Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: aScTT5AT7Wx6GRaC4UhAJVay75Xf3nCcoCoYwmX2vTs=
Subject key identifier: DB:59:CE:CB:B5:33:69:FA:58:BA:05:94:40:B1:A1:14:04:D9:C9:D6
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 0196789F6062175EF5C5E76045AE7F2E6C09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 150E
Signing time: Sun 27 Apr 2025 19:00:32 +0000
Manifest this update: Sun 27 Apr 2025 19:00:32 +0000
Manifest next update: Mon 28 Apr 2025 19:00:32 +0000
Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: 1g5xkgAwqcr/lAK2vo3PsHmEF2vtl3D8Tcsy6GjvBLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:9f:60:62:17:5e:f5:c5:e7:60:45:ae:7f:2e:6c:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Apr 27 19:00:32 2025 GMT
Not After : Apr 28 19:00:32 2025 GMT
Subject: CN=db59cecbb53369fa58ba059440b1a11404d9c9d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:8f:40:9b:42:e4:2f:96:72:0d:05:3f:ee:19:
8b:b6:55:3b:4e:c1:57:11:0a:b5:0c:bb:67:e7:19:
ff:46:af:e4:f8:8c:49:99:3c:1e:7a:3a:5d:62:db:
3e:a9:85:83:3f:e4:74:ef:ab:c7:5d:ec:ee:91:df:
e4:c5:24:72:71:eb:fc:fe:d2:6e:1d:bf:34:12:bb:
7a:0c:f8:37:8e:4c:67:3e:c3:42:6f:22:4a:cf:0e:
52:1f:b3:ca:46:a9:97:99:2f:c2:17:39:5a:fc:90:
61:c8:fb:ef:24:c1:24:45:0e:b6:22:a9:25:20:e3:
94:0e:ba:a6:97:31:24:6a:01:73:7e:da:d7:71:87:
6d:fe:3e:95:69:32:eb:be:23:a8:2d:e6:9c:54:f9:
7c:70:e1:c4:ce:e0:a4:29:09:b1:56:7a:fa:bc:c9:
0c:64:57:21:45:67:48:44:1d:4e:d5:60:81:51:e0:
cd:cd:39:ef:8c:92:27:6d:70:96:cf:60:10:97:ed:
c6:2c:49:04:1a:08:e6:b5:bc:b1:f8:b1:36:5e:ef:
e5:8f:d8:30:e8:83:8c:71:a0:97:25:02:fe:a6:90:
ed:e3:83:42:e4:8a:1e:13:7e:08:4e:c7:3c:68:9a:
bb:bd:35:6a:ee:37:b9:aa:ad:51:b3:25:71:68:9c:
e4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:59:CE:CB:B5:33:69:FA:58:BA:05:94:40:B1:A1:14:04:D9:C9:D6
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:fc:64:ad:52:46:be:cb:23:33:d8:07:cb:c1:c9:89:26:85:
ba:46:d4:8f:2a:10:bf:da:c4:ce:44:eb:0a:da:ae:a0:c1:8c:
33:db:9e:59:2c:1d:d4:9a:a1:6b:63:65:53:cd:e8:d0:37:bf:
df:c8:92:e6:59:77:d9:78:26:cf:98:7b:c4:fe:c8:86:d9:f9:
e8:0d:57:95:71:5e:d1:12:42:57:f1:38:a8:60:e3:e5:99:90:
d2:6c:5f:85:ab:7b:88:c0:19:70:02:87:d2:82:64:78:24:6f:
a5:9d:7b:8f:c6:fe:d9:6e:5a:46:e5:3f:14:4f:57:cb:dc:e3:
54:c5:1f:fe:3e:32:9e:73:32:44:2d:e5:37:30:83:e0:34:05:
30:22:ec:ef:f9:70:69:67:9f:15:de:23:a0:be:0b:63:8b:6a:
94:04:2c:7e:ff:4f:67:29:fd:30:c5:05:e4:2c:95:5c:1b:2f:
94:da:9f:ab:e9:87:db:fb:7b:4e:6b:71:59:a6:60:c1:1f:9b:
42:f7:44:c9:86:f8:21:8d:7a:29:26:6a:15:a2:a3:1f:f3:e3:
2c:3c:d8:36:36:cc:03:bb:15:62:8d:f0:c9:de:35:81:51:f7:
92:d7:03:70:d2:f8:f8:55:30:2c:9f:b5:f0:6b:4b:26:06:aa:
b0:53:f8:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 01:13:36 2025 by rpki-client