Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
File: tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft (raw, json)
Hash identifier: WSYVZ1DocLK9F6Lwptt9Lxhdr8ue3e/g+mPApPwTMHk=
Subject key identifier: 04:AE:AC:65:73:EE:95:AD:AA:8B:F0:74:03:E6:A6:35:9D:8F:13:B6
Authority key identifier: B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
Certificate issuer: /CN=b414b09beeab905ff41e6813256054b182294297
Certificate serial: 019690DEA9D1B0ABA08D5FC96A2E6E4CCDB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
Manifest number: 0A7E
Signing time: Fri 02 May 2025 12:00:33 +0000
Manifest this update: Fri 02 May 2025 12:00:33 +0000
Manifest next update: Sat 03 May 2025 12:00:33 +0000
Files and hashes: 1: 9ie56jozGctsQMPeP2PnRQlQSUc.roa (hash: 5kDUdIA6jw7l4e4ssTIC7py/rMtiw/D++uBoc2CI0Qo=)
2: mT-8_dVnmXbsJKgoN35LXNaAywM.roa (hash: o5cN5KMUIwn/VQVHMV9OAvcCU4Z7KPV9dR9Yvh1kUlg=)
3: tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl (hash: 0+0yMbzcaBzLt4/nmdzj+ypOlHjSK4rT2swqE5+A6Qc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:90:de:a9:d1:b0:ab:a0:8d:5f:c9:6a:2e:6e:4c:cd:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b414b09beeab905ff41e6813256054b182294297
Validity
Not Before: May 2 12:00:33 2025 GMT
Not After : May 3 12:00:33 2025 GMT
Subject: CN=04aeac6573ee95adaa8bf07403e6a6359d8f13b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:66:c0:f0:6d:ca:94:48:96:65:b0:1f:ac:ec:
8f:42:46:37:7c:ab:f6:b9:c5:c7:cd:86:f6:1b:25:
fa:eb:4c:39:24:9f:b1:0a:6e:ec:9a:f4:46:1e:af:
d2:cf:9b:c0:5e:02:5e:18:fc:a2:26:2d:e8:5e:ff:
f6:a0:e2:d7:dc:01:7c:4a:ef:8c:c3:1e:30:c5:a1:
aa:49:ba:22:9d:da:c3:1c:cd:d7:fb:e1:f3:f8:15:
89:87:4d:17:97:be:19:83:e0:8a:53:dd:d0:db:b8:
9a:a2:b9:af:fb:34:2b:2e:a5:f0:29:c8:0d:2f:4c:
fd:aa:e1:d8:bb:02:57:ec:3c:98:2b:06:1b:ef:02:
18:f3:3f:a4:80:2b:59:eb:58:8a:62:b1:55:78:be:
3c:5f:fe:8f:b3:88:76:b9:fc:5c:c2:34:c2:a7:a0:
a8:ee:91:12:98:dc:6b:b7:0c:ca:bb:d3:14:ba:37:
ee:68:0f:e7:cf:15:b6:01:23:14:e2:9c:b4:1a:95:
e6:e8:c4:11:d5:d0:60:aa:bc:60:06:ab:ba:a1:a9:
aa:b8:d3:f8:aa:1c:48:ec:bc:de:26:df:20:ef:97:
7d:4c:c2:38:c9:5d:d0:8d:e0:46:64:6e:f3:41:36:
7c:bf:0d:60:f6:3c:18:bd:e8:ac:59:c1:e5:3c:ea:
18:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:AE:AC:65:73:EE:95:AD:AA:8B:F0:74:03:E6:A6:35:9D:8F:13:B6
X509v3 Authority Key Identifier:
keyid:B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:ad:f2:3b:8e:58:79:91:c7:31:25:6c:b8:4d:d1:18:57:59:
5d:12:c3:e5:46:64:b7:bd:a1:5c:61:31:87:f1:5c:5a:6e:05:
3b:fc:34:93:bc:e5:8c:1e:c6:8d:5a:5b:73:5d:12:c6:5d:8d:
09:e0:3e:4c:aa:58:13:df:1c:cb:be:29:6b:ba:95:13:49:ef:
55:10:4b:e9:6b:6b:09:e6:81:96:cf:43:f3:aa:fe:25:a6:7f:
ab:36:36:ec:51:bc:ce:5e:03:f5:53:ad:70:e2:9b:2e:ca:d3:
3b:53:15:52:6a:14:75:29:dc:04:e2:2d:58:ab:76:1f:b0:2b:
66:76:e1:15:96:65:26:48:b4:28:55:aa:b6:9a:59:c4:18:a5:
7e:12:3f:a4:c9:67:00:11:9f:34:01:47:01:dc:7e:4c:91:8f:
e6:9d:ad:8f:07:50:02:da:79:6c:09:d1:fd:b1:2d:53:dc:d5:
93:84:f9:c3:6d:0b:f5:39:e7:1e:48:89:05:4d:7a:90:99:c4:
f8:34:9c:02:d4:40:b8:69:ab:91:2d:57:f8:ca:a5:e6:61:82:
54:9b:9c:25:ba:69:8e:ba:3f:49:cf:f0:c0:4f:cd:2c:36:fa:
3c:84:c7:33:c5:2c:42:5a:a5:b8:9e:91:1c:0f:ab:d5:a1:1e:
6f:be:58:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaQ3qnRsKugjV/Jai5uTM2zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MTRiMDliZWVhYjkwNWZmNDFlNjgxMzI1NjA1NGIxODIy
OTQyOTcwHhcNMjUwNTAyMTIwMDMzWhcNMjUwNTAzMTIwMDMzWjAzMTEwLwYDVQQD
EygwNGFlYWM2NTczZWU5NWFkYWE4YmYwNzQwM2U2YTYzNTlkOGYxM2I2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWbA8G3KlEiWZbAfrOyPQkY3fKv2
ucXHzYb2GyX660w5JJ+xCm7smvRGHq/Sz5vAXgJeGPyiJi3oXv/2oOLX3AF8Su+M
wx4wxaGqSboindrDHM3X++Hz+BWJh00Xl74Zg+CKU93Q27iaormv+zQrLqXwKcgN
L0z9quHYuwJX7DyYKwYb7wIY8z+kgCtZ61iKYrFVeL48X/6Ps4h2ufxcwjTCp6Co
7pESmNxrtwzKu9MUujfuaA/nzxW2ASMU4py0GpXm6MQR1dBgqrxgBqu6oamquNP4
qhxI7LzeJt8g75d9TMI4yV3QjeBGZG7zQTZ8vw1g9jwYveisWcHlPOoYqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFASurGVz7pWtqovwdAPmpjWdjxO2MB8GA1UdIwQY
MBaAFLQUsJvuq5Bf9B5oEyVgVLGCKUKXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEJTd20tNnJrRl8wSG1nVEpXQlVzWUlwUXBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84MDBlYjYtODY4Yi00YTMwLWI0MDIt
NGJjZTQyNDcyM2Q5LzEvdEJTd20tNnJrRl8wSG1nVEpXQlVzWUlwUXBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84MDBlYjYtODY4Yi00YTMwLWI0MDItNGJjZTQyNDcyM2Q5
LzEvdEJTd20tNnJrRl8wSG1nVEpXQlVzWUlwUXBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAga3yO45Y
eZHHMSVsuE3RGFdZXRLD5UZkt72hXGExh/FcWm4FO/w0k7zljB7GjVpbc10Sxl2N
CeA+TKpYE98cy74pa7qVE0nvVRBL6WtrCeaBls9D86r+JaZ/qzY27FG8zl4D9VOt
cOKbLsrTO1MVUmoUdSncBOItWKt2H7ArZnbhFZZlJki0KFWqtppZxBilfhI/pMln
ABGfNAFHAdx+TJGP5p2tjwdQAtp5bAnR/bEtU9zVk4T5w20L9TnnHkiJBU16kJnE
+DScAtRAuGmrkS1X+Mql5mGCVJucJbppjro/Sc/wwE/NLDb6PITHM8UsQlqluJ6R
HA+r1aEeb75YiQ==
-----END CERTIFICATE-----
Generated at Fri May 2 14:59:53 2025 by rpki-client