Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
File: Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft (raw, json)
Hash identifier: qfNXj0rsNcFrAXTXtZ6wCWvl38ztH34vbJC8yGajxcQ=
Subject key identifier: 8A:BA:78:87:71:DD:2E:33:88:C2:A6:96:D7:CE:7D:A1:21:CF:4B:E4
Authority key identifier: 4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
Certificate issuer: /CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Certificate serial: 0196771EFDC1B591CA2A33B5B26F27BF9729
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
Manifest number: FA
Signing time: Sun 27 Apr 2025 12:00:41 +0000
Manifest this update: Sun 27 Apr 2025 12:00:41 +0000
Manifest next update: Mon 28 Apr 2025 12:00:41 +0000
Files and hashes: 1: 2YHBxyZ_z4Fcrt68TQqMf0wkwmM.roa (hash: KMD/ALL2N2LqU8y7+1f9YpFqy5OsmhRXi+hfcZ2aIxY=)
2: Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl (hash: 5r0fK3G2iqh0M2/TU7SZ3oGwWG+4XpnPcLYNY/3uRaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:1e:fd:c1:b5:91:ca:2a:33:b5:b2:6f:27:bf:97:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Validity
Not Before: Apr 27 12:00:41 2025 GMT
Not After : Apr 28 12:00:41 2025 GMT
Subject: CN=8aba788771dd2e3388c2a696d7ce7da121cf4be4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e9:27:0e:0f:43:a7:87:b6:c9:31:2e:46:22:
d8:63:ad:80:bc:16:3d:cf:b4:c0:95:93:5d:dd:3f:
ee:23:e8:a3:78:bd:68:3c:ae:1f:71:de:e4:1c:d1:
13:c8:e8:d0:7f:de:b4:75:f3:1b:97:49:f2:b6:df:
ed:89:1b:69:13:23:45:0b:a5:1c:7d:ef:95:37:ff:
4c:d1:a7:91:2e:6a:e2:98:f7:d1:e2:be:0b:71:f3:
10:f0:27:39:08:49:bf:e4:1e:ae:e1:7e:8d:93:c9:
46:37:18:ef:65:b2:22:5d:8c:5a:81:3f:f6:47:b2:
e5:db:e6:42:e9:04:58:b0:9e:87:e7:96:2b:86:a3:
3a:c4:1a:c0:b7:7f:60:ac:fc:50:a1:76:18:08:33:
74:f0:7d:c0:dc:3d:1a:0d:84:12:c7:15:94:32:15:
9a:e3:7a:be:31:83:0c:62:b4:b5:0c:70:1c:25:42:
29:54:6c:a7:d3:07:92:73:a7:c4:6b:ec:e5:85:be:
e0:54:83:de:74:50:b5:95:ac:d2:be:07:4f:96:da:
d4:70:3d:6a:06:04:cb:eb:7a:b5:ba:ad:39:62:6a:
c1:a5:09:40:e5:6e:42:9b:ff:54:a4:be:c5:44:b1:
c1:1d:38:ae:85:45:45:cc:70:af:69:84:ab:0e:2f:
ee:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:BA:78:87:71:DD:2E:33:88:C2:A6:96:D7:CE:7D:A1:21:CF:4B:E4
X509v3 Authority Key Identifier:
keyid:4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:3f:0c:ca:e4:1b:8c:91:7a:af:06:2d:a1:cf:18:05:a6:28:
89:2c:8e:ba:42:05:c9:b5:70:27:fa:2e:bd:d7:96:7d:fa:49:
01:e9:c3:35:98:bb:1d:a0:a9:88:36:91:39:b0:74:07:d8:d9:
db:de:b6:79:72:31:70:f4:44:a2:92:ce:47:78:56:f6:ee:63:
40:a4:5d:be:7f:58:3c:73:86:90:11:a9:f2:b3:4a:26:92:4e:
6d:b5:ee:01:db:c5:81:10:d1:23:41:ba:38:8c:74:98:f4:c5:
bd:2b:3b:98:d6:a8:fc:b3:d1:6d:8e:e4:b2:76:a9:1f:b4:28:
7a:17:6a:7d:52:77:17:5e:21:39:57:ee:fc:3d:d6:32:92:29:
d2:a3:0e:7a:27:eb:77:1a:30:ec:b5:73:fb:5c:6b:e6:72:e6:
46:f7:22:1a:a0:3f:15:17:c0:93:06:58:62:8f:f4:92:23:26:
5a:08:31:59:35:9a:ca:a9:38:65:b0:d3:03:2f:2c:a0:8a:c2:
15:5f:95:3c:d6:54:39:e1:c8:17:26:fd:b7:cb:e3:47:b7:99:
a6:54:fb:35:40:30:57:6a:28:41:45:ca:7a:68:13:cd:34:e5:
51:93:3f:fd:ea:de:f7:2a:a7:0d:cc:23:c3:ed:5e:3a:a8:2b:
fc:6a:cf:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:46:37 2025 by rpki-client