Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
File: TQiJTKQFMefSApQJEojnetEsKXk.mft (raw, json)
Hash identifier: lx5QP4jxRR40+B0ZRsY5u7r8BHgMB61Avt7a28Pf8WM=
Subject key identifier: 39:BE:B7:29:39:84:64:88:09:41:0A:69:EF:CF:94:25:7B:46:97:3C
Authority key identifier: 4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
Certificate issuer: /CN=4d08894ca40531e7d20294091288e77ad12c2979
Certificate serial: 01967868AAC82E6693543103A295ECE045CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
Manifest number: 05D7
Signing time: Sun 27 Apr 2025 18:00:47 +0000
Manifest this update: Sun 27 Apr 2025 18:00:47 +0000
Manifest next update: Mon 28 Apr 2025 18:00:47 +0000
Files and hashes: 1: 9vSYuCdAG_e0E6RGGzb6agTE0BM.roa (hash: QacZLKOpB/Eo9Q8tjYWI0KN++SKGpTz/tW+UR9tDqD0=)
2: TQiJTKQFMefSApQJEojnetEsKXk.crl (hash: o5mYvls46TUkAjtudAoGLqqFlo+6UixD/yNAQg9imA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:aa:c8:2e:66:93:54:31:03:a2:95:ec:e0:45:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d08894ca40531e7d20294091288e77ad12c2979
Validity
Not Before: Apr 27 18:00:47 2025 GMT
Not After : Apr 28 18:00:47 2025 GMT
Subject: CN=39beb7293984648809410a69efcf94257b46973c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4a:9b:7a:96:98:c8:c2:53:b5:a2:19:fb:84:
a7:d4:18:eb:e5:05:30:11:f5:09:4f:5d:ab:2e:94:
95:23:d2:91:d8:34:c9:21:1b:14:ac:a4:b8:24:25:
86:bb:28:e5:37:73:b0:9f:ea:63:1a:0d:cc:b8:4d:
f8:0b:fa:84:e2:59:63:bc:c4:8a:82:4d:e3:ae:81:
c4:7b:e7:9a:cd:d8:ce:5d:af:9d:27:8e:45:91:81:
6d:41:2e:45:65:08:b9:d1:01:5d:2c:73:15:92:3f:
83:f5:8d:a2:13:1b:9c:79:de:8a:ee:49:13:44:98:
81:55:fa:1b:66:8a:b9:3d:cd:6d:98:2c:d9:3e:aa:
99:ef:77:73:b0:21:0b:50:42:bd:34:7b:1b:b7:22:
88:58:ce:2d:12:a5:50:9d:d3:8b:46:d7:7b:11:ff:
22:b7:53:8c:12:a9:41:a0:e0:a6:e2:99:e1:8b:25:
f4:7b:95:d5:82:07:9c:26:b8:9e:cf:c7:ac:99:c8:
30:c9:b6:d3:86:85:5a:3c:16:58:ff:b3:80:fa:37:
d8:e4:0a:5f:8d:bf:78:54:5a:0d:02:6e:81:f6:3e:
eb:70:ea:c8:c8:66:14:62:9f:bf:a6:c7:4a:a7:47:
56:6b:35:85:96:24:04:f3:55:55:0b:25:4f:56:65:
6e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:BE:B7:29:39:84:64:88:09:41:0A:69:EF:CF:94:25:7B:46:97:3C
X509v3 Authority Key Identifier:
keyid:4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:6d:33:6f:0e:2f:5b:44:0d:c4:3d:b5:da:e7:f0:cc:cc:67:
40:20:b1:01:d7:50:e5:ab:86:ae:be:1c:e4:9d:78:31:44:6a:
94:b5:b5:03:a2:fe:5e:bd:30:b5:a9:45:97:17:43:59:43:24:
98:11:eb:0c:71:20:e1:40:97:14:b5:15:be:57:a6:91:55:76:
e1:e4:96:71:63:a0:7f:42:d2:f3:e9:5e:c1:b3:8c:82:de:75:
a8:c3:b1:96:91:e5:c0:79:f0:0a:5a:6c:47:18:40:4f:14:54:
d5:6a:3e:c8:41:69:f7:c2:6f:48:1e:31:b8:ef:f2:41:5c:6d:
23:2b:f5:b0:73:2a:1f:97:95:8d:91:70:61:44:36:4c:33:a5:
a8:ea:fc:0d:26:b1:ba:9c:67:d4:25:5a:ad:60:03:26:4c:cb:
58:23:77:ec:c1:11:10:c5:51:19:65:5c:c1:12:53:01:c8:45:
76:24:be:90:af:55:49:f9:40:e6:06:31:d9:e8:ed:5a:4d:23:
7f:ad:4d:63:a6:27:7b:43:1f:15:da:ee:6f:ce:4c:a7:48:b4:
a0:21:d3:da:aa:d6:c4:50:49:23:00:a0:59:d1:10:4f:50:16:
1a:d5:0c:96:f2:22:ea:e7:4a:82:1e:58:24:bc:bf:f3:32:dc:
6e:d4:18:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 01:12:48 2025 by rpki-client