Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.mft
File: tOiC9xca9tzczJzXn5jexnV_4Yk.mft (raw, json)
Hash identifier: O0UjG/gRxuTC/dKtB0H7U29jqa+LTGR0cQ6zPdL0diI=
Subject key identifier: 82:53:7D:20:6A:2F:89:C0:1F:24:37:EE:BA:51:5F:08:DF:79:F9:DF
Authority key identifier: B4:E8:82:F7:17:1A:F6:DC:DC:CC:9C:D7:9F:98:DE:C6:75:7F:E1:89
Certificate issuer: /CN=b4e882f7171af6dcdccc9cd79f98dec6757fe189
Certificate serial: 01968A00C0EAF77979A037883B5C5174C174
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOiC9xca9tzczJzXn5jexnV_4Yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.mft
Manifest number: 1517
Signing time: Thu 01 May 2025 04:00:27 +0000
Manifest this update: Thu 01 May 2025 04:00:27 +0000
Manifest next update: Fri 02 May 2025 04:00:27 +0000
Files and hashes: 1: WmxX7pBfpD5c2m2kHOUO4M_bBgA.roa (hash: q0DpW8XtR4IxHRwLJz0IGFkpb8cJ4HYo8d4HsEmNl8o=)
2: tOiC9xca9tzczJzXn5jexnV_4Yk.crl (hash: jHG5du21cq34ZY7/n4o3YgEKlwx964+j9ULe0CJsJnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tOiC9xca9tzczJzXn5jexnV_4Yk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:00:c0:ea:f7:79:79:a0:37:88:3b:5c:51:74:c1:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e882f7171af6dcdccc9cd79f98dec6757fe189
Validity
Not Before: May 1 04:00:27 2025 GMT
Not After : May 2 04:00:27 2025 GMT
Subject: CN=82537d206a2f89c01f2437eeba515f08df79f9df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b3:46:2d:55:bc:b4:15:2e:0e:56:cc:ce:c5:
9d:7d:f3:b6:2e:90:5c:9d:ce:ed:4b:cb:67:9b:e8:
fb:13:a6:4c:e9:29:bc:a7:e7:aa:45:ec:a1:a6:bd:
60:40:c6:f3:e0:24:a5:17:e9:34:5c:75:fe:84:68:
54:9f:92:9d:80:92:23:65:00:cb:22:23:45:13:a5:
18:63:58:62:1b:1a:c1:6d:7c:f6:a7:91:e9:9f:46:
96:25:6c:dd:fc:61:f0:dd:81:84:77:81:ef:f0:6a:
16:41:af:b7:e7:fb:81:6c:8b:71:ef:cb:1d:56:0f:
17:44:0b:1d:4d:57:f0:17:55:c9:9b:2b:34:5c:0b:
4c:02:91:44:14:33:7e:35:fa:28:de:c2:d2:fc:09:
72:96:1b:cc:97:26:8c:84:a3:28:ca:96:89:c5:09:
0e:be:cb:0e:f8:ff:87:34:e5:26:49:6e:49:a0:3a:
e3:2e:2f:aa:7a:5a:66:da:86:07:f5:8b:c5:6c:f2:
d3:cb:5c:65:71:80:bd:ca:e1:a6:a3:62:7d:0b:2f:
aa:82:74:35:4e:89:4f:4c:e2:dc:6f:de:cf:07:02:
24:3b:77:a9:ba:3b:cc:52:f0:80:f4:ed:1e:0a:91:
98:87:07:ec:18:f0:d2:a6:df:0a:57:01:25:91:c6:
d7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:53:7D:20:6A:2F:89:C0:1F:24:37:EE:BA:51:5F:08:DF:79:F9:DF
X509v3 Authority Key Identifier:
keyid:B4:E8:82:F7:17:1A:F6:DC:DC:CC:9C:D7:9F:98:DE:C6:75:7F:E1:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOiC9xca9tzczJzXn5jexnV_4Yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5f5bc8-e5f3-421d-9fa0-fefe8e34006c/1/tOiC9xca9tzczJzXn5jexnV_4Yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:82:43:13:b5:42:bd:43:e5:d3:b2:63:c9:d4:e5:8b:b1:ec:
47:f3:c2:9a:8b:74:7f:6b:2b:ad:6e:6c:6a:e8:c2:4d:58:90:
2b:5a:f2:48:71:98:4f:6c:0b:dc:2f:37:ad:37:39:7c:7b:03:
92:48:85:a0:af:55:fd:8f:44:22:19:72:3a:17:fd:25:64:b3:
ac:ca:ad:0b:98:2f:cf:a6:4a:79:59:96:3d:da:d6:1e:67:f8:
11:7f:be:f4:a5:ba:d3:11:5c:57:75:f5:77:d0:ab:23:6f:77:
9f:4e:13:46:d0:64:eb:ba:3c:7e:dc:01:33:ac:a2:fe:a6:2d:
f8:10:94:30:10:22:88:ed:1d:f6:28:5e:db:ae:1c:09:f7:51:
2c:16:c3:79:f9:0d:99:da:b4:8e:9d:55:32:fd:5e:3c:ca:54:
9c:04:38:58:fa:95:3a:72:02:ad:bd:57:78:d4:a3:3d:e8:a0:
c4:25:90:f4:cc:0a:b7:21:06:46:f5:b7:05:d7:d5:cd:0e:18:
e5:3b:7c:cc:ec:d5:21:1e:db:b7:3b:97:ef:f7:9d:4c:60:14:
ae:c1:f4:4b:1f:8a:8e:28:e2:ed:0e:b8:1a:c8:2e:96:c2:fd:
d5:7a:98:fa:81:f6:8a:4c:c9:e1:13:17:ea:ed:01:c8:3a:ad:
74:34:5e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 07:29:29 2025 by rpki-client