Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
File: tIENfJv8WLngoeWRacPdMi3p9zc.mft (raw, json)
Hash identifier: iWXAi6FYRhseCJAIYioQwc/MyIonTn0maRZMtwI+tgY=
Subject key identifier: F4:6E:67:46:18:05:EC:4A:95:D3:31:5C:3D:A2:B0:DF:1F:98:54:AC
Authority key identifier: B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
Certificate issuer: /CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Certificate serial: 0196748C2B3F9A9BBE89C61DF331A30C434F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
Manifest number: 150E
Signing time: Sun 27 Apr 2025 00:01:05 +0000
Manifest this update: Sun 27 Apr 2025 00:01:05 +0000
Manifest next update: Mon 28 Apr 2025 00:01:05 +0000
Files and hashes: 1: jHERjwHQQByovrguIT9kNAenUlw.roa (hash: fC13Nqgu9Ca7tsn1KpGgJ5T6X5W9BeqrdrYm3SZE1Rs=)
2: tIENfJv8WLngoeWRacPdMi3p9zc.crl (hash: mVaaTWkjitxIOLhGrUS4Zjf9OvEVPOo+fEzdPo+8Ohs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:8c:2b:3f:9a:9b:be:89:c6:1d:f3:31:a3:0c:43:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Validity
Not Before: Apr 27 00:01:05 2025 GMT
Not After : Apr 28 00:01:05 2025 GMT
Subject: CN=f46e67461805ec4a95d3315c3da2b0df1f9854ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:85:ef:ff:da:b4:02:49:54:4d:1a:ed:0d:bf:
11:51:4e:14:a3:cc:e3:ec:09:da:36:d8:fc:e9:93:
1c:16:c8:69:52:ab:21:b4:73:b2:d1:b4:06:87:74:
bb:9f:67:42:97:58:78:04:97:4b:ba:2b:a4:7a:63:
b1:c0:a2:62:4d:98:bf:7e:1c:53:cb:2a:ac:6e:82:
0f:8e:9a:73:2f:e8:2e:93:8d:37:68:11:fd:bf:8f:
72:2d:4a:bd:8d:cb:8c:89:5e:4e:01:b2:ba:dc:8f:
f0:28:6c:eb:06:8c:4b:c9:23:fa:59:70:38:48:19:
20:b8:a5:3c:8a:fe:c5:6f:b0:8a:70:e9:10:9a:ff:
4f:fd:5e:74:4f:51:88:72:7a:74:83:84:65:2d:19:
5c:9c:e7:e1:65:d4:07:47:eb:2e:95:21:c0:fe:a1:
4e:1a:c9:b2:4e:1d:ea:7f:df:7a:f2:37:64:fb:4c:
c3:25:b7:76:74:8c:8b:1c:75:49:53:e2:e6:86:09:
c9:44:8f:25:b8:b4:91:89:f6:28:92:5c:92:88:11:
09:f2:4f:dc:ba:81:73:86:a7:30:26:c7:31:9c:6d:
f1:3c:45:3e:6d:ea:0e:44:04:6c:33:5d:76:62:07:
b4:6d:73:64:7b:8c:c4:51:64:b1:08:72:0f:ed:76:
aa:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:6E:67:46:18:05:EC:4A:95:D3:31:5C:3D:A2:B0:DF:1F:98:54:AC
X509v3 Authority Key Identifier:
keyid:B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:71:c7:fa:11:cd:d9:2c:81:57:7d:70:d0:7a:12:c1:db:20:
a0:39:a2:7b:19:c0:d0:fb:0c:89:8b:51:b4:1d:80:47:d9:47:
5c:c0:34:d9:c1:7d:e8:89:a8:e9:1f:58:53:b2:c0:0e:31:c4:
35:6e:c1:ab:ad:48:df:ae:6b:18:06:9a:21:ec:0f:ae:11:9d:
cd:87:cf:d2:95:3a:03:b1:2a:32:53:50:01:00:c4:a5:45:2d:
69:4e:a0:84:eb:7c:1b:b3:2b:0e:0c:d1:a5:df:44:6e:c2:42:
a2:c5:b2:0e:0f:b4:49:7c:5a:97:c7:d2:ba:24:41:b0:39:a8:
db:94:0c:38:f7:20:52:b6:2c:ed:92:5e:dc:85:3e:62:59:96:
c2:4b:e9:ae:90:2b:47:89:a3:28:44:a2:b6:e3:01:e2:ff:cf:
45:fb:39:3c:04:aa:5e:de:31:ca:6a:e0:ee:b8:f5:6d:4e:6d:
c8:fd:56:17:76:49:fc:01:dd:22:ac:57:67:cc:73:84:7d:df:
bc:54:a1:dc:d4:8c:81:66:63:d6:21:60:99:ba:b7:77:8d:0d:
49:47:06:39:bd:f8:1d:c3:da:f9:8b:36:09:02:1c:b5:0b:da:
e3:ee:00:71:fc:99:c8:ec:0b:85:65:a9:36:17:63:7a:0c:55:
3b:b3:be:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:34:20 2025 by rpki-client