D3:CD:CB:FF:81:8A
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 019682B5768926357630888761B054B7A989
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 1516
Signing time: Tue 29 Apr 2025 18:00:52 +0000
Manifest this update: Tue 29 Apr 2025 18:00:52 +0000
Manifest next update: Wed 30 Apr 2025 18:00:52 +0000
Files and hashes: 1: DvRXNlTCR35yGxJPggKI6LQ1TXY.roa (hash: uCs5edSvBBj2KY6s6HL8wAMD7pMX49G3e3NvxavAQGo=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: CWOQIh0pcFb1h/LiHOlTvM5xTtPlWaw1mYIAYnyfrGU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 18:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:b5:76:89:26:35:76:30:88:87:61:b0:54:b7:a9:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: Apr 29 18:00:52 2025 GMT
Not After : Apr 30 18:00:52 2025 GMT
Subject: CN=902a32ea53af43058edb658c06d2d3cdcbff818a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:34:9c:a7:77:4b:a1:05:6c:bd:c3:ab:cc:9d:
5f:6a:df:01:e4:0b:28:6c:d4:85:36:65:e8:52:62:
2a:5d:ac:9f:75:37:5a:9b:d8:6c:18:eb:01:c6:94:
e2:5c:fd:c9:bf:23:c4:20:00:b3:17:43:89:12:a9:
c4:45:8b:8b:c3:75:2d:db:0b:7e:d0:c4:2a:a3:e0:
2c:34:b2:40:51:ae:2c:c4:f7:30:db:eb:44:0c:d3:
71:aa:09:36:46:bc:02:99:6a:76:24:1c:2a:eb:a9:
fc:5f:e8:1f:53:62:bf:c1:8f:09:c5:98:d6:ab:89:
cf:9e:15:1d:36:3b:84:9b:6f:6d:06:6b:8a:52:f8:
4d:87:bf:89:29:c8:74:79:7a:51:4d:41:65:d0:4e:
0b:03:b4:02:89:48:01:e2:f6:16:71:20:2a:de:57:
12:2d:63:a5:2f:17:a0:d8:e4:9a:78:d1:34:68:01:
7f:23:12:31:d8:c2:90:55:dc:6a:03:ef:8e:19:1d:
f6:f1:fd:94:b2:8f:34:d8:77:c1:81:be:75:bb:98:
99:8c:d1:91:0d:93:38:eb:7b:4c:41:9d:8d:67:49:
02:a5:db:ca:32:84:1a:aa:54:e3:4a:a2:4f:c7:78:
a4:11:c0:e9:9b:e2:82:b4:db:d4:c4:8c:0d:26:eb:
b7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2A:32:EA:53:AF:43:05:8E:DB:65:8C:06:D2:D3:CD:CB:FF:81:8A
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:29:84:b1:76:97:a3:00:f2:a5:5c:c3:b3:04:2f:f6:99:05:
93:05:d4:db:2f:c7:8a:3a:37:da:c2:89:c3:b0:b1:e0:f2:6d:
89:b2:c0:23:f8:65:57:c0:99:08:20:41:f8:93:c4:24:e5:38:
5c:ee:68:3e:96:5f:f5:ad:58:9b:de:2a:82:7e:b4:34:1e:1d:
ee:b8:d5:5e:40:b3:7d:a7:15:e5:0e:27:90:70:a1:7d:42:ab:
e9:5a:1c:56:2b:f9:94:93:20:21:98:31:1f:e1:87:c1:c5:4a:
98:69:d7:be:5f:ac:37:22:9e:c1:36:13:05:f2:ee:3f:25:fd:
63:14:f0:b0:df:c1:56:9c:17:a0:20:85:54:88:65:a9:32:4b:
a1:83:50:60:8f:e9:a2:98:c4:5f:79:46:2a:4b:3b:e2:7e:78:
3f:6a:df:f4:8b:58:ed:71:f6:05:cc:4e:ca:fb:68:b3:42:39:
6d:d0:ac:c0:77:cc:55:f9:25:2b:39:49:02:99:67:e8:07:4d:
ee:f4:eb:e8:9b:45:03:9f:83:8d:7f:ac:c3:de:4f:b5:db:ec:
4a:2e:31:ea:ee:60:4a:9e:37:01:89:dd:26:b2:f6:07:44:ca:
b3:68:d5:c9:a5:55:e1:b6:ca:dc:60:f5:4f:fa:9d:e1:29:32:
c3:94:ef:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:10:54 2025 by rpki-client