Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
File: tUFVgYH3hjEZv0oVVMddqx9sUpI.mft (raw, json)
Hash identifier: cDr1ZkhGQ4oIHKbkShbuxO75O9TNYjtclZ6YpSi6zP8=
Subject key identifier: E4:55:87:43:10:9F:35:2A:BC:4D:E9:A0:D9:E5:A7:D5:CA:7C:47:D0
Authority key identifier: B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
Certificate issuer: /CN=b541558181f7863119bf4a1554c75dab1f6c5292
Certificate serial: 0196797B70DBC26EB378E93FDA8AE30F9FA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
Manifest number: 032B
Signing time: Sun 27 Apr 2025 23:00:55 +0000
Manifest this update: Sun 27 Apr 2025 23:00:55 +0000
Manifest next update: Mon 28 Apr 2025 23:00:55 +0000
Files and hashes: 1: 74rFfsVLB83xqrl230f69RyQMZo.roa (hash: uIHKdF0Md6VmRaPIQqLHKtiwEPhOEBVDe4Gopq3AYXw=)
2: UVLB6EC_S4cdufZlLeGb47V1ReM.roa (hash: +1SPWwuKyVjoCsUjj6tw92B1zG4mEC7h1VegEv3YxLE=)
3: avaZ658dTdnlteZmpyctkTlcNP8.roa (hash: KHvxH5fCxcbQpviHolUXb9yiSjrJQE+TWAdsGNkg5vo=)
4: dCGcZg2F9Ea5zPZKvzxM5matRyQ.roa (hash: CVLQb8zE8ujxwsspK1MH+reOHlP+NQATO7Xjq1jEaUs=)
5: tUFVgYH3hjEZv0oVVMddqx9sUpI.crl (hash: qAgEHwcODHobeMcsFeDK65hs/7rc/hBwkMyjrb1R+c4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:7b:70:db:c2:6e:b3:78:e9:3f:da:8a:e3:0f:9f:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b541558181f7863119bf4a1554c75dab1f6c5292
Validity
Not Before: Apr 27 23:00:55 2025 GMT
Not After : Apr 28 23:00:55 2025 GMT
Subject: CN=e4558743109f352abc4de9a0d9e5a7d5ca7c47d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2a:35:78:fa:24:10:a0:4d:28:b0:c2:38:2e:
9a:67:a4:9d:66:3d:0a:bd:dd:3e:e0:17:e9:df:d8:
1e:79:82:a5:bd:01:7d:6d:e7:56:0f:29:89:6a:3a:
9c:66:ce:05:df:bf:b7:1c:db:a4:b2:ed:30:ee:fd:
66:95:bc:62:c7:bd:2b:19:45:ca:09:22:a4:c3:b7:
b0:dd:3f:d3:d4:19:88:3f:19:e3:65:97:1b:61:69:
96:b7:ca:e9:9d:fe:dd:c1:56:d4:25:2f:0b:83:79:
c0:98:6b:e8:0b:b8:68:74:31:2b:16:ee:59:c2:2b:
68:af:aa:dd:c2:c6:6f:a6:dd:3a:f2:4d:64:6f:47:
d1:e1:83:57:4d:f3:e6:51:04:da:6d:4e:bf:52:fb:
34:57:da:aa:c5:ea:27:ad:4b:b8:10:5f:5b:f8:20:
ca:2c:7b:8c:71:88:e0:fc:d4:de:3b:99:07:8c:46:
12:e8:38:db:ae:89:27:49:a5:98:70:5c:18:e4:ec:
a9:bf:6e:a4:05:01:c4:0d:61:92:4d:2b:1a:66:ff:
f1:b5:87:ed:79:22:9a:bb:b9:e5:02:ed:3b:cf:28:
38:d3:e4:4d:be:84:aa:98:10:30:7f:e1:40:0c:8e:
b8:ca:67:cf:7a:4b:9a:54:cf:44:c2:70:49:b8:70:
8f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:55:87:43:10:9F:35:2A:BC:4D:E9:A0:D9:E5:A7:D5:CA:7C:47:D0
X509v3 Authority Key Identifier:
keyid:B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:f4:4b:7f:e7:1d:48:d0:6b:43:7d:bc:1b:a1:a0:d4:7e:58:
2b:7a:90:21:68:de:25:63:1a:de:10:fd:35:02:62:f1:32:87:
1b:81:85:1d:aa:89:b3:e4:f5:a7:24:d9:68:eb:6e:da:ba:a5:
0b:76:95:ee:1e:a1:54:6a:8a:4a:92:d8:d6:90:c5:a0:2c:be:
98:8f:85:95:52:b0:b6:b0:d5:2a:96:ae:7c:25:af:02:e7:15:
d6:70:f6:bd:38:be:63:3f:57:3b:4f:4c:5d:66:bf:fc:7c:70:
05:41:5f:f0:40:f1:82:52:9f:3a:47:3b:05:51:d2:08:e3:69:
6e:3e:44:8b:75:2a:41:40:88:fc:f7:ee:7a:43:a3:36:3d:21:
53:9d:d1:61:9c:f5:81:38:82:bd:7b:c0:48:d3:a2:fa:f5:18:
2f:67:40:54:46:20:7b:11:39:b7:df:fd:2a:b4:62:38:3c:12:
8f:d2:a8:89:90:8f:a4:c9:53:2e:34:f2:ef:1a:16:79:cc:ee:
69:a3:b1:8f:b0:1a:1d:45:8a:83:b9:1c:fe:88:54:9c:61:c4:
8e:d6:d4:c3:88:78:8b:b6:39:89:9e:ad:10:46:eb:74:07:23:
df:6e:1f:b1:77:f8:25:42:8d:40:d8:58:8d:ae:0e:12:7c:4c:
13:96:6f:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 04:46:51 2025 by rpki-client