Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
File: tgcVWH7cyzJajXwPWkLY8EOHHbc.mft (raw, json)
Hash identifier: VItYwVyJMmpOXIcDiDxMnllTkFSf5TAB+nhcrWloCeM=
Subject key identifier: D7:AB:8C:50:B9:30:43:35:2B:E5:CC:48:F6:0D:99:23:F9:62:45:D6
Authority key identifier: B6:07:15:58:7E:DC:CB:32:5A:8D:7C:0F:5A:42:D8:F0:43:87:1D:B7
Certificate issuer: /CN=b60715587edccb325a8d7c0f5a42d8f043871db7
Certificate serial: 019677C3F9D6E653764A4374D171306F3B6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
Manifest number: 35
Signing time: Sun 27 Apr 2025 15:00:54 +0000
Manifest this update: Sun 27 Apr 2025 15:00:54 +0000
Manifest next update: Mon 28 Apr 2025 15:00:54 +0000
Files and hashes: 1: tgcVWH7cyzJajXwPWkLY8EOHHbc.crl (hash: GjpBVGARJkaZ466ONeoGrLBtRK5KIHsnhz8ApQY7DwA=)
2: zAVl6KN24j-HKETuiZlV3hao63U.roa (hash: djF473q/t5BuBhPbvFB06yhsIPQKmfmJ61GIeE/TTOg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:c3:f9:d6:e6:53:76:4a:43:74:d1:71:30:6f:3b:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b60715587edccb325a8d7c0f5a42d8f043871db7
Validity
Not Before: Apr 27 15:00:54 2025 GMT
Not After : Apr 28 15:00:54 2025 GMT
Subject: CN=d7ab8c50b93043352be5cc48f60d9923f96245d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ee:9e:bc:18:ca:00:e8:4d:9e:c0:b0:01:69:
ee:9b:0b:87:0f:f0:99:6a:f7:c6:fc:b4:dc:70:fe:
a7:5d:f7:b0:eb:02:dc:eb:1b:61:3d:4d:21:4b:a3:
6f:aa:8d:c0:2b:b1:3b:58:b8:42:28:15:da:f8:61:
1e:e3:0d:58:da:34:b5:cf:b1:54:39:ef:d2:10:a1:
4b:9a:d6:ec:48:a6:6a:76:6f:c2:b1:27:59:6a:3e:
f9:d6:28:96:87:7e:7e:c0:3d:56:36:f9:f6:ca:53:
2a:2d:fc:29:52:77:70:e7:83:55:8d:3b:56:36:b9:
b2:f9:f4:31:eb:8f:8e:23:ab:69:63:fa:10:db:3b:
68:83:e8:ad:34:bc:97:f2:1d:48:9a:00:da:2c:2f:
59:b0:07:0d:b5:a2:69:36:bd:32:38:0b:c9:e2:87:
26:80:f4:f9:31:74:7b:06:28:c0:c3:f8:67:de:30:
07:6c:51:01:9c:82:12:d0:3b:e8:79:8e:c4:b7:4b:
82:68:16:4c:5f:54:1e:f1:13:44:1a:ef:9b:53:fe:
4a:c6:0e:e4:0d:a0:13:41:63:8f:f2:64:ad:3d:a6:
44:52:e8:61:70:00:c2:b6:16:d0:35:73:c4:ef:95:
ee:34:e9:de:0e:39:41:fe:07:d6:6a:43:5f:4e:f0:
cc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:AB:8C:50:B9:30:43:35:2B:E5:CC:48:F6:0D:99:23:F9:62:45:D6
X509v3 Authority Key Identifier:
keyid:B6:07:15:58:7E:DC:CB:32:5A:8D:7C:0F:5A:42:D8:F0:43:87:1D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:71:e6:7a:da:8c:ad:8e:16:a8:0a:f7:06:94:72:68:07:74:
a5:0d:69:6e:4e:9b:2d:3a:a0:e6:23:65:e4:13:23:e8:d1:ad:
94:b9:2d:c7:15:b3:f0:eb:0b:52:d2:cc:5c:4b:70:ba:20:12:
21:ba:43:f2:71:3e:cc:25:43:92:4d:18:62:14:5c:4e:40:de:
ed:09:a0:7c:8d:5c:ca:f1:b6:47:4a:8d:85:f2:ef:2c:4c:ed:
4e:b9:da:04:6f:d4:44:ac:6a:e9:06:5f:47:84:76:95:6d:62:
39:80:be:bc:0c:83:97:ed:b2:b6:45:ba:0a:e3:1b:ff:72:0d:
65:f5:de:9d:90:7a:b6:2d:67:e0:30:66:14:e9:1a:ba:a4:46:
80:5c:d3:f9:7a:8d:47:06:c0:de:a0:bf:b5:70:40:ad:db:5d:
2d:ec:04:28:83:24:f2:ca:af:b8:a8:da:24:92:70:55:fc:04:
3b:c7:c9:19:6f:ef:1d:ba:82:9a:8b:e4:d1:c3:8f:33:b6:9e:
0d:4f:4b:01:52:b4:11:6a:3f:a5:ab:ed:c5:65:b0:d5:19:27:
e8:cf:80:80:fc:d4:0c:40:cd:30:7d:4e:5b:dd:12:cd:c2:ea:
0e:70:ba:46:5b:c7:96:fd:27:22:a8:78:36:be:50:0c:5a:16:
82:98:7f:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ3w/nW5lN2SkN00XEwbztsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2MDcxNTU4N2VkY2NiMzI1YThkN2MwZjVhNDJkOGYwNDM4
NzFkYjcwHhcNMjUwNDI3MTUwMDU0WhcNMjUwNDI4MTUwMDU0WjAzMTEwLwYDVQQD
EyhkN2FiOGM1MGI5MzA0MzM1MmJlNWNjNDhmNjBkOTkyM2Y5NjI0NWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4e6evBjKAOhNnsCwAWnumwuHD/CZ
avfG/LTccP6nXfew6wLc6xthPU0hS6Nvqo3AK7E7WLhCKBXa+GEe4w1Y2jS1z7FU
Oe/SEKFLmtbsSKZqdm/CsSdZaj751iiWh35+wD1WNvn2ylMqLfwpUndw54NVjTtW
Nrmy+fQx64+OI6tpY/oQ2ztog+itNLyX8h1ImgDaLC9ZsAcNtaJpNr0yOAvJ4ocm
gPT5MXR7BijAw/hn3jAHbFEBnIIS0DvoeY7Et0uCaBZMX1Qe8RNEGu+bU/5Kxg7k
DaATQWOP8mStPaZEUuhhcADCthbQNXPE75XuNOneDjlB/gfWakNfTvDMOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNerjFC5MEM1K+XMSPYNmSP5YkXWMB8GA1UdIwQY
MBaAFLYHFVh+3MsyWo18D1pC2PBDhx23MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGdjVldIN2N5ekphalh3UFdrTFk4RU9ISGJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8zNTlkNzEtMWU5ZS00MzlmLTkzZjEt
MWY1NDI4Njg0ZmM3LzEvdGdjVldIN2N5ekphalh3UFdrTFk4RU9ISGJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi8zNTlkNzEtMWU5ZS00MzlmLTkzZjEtMWY1NDI4Njg0ZmM3
LzEvdGdjVldIN2N5ekphalh3UFdrTFk4RU9ISGJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbHHmetqM
rY4WqAr3BpRyaAd0pQ1pbk6bLTqg5iNl5BMj6NGtlLktxxWz8OsLUtLMXEtwuiAS
IbpD8nE+zCVDkk0YYhRcTkDe7QmgfI1cyvG2R0qNhfLvLEztTrnaBG/URKxq6QZf
R4R2lW1iOYC+vAyDl+2ytkW6CuMb/3INZfXenZB6ti1n4DBmFOkauqRGgFzT+XqN
RwbA3qC/tXBArdtdLewEKIMk8sqvuKjaJJJwVfwEO8fJGW/vHbqCmovk0cOPM7ae
DU9LAVK0EWo/pavtxWWw1Rkn6M+AgPzUDEDNMH1OW90SzcLqDnC6RlvHlv0nIqh4
Nr5QDFoWgph/Ng==
-----END CERTIFICATE-----
Generated at Sun Apr 27 20:21:06 2025 by rpki-client