Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.mft
File: tDycG90eFSiKuTDUAFGzZTywnno.mft (raw, json)
Hash identifier: FmFic9obHZLtKHDYt0eoTnIxwD7DX2XSo0YzStf0QNA=
Subject key identifier: 97:87:51:49:BF:06:ED:EB:7F:41:10:30:BA:79:44:47:BB:7B:52:43
Authority key identifier: B4:3C:9C:1B:DD:1E:15:28:8A:B9:30:D4:00:51:B3:65:3C:B0:9E:7A
Certificate issuer: /CN=b43c9c1bdd1e15288ab930d40051b3653cb09e7a
Certificate serial: 01968210B766CD58EA8225CAE1E8242A0039
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDycG90eFSiKuTDUAFGzZTywnno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.mft
Manifest number: 1515
Signing time: Tue 29 Apr 2025 15:00:55 +0000
Manifest this update: Tue 29 Apr 2025 15:00:55 +0000
Manifest next update: Wed 30 Apr 2025 15:00:55 +0000
Files and hashes: 1: tDycG90eFSiKuTDUAFGzZTywnno.crl (hash: zjMd3y6YPseSMRQvwg3defQE0irAZkROBVqjoQ+oBc4=)
2: yUpCnFh46Tqx7sCXg4QHc_cNe3o.roa (hash: cp+PmQthE9hblxpquCO9Uz9at9P5Zu4kvGvMw6tU+Ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDycG90eFSiKuTDUAFGzZTywnno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:10:b7:66:cd:58:ea:82:25:ca:e1:e8:24:2a:00:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43c9c1bdd1e15288ab930d40051b3653cb09e7a
Validity
Not Before: Apr 29 15:00:55 2025 GMT
Not After : Apr 30 15:00:55 2025 GMT
Subject: CN=97875149bf06edeb7f411030ba794447bb7b5243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e5:17:d0:82:85:b7:ea:9f:e8:bf:89:d6:c6:
58:56:e1:26:45:b7:33:5c:13:4b:2b:f3:94:cd:1c:
5e:e8:e8:23:62:2f:e2:fd:1e:b0:e7:0d:c7:93:8b:
9d:b4:92:b4:b7:06:14:d0:8e:40:39:5a:07:db:b0:
e4:5c:45:ae:f8:ec:dc:15:6c:92:57:fe:9c:8a:2d:
d1:72:81:25:82:0d:a1:dc:93:38:27:94:6a:e5:83:
65:b2:0b:e9:bd:36:7d:e9:94:ba:9f:00:6c:1c:eb:
08:7f:f9:25:53:0e:84:b5:17:40:f3:6b:13:a0:c1:
22:79:bc:ff:aa:cf:b8:d9:3e:f0:1b:c2:70:ce:fd:
40:5d:ba:c6:db:94:6a:3d:8d:43:59:ef:50:2e:d1:
65:74:fc:ee:c0:f9:8f:97:b1:04:91:61:b8:57:65:
ea:c0:0a:16:be:97:b6:6f:90:1e:c3:4f:7e:8a:cc:
44:d5:e1:ef:1b:fc:f1:e5:be:0b:11:a1:9f:c5:74:
46:f6:e3:a9:e7:e8:6f:8c:02:f2:dc:a0:20:9a:bf:
db:f6:83:0b:10:47:db:bd:5b:d2:95:f2:c5:ee:ff:
dc:c3:70:83:4f:c1:62:78:a9:ac:9c:be:81:0d:fc:
ba:07:11:74:7b:24:c3:41:3e:0b:4c:6a:7e:2c:df:
a0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:87:51:49:BF:06:ED:EB:7F:41:10:30:BA:79:44:47:BB:7B:52:43
X509v3 Authority Key Identifier:
keyid:B4:3C:9C:1B:DD:1E:15:28:8A:B9:30:D4:00:51:B3:65:3C:B0:9E:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDycG90eFSiKuTDUAFGzZTywnno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/03b79a-30ed-4d26-8585-9c5d351526b3/1/tDycG90eFSiKuTDUAFGzZTywnno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:2e:21:17:30:ab:56:58:98:ac:9c:64:09:93:79:9d:02:39:
2f:06:46:0d:d0:4e:04:36:26:2f:41:70:3f:bc:06:22:c5:c7:
65:e8:ad:8e:0f:bc:da:c1:e2:9d:b1:00:d6:bb:a8:33:50:27:
77:c1:85:b8:96:69:7f:02:35:ae:01:d0:a9:40:cc:72:84:a9:
0a:eb:3a:d6:a9:b5:47:97:68:5b:e7:69:33:75:c9:93:01:ba:
5d:de:ea:89:5d:6c:0d:05:b4:e3:73:61:1b:d8:1b:ad:e8:f8:
77:5e:d5:b9:c7:9e:f9:a9:c2:ba:b8:0d:b6:cd:2e:7f:5a:fb:
62:46:3b:03:55:6d:65:3e:02:01:76:86:d8:c5:35:48:22:e8:
36:bf:7b:6b:33:37:76:42:97:c2:8f:d3:b8:53:5e:60:74:5e:
20:8a:de:bb:0e:ef:76:21:5e:76:68:ab:21:7a:2a:ba:fa:9c:
24:34:fd:ea:bc:04:8c:54:06:28:44:4c:dd:99:21:0e:26:97:
79:14:2e:af:2d:44:28:09:ab:42:c8:c1:8d:76:ee:69:df:58:
83:fd:b9:1a:97:ee:ed:fa:6f:61:2c:ce:ef:7c:9b:13:52:c1:
f1:67:b2:42:e5:e2:d6:35:54:cc:8e:cb:5d:30:29:f7:ee:68:
6c:15:3c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 19:20:34 2025 by rpki-client