Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
File: ThXfaIw66uP2he1Es5bCGYOVhh0.mft (raw, json)
Hash identifier: 8NHlxPfzDh34qo7z/YLRQGb7oTElKFwxmUnqN/1yZhg=
Subject key identifier: EA:07:44:9E:36:E9:4E:90:C6:85:99:D7:DD:D8:2E:EF:5D:69:54:AD
Authority key identifier: 4E:15:DF:68:8C:3A:EA:E3:F6:85:ED:44:B3:96:C2:19:83:95:86:1D
Certificate issuer: /CN=4e15df688c3aeae3f685ed44b396c2198395861d
Certificate serial: 0196778D10ED0562511D686D79A3113AB9AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
Manifest number: 0AB8
Signing time: Sun 27 Apr 2025 14:00:55 +0000
Manifest this update: Sun 27 Apr 2025 14:00:55 +0000
Manifest next update: Mon 28 Apr 2025 14:00:55 +0000
Files and hashes: 1: B5ArzT5S5sMxKfyjCyP1n1jxI-I.roa (hash: GYazD0XUED0Lzoqp0JRsmv1Wdv3MWiNL0orAYJkGs0s=)
2: GTFBgv2tNjcuxAQIe01brH4jwTk.roa (hash: Mc8ui7CXRHASlbfIuKweFLL2cR+DG52g7wgx3xsTD/U=)
3: MVWQHZ7poQZSNaxcXHSkE1cM3ac.roa (hash: tbC0zEQlc9n1vwOMWAcwfJO+Pz8J+NOLSdpR6f+1vt4=)
4: SeVKeWDlifWewWLGV-ux3X3eP-U.roa (hash: iAr3BiSouxw0/1U0gfsb+0eTpsmeqPEqcNVOd7duq/I=)
5: ThXfaIw66uP2he1Es5bCGYOVhh0.crl (hash: zP/L/XDG4MDqOCAKi980xJeW8e1rNuT+xzxTbzJw+EI=)
6: VQHe2S-7j8SMoLbiYSjz9IrWVbc.roa (hash: 4EmRDMW6ZpVFVYfLs3GRzG+ePL4wqHpJMD783K3OCFc=)
7: r34i9MogSBxeDWHyGIhH_hkNvH0.roa (hash: /LsOtQwuG5S1pPv/GDxv95WqbubjE7D9iX5jL74tvxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8d:10:ed:05:62:51:1d:68:6d:79:a3:11:3a:b9:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e15df688c3aeae3f685ed44b396c2198395861d
Validity
Not Before: Apr 27 14:00:55 2025 GMT
Not After : Apr 28 14:00:55 2025 GMT
Subject: CN=ea07449e36e94e90c68599d7ddd82eef5d6954ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:88:bf:ed:69:ca:8d:2e:83:79:86:1f:e2:d0:
70:2d:e2:22:19:95:dd:b0:19:0b:9f:d0:06:f1:fe:
ab:48:62:7e:50:1f:74:b8:0d:8c:98:61:99:0c:f8:
30:94:ae:be:17:ab:dd:11:4b:73:d5:e5:e9:48:81:
3c:ce:b6:73:37:84:ed:d7:16:df:73:e8:a5:d9:08:
73:0d:71:0b:33:85:8f:b5:b3:61:3e:82:d1:ac:74:
5f:54:20:94:a4:1a:ee:09:ce:73:4d:77:93:2b:36:
d2:f6:2f:10:4a:82:83:82:ca:62:c3:56:df:8d:ee:
25:c9:2a:40:60:68:22:48:7e:c4:dd:bf:3f:3f:0b:
9b:44:a2:1a:3d:39:6f:e3:6b:82:8c:81:51:7b:48:
4d:b7:8e:1f:1b:c4:1b:cf:0d:c9:4c:63:31:43:4d:
9d:a7:1f:8b:36:03:d5:5b:16:5e:35:6c:1e:4d:38:
3a:ea:d5:e2:55:da:57:e5:29:ab:d9:e0:a0:ff:3a:
ac:49:9e:c9:5c:a5:f6:bb:ce:cd:10:fe:81:aa:9c:
75:aa:ad:07:6c:19:05:f9:a6:e5:90:6f:bf:b0:92:
54:6d:b5:27:e0:c0:34:3a:4f:25:43:47:f6:aa:20:
46:fc:04:5d:ba:53:d8:1b:57:62:1a:38:c5:56:8c:
4a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:07:44:9E:36:E9:4E:90:C6:85:99:D7:DD:D8:2E:EF:5D:69:54:AD
X509v3 Authority Key Identifier:
keyid:4E:15:DF:68:8C:3A:EA:E3:F6:85:ED:44:B3:96:C2:19:83:95:86:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThXfaIw66uP2he1Es5bCGYOVhh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0bf7ab-5aab-4337-a02a-8a6e554196bb/1/ThXfaIw66uP2he1Es5bCGYOVhh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:f3:2b:34:d3:61:a4:9f:3b:da:e8:a8:56:af:ee:85:17:a3:
30:8f:ae:92:71:2e:0c:65:5d:07:8f:15:1c:c8:79:64:38:fb:
7e:ba:b7:57:01:05:c4:bf:de:a1:f8:e3:37:9b:f3:ed:e8:cb:
84:1e:32:5f:6f:71:84:e9:14:b1:7f:c7:27:0c:b9:a2:41:ad:
39:81:b3:97:24:4e:7f:ec:c7:aa:ee:a2:29:32:28:7e:cb:42:
61:0f:68:87:a1:d1:f4:53:29:06:8a:57:58:b5:b3:6c:fe:25:
67:0e:58:19:43:ca:55:98:97:25:2c:c6:4b:d0:53:c4:0e:5b:
c0:49:63:bc:bd:54:e1:95:7b:80:f3:7f:e5:84:56:13:fe:5a:
0d:40:10:37:18:82:47:c7:b6:c8:ed:19:af:23:b3:fb:82:1c:
69:f9:2a:ee:b1:68:dd:36:9a:85:ca:46:19:69:5f:b1:b8:a1:
35:88:ce:d7:7d:fa:bc:50:c3:cc:19:b0:98:bf:2d:9e:84:ff:
81:02:72:c4:dc:4f:58:02:9f:2f:b0:f9:32:e4:06:a7:03:a2:
21:c8:95:30:9d:02:27:37:8a:b3:0f:0d:78:43:e6:e3:a8:50:
3d:ff:87:9d:89:3a:31:f3:18:41:ca:5d:2f:c6:9d:56:e8:45:
ce:68:a3:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:45:34 2025 by rpki-client