Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/TqWy83Ukw9ONyApx2PAB7SxF6Jw.mft
File: TqWy83Ukw9ONyApx2PAB7SxF6Jw.mft (raw, json)
Hash identifier: p0SKz7eHA+SIUR8+hXxIz52S2zywcyUQCL4EaBAGjO0=
Subject key identifier: 29:AE:E2:E6:BF:3D:19:EE:2C:DA:B5:D1:E6:39:F6:46:5B:72:3F:36
Authority key identifier: 4E:A5:B2:F3:75:24:C3:D3:8D:C8:0A:71:D8:F0:01:ED:2C:45:E8:9C
Certificate issuer: /CN=4ea5b2f37524c3d38dc80a71d8f001ed2c45e89c
Certificate serial: 01967E6A386688001E9EF538921E71A8A2DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TqWy83Ukw9ONyApx2PAB7SxF6Jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/TqWy83Ukw9ONyApx2PAB7SxF6Jw.mft
Manifest number: 12D9
Signing time: Mon 28 Apr 2025 22:00:12 +0000
Manifest this update: Mon 28 Apr 2025 22:00:12 +0000
Manifest next update: Tue 29 Apr 2025 22:00:12 +0000
Files and hashes: 1: HJZuFg-aBDGic40vRoWhakH94Zo.roa (hash: b1vEsVgABbRc+hOZI2FcJP4+qO85CVqkQZmViTsB2bU=)
2: TqWy83Ukw9ONyApx2PAB7SxF6Jw.crl (hash: /+pQKDB70iYaRWTXWCsKgslVOuwZfIP2JNBSYD0aJ+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/TqWy83Ukw9ONyApx2PAB7SxF6Jw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/TqWy83Ukw9ONyApx2PAB7SxF6Jw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TqWy83Ukw9ONyApx2PAB7SxF6Jw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 22:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:6a:38:66:88:00:1e:9e:f5:38:92:1e:71:a8:a2:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ea5b2f37524c3d38dc80a71d8f001ed2c45e89c
Validity
Not Before: Apr 28 22:00:12 2025 GMT
Not After : Apr 29 22:00:12 2025 GMT
Subject: CN=29aee2e6bf3d19ee2cdab5d1e639f6465b723f36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f8:50:95:91:0c:82:fa:3d:2c:79:a7:54:72:
25:4b:2a:bb:d9:fe:91:29:da:be:45:25:e2:4c:29:
63:0b:6b:4a:a7:5c:bc:6c:80:31:c3:a1:e2:dc:f4:
f4:01:20:eb:bc:ad:59:11:9b:91:33:42:1b:ad:ad:
fc:de:83:be:8b:b9:c8:ec:0c:8c:db:37:56:55:cc:
8c:c7:51:8a:22:16:2d:13:7c:a2:53:24:07:27:9d:
a9:c7:4a:9c:18:4f:8b:81:1f:e6:c4:3a:ac:31:39:
0e:b9:91:9f:4d:2d:49:2c:ed:5b:db:7d:cf:a0:c1:
3e:ef:9d:65:46:20:8f:2d:90:40:d7:cd:4a:68:75:
1d:b2:ed:66:c9:c4:fd:1b:ac:a3:97:72:67:e7:d2:
d7:fc:f5:9c:05:dd:bf:3f:88:c0:39:76:5b:0c:a5:
a1:f6:0e:06:a4:86:1e:93:97:47:6b:61:7a:6b:f9:
92:7c:62:de:a3:f3:0f:29:82:9a:d3:06:c8:e2:94:
60:d4:b2:10:34:06:49:9a:1a:5a:6c:46:1e:52:06:
f6:8f:88:31:e2:ec:7c:25:9c:af:7d:43:ad:83:bf:
3f:cb:67:e5:82:7c:86:9a:18:c3:1e:e5:1a:58:d6:
09:fe:6c:e3:35:98:09:5b:3a:75:31:ff:01:cb:59:
86:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:AE:E2:E6:BF:3D:19:EE:2C:DA:B5:D1:E6:39:F6:46:5B:72:3F:36
X509v3 Authority Key Identifier:
keyid:4E:A5:B2:F3:75:24:C3:D3:8D:C8:0A:71:D8:F0:01:ED:2C:45:E8:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TqWy83Ukw9ONyApx2PAB7SxF6Jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/TqWy83Ukw9ONyApx2PAB7SxF6Jw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/TqWy83Ukw9ONyApx2PAB7SxF6Jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:92:0d:4c:06:00:3c:40:05:00:01:3d:cc:42:4b:70:c4:1d:
96:d9:03:32:e2:ba:cf:4b:65:ff:10:53:c3:9f:4c:67:1b:e3:
23:a6:96:08:68:05:1a:40:c6:fa:a8:8f:02:15:57:a7:b2:d8:
6c:08:ed:fe:fd:3c:94:13:02:c0:d5:c1:a4:cd:ac:8d:d7:38:
48:d2:b5:98:28:78:b5:bf:86:fa:48:ce:d3:78:56:2b:99:56:
f6:b3:17:04:3e:d2:b7:bb:39:e6:98:3d:f2:e1:8f:25:e7:eb:
83:92:2c:57:1b:e7:11:ee:9d:5e:62:56:39:36:e0:54:f1:f1:
60:d0:6d:bf:fa:e8:10:a5:f3:1e:85:4b:4d:3b:c7:a2:72:23:
61:12:2d:2e:e0:40:4b:6a:5e:87:7a:fa:48:43:4e:07:05:54:
90:dc:0e:8e:e1:9c:e6:08:cc:50:7c:68:91:b4:da:13:b4:31:
f9:ba:77:66:c7:80:24:80:6d:f6:01:84:9f:2a:92:2b:d3:66:
70:e4:f9:f0:71:64:42:04:07:33:87:4d:33:b3:be:7c:fb:24:
01:e8:d6:96:17:10:6d:61:b4:f8:ed:05:2c:70:d4:93:29:8e:
f8:d3:27:2c:b7:91:75:82:8a:9b:2d:6a:2b:54:45:50:98:de:
29:eb:2b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 04:21:10 2025 by rpki-client