Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
File: rwlQP8rAF2lRWhny3CZX2S_TUN8.mft (raw, json)
Hash identifier: 8J+wAqH+TAwKKRX8xkR/+bNN12sWuZwZ/P4k2oLKrwg=
Subject key identifier: E7:EB:67:51:5E:F2:ED:83:39:3B:56:49:A1:85:2F:AE:65:6F:89:C2
Authority key identifier: AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
Certificate issuer: /CN=af09503fcac01769515a19f2dc2657d92fd350df
Certificate serial: 019674C2EAD8092B054727827F38B1C48DA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
Manifest number: 14A1
Signing time: Sun 27 Apr 2025 01:00:53 +0000
Manifest this update: Sun 27 Apr 2025 01:00:53 +0000
Manifest next update: Mon 28 Apr 2025 01:00:53 +0000
Files and hashes: 1: bI5hqVT8m0qS2JmySaAVyieiKDc.roa (hash: Ur47592mLsTtDVQWZDc8e3eMtHnqyDHoxs3kpjL/ez4=)
2: rwlQP8rAF2lRWhny3CZX2S_TUN8.crl (hash: D7FJrvK/iaGJGK8wCen/v1h8tuYMqwmU/QThwjGV3hQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:c2:ea:d8:09:2b:05:47:27:82:7f:38:b1:c4:8d:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09503fcac01769515a19f2dc2657d92fd350df
Validity
Not Before: Apr 27 01:00:53 2025 GMT
Not After : Apr 28 01:00:53 2025 GMT
Subject: CN=e7eb67515ef2ed83393b5649a1852fae656f89c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:3d:21:76:31:2a:8f:df:e8:35:50:ee:31:3a:
4a:ed:21:45:50:4f:c9:a4:3d:3d:54:51:bb:f8:0c:
64:04:14:39:25:e0:a6:e9:17:78:73:92:f1:e7:78:
4e:a6:45:c4:72:78:dc:62:a4:9f:94:aa:c5:b2:69:
5f:ce:8a:1c:ef:9a:a4:95:33:49:53:d6:87:aa:e7:
a1:9a:53:4c:9b:b6:53:49:75:8b:46:c8:fd:a6:e0:
8f:3a:67:78:45:67:7f:e7:73:db:c0:1c:26:09:cb:
84:49:20:5b:54:c8:7a:fa:f4:b7:4e:6e:b5:2b:f0:
b2:9f:b4:4d:02:b5:f8:c7:10:80:13:0b:1a:0c:be:
e7:4e:d3:91:fe:18:41:fb:04:aa:d6:17:d6:3e:45:
65:c3:4d:d1:ec:01:46:98:b8:c0:2b:2c:0e:98:7a:
7c:48:95:76:29:1f:a6:ba:e4:43:2a:e7:2d:75:38:
61:8a:c0:1e:56:84:ab:14:16:e5:7e:8a:7e:6f:b7:
74:59:fc:5b:8b:2c:1e:a5:20:c6:86:a0:72:96:cd:
97:8c:6e:34:c0:cd:2f:4a:8b:10:4d:e4:eb:5f:4c:
6e:f4:c8:e7:6e:37:f8:67:f1:9b:96:7f:e3:41:42:
60:80:ab:de:f2:f7:09:4a:a4:dc:04:b5:f6:bb:12:
91:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:EB:67:51:5E:F2:ED:83:39:3B:56:49:A1:85:2F:AE:65:6F:89:C2
X509v3 Authority Key Identifier:
keyid:AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:ef:8c:ca:c2:50:bd:aa:b2:19:4c:c1:4d:c4:e3:6f:3d:10:
47:71:d0:37:70:68:88:9a:87:85:5e:76:77:d8:09:ed:a7:ef:
b0:a1:d7:8f:bc:f3:df:a5:af:fc:95:8c:99:6e:5b:d0:27:e6:
37:d5:50:fa:80:a6:b2:92:46:35:89:6c:64:85:47:72:2b:e4:
0c:82:b2:fd:fb:94:a3:fa:13:06:25:3c:7e:8f:c8:37:b1:06:
f0:a2:48:75:b3:da:db:85:e8:c6:88:fc:67:ef:7c:ec:9c:23:
81:93:96:a2:c9:00:16:17:0b:ca:93:0c:16:87:90:af:60:72:
53:ac:c5:09:eb:50:57:0c:38:32:83:17:27:74:7d:48:63:f8:
5e:cb:21:86:31:f9:f7:a6:5b:7b:09:61:54:7a:0d:6c:68:0b:
11:04:24:c4:49:23:64:25:39:16:62:e8:4d:6c:e7:75:7c:8a:
ee:0e:c2:cf:26:f9:71:20:9f:1d:c9:d6:f7:99:e5:e7:07:6e:
cf:3f:10:fb:75:2f:6d:0e:fc:68:1d:b2:82:e2:55:f8:ef:ea:
88:d5:5b:c9:a6:61:d8:df:43:e5:21:4d:52:d8:80:80:2f:88:
86:fd:1a:62:40:dc:d0:3f:fd:12:ae:5b:78:0f:67:7d:39:45:
46:8c:3e:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ0wurYCSsFRyeCfzixxI2lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMDk1MDNmY2FjMDE3Njk1MTVhMTlmMmRjMjY1N2Q5MmZk
MzUwZGYwHhcNMjUwNDI3MDEwMDUzWhcNMjUwNDI4MDEwMDUzWjAzMTEwLwYDVQQD
EyhlN2ViNjc1MTVlZjJlZDgzMzkzYjU2NDlhMTg1MmZhZTY1NmY4OWMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9z0hdjEqj9/oNVDuMTpK7SFFUE/J
pD09VFG7+AxkBBQ5JeCm6Rd4c5Lx53hOpkXEcnjcYqSflKrFsmlfzooc75qklTNJ
U9aHquehmlNMm7ZTSXWLRsj9puCPOmd4RWd/53PbwBwmCcuESSBbVMh6+vS3Tm61
K/Cyn7RNArX4xxCAEwsaDL7nTtOR/hhB+wSq1hfWPkVlw03R7AFGmLjAKywOmHp8
SJV2KR+muuRDKuctdThhisAeVoSrFBblfop+b7d0WfxbiywepSDGhqByls2XjG40
wM0vSosQTeTrX0xu9Mjnbjf4Z/Gbln/jQUJggKve8vcJSqTcBLX2uxKRNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOfrZ1Fe8u2DOTtWSaGFL65lb4nCMB8GA1UdIwQY
MBaAFK8JUD/KwBdpUVoZ8twmV9kv01DfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcndsUVA4ckFGMmxSV2hueTNDWlgyU19UVU44LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8wZDEwODktZDk2Ny00M2I1LWJjMzAt
MTc1MDJkM2RmOTVmLzEvcndsUVA4ckFGMmxSV2hueTNDWlgyU19UVU44Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8wZDEwODktZDk2Ny00M2I1LWJjMzAtMTc1MDJkM2RmOTVm
LzEvcndsUVA4ckFGMmxSV2hueTNDWlgyU19UVU44LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANu+MysJQ
vaqyGUzBTcTjbz0QR3HQN3BoiJqHhV52d9gJ7afvsKHXj7zz36Wv/JWMmW5b0Cfm
N9VQ+oCmspJGNYlsZIVHcivkDIKy/fuUo/oTBiU8fo/IN7EG8KJIdbPa24Xoxoj8
Z+987JwjgZOWoskAFhcLypMMFoeQr2ByU6zFCetQVww4MoMXJ3R9SGP4XsshhjH5
96ZbewlhVHoNbGgLEQQkxEkjZCU5FmLoTWzndXyK7g7Czyb5cSCfHcnW95nl5wdu
zz8Q+3UvbQ78aB2yguJV+O/qiNVbyaZh2N9D5SFNUtiAgC+Ihv0aYkDc0D/9Eq5b
eA9nfTlFRow+1g==
-----END CERTIFICATE-----
Generated at Sun Apr 27 05:37:29 2025 by rpki-client