Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
File: TfkmWGAQlO1kmFxkxpUr40FjAc4.mft (raw, json)
Hash identifier: xTs4gPHcKp9tymARldevZaIEeN61glOmtKOg7el9fn4=
Subject key identifier: 60:B0:8F:34:85:5D:FD:01:DB:22:69:EF:6F:85:3C:E8:2B:11:D7:60
Authority key identifier: 4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
Certificate issuer: /CN=4df92658601094ed64985c64c6952be3416301ce
Certificate serial: 01967BD7F3729F8B76509AA91AC052117E29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
Manifest number: 077D
Signing time: Mon 28 Apr 2025 10:01:12 +0000
Manifest this update: Mon 28 Apr 2025 10:01:12 +0000
Manifest next update: Tue 29 Apr 2025 10:01:12 +0000
Files and hashes: 1: 42VDtF9LMj3RUZlBTr5Tpxb7XhY.roa (hash: 06Fp4iuAbTOsazThfCr6hEmyN81BPyfi3nXeyKKT6d0=)
2: TfkmWGAQlO1kmFxkxpUr40FjAc4.crl (hash: S0kvS+AblljHM0v+5dd0PCjIUIzhKKbHBpt8AoJeQ0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 10:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:d7:f3:72:9f:8b:76:50:9a:a9:1a:c0:52:11:7e:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4df92658601094ed64985c64c6952be3416301ce
Validity
Not Before: Apr 28 10:01:12 2025 GMT
Not After : Apr 29 10:01:12 2025 GMT
Subject: CN=60b08f34855dfd01db2269ef6f853ce82b11d760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:30:b1:bf:73:b8:c0:90:a3:fa:e1:0c:54:12:
09:db:56:14:89:a6:b9:7a:07:4b:5f:a1:b0:51:74:
47:59:36:19:10:f7:24:55:e0:ce:6b:f3:e4:e3:f2:
2f:72:97:b0:46:02:8d:61:49:86:89:ca:d0:94:17:
87:de:6e:e5:30:1b:4b:fe:44:4c:f7:0a:b8:c1:43:
df:b1:3a:cf:d1:32:fd:bc:21:a5:a6:e6:a7:c6:09:
0f:77:43:af:71:ee:89:47:78:84:06:48:cd:b9:1a:
2f:27:6c:16:62:36:71:33:d5:f8:76:b2:cc:e3:83:
7a:9d:b5:63:07:c7:72:80:7a:81:ed:aa:37:8d:ab:
03:22:77:73:19:df:56:3d:f3:5f:6a:d6:1d:89:3d:
fb:02:e1:49:4d:73:8e:39:24:6e:cb:5b:49:ad:06:
89:fe:10:a0:f4:34:b0:b8:34:de:21:6f:4a:e8:fb:
11:0f:f1:92:bc:19:cd:9b:3b:c5:3e:6a:6c:03:f9:
62:c0:c7:a1:5c:dc:7f:de:a9:5f:b8:99:86:be:29:
69:f1:e6:34:67:61:89:01:ed:7a:c9:e6:ef:93:be:
29:32:a7:2e:14:a5:a4:27:c7:3f:8e:72:79:69:2d:
0d:da:04:7d:c6:fa:5d:db:40:fe:1d:73:17:d8:6b:
55:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B0:8F:34:85:5D:FD:01:DB:22:69:EF:6F:85:3C:E8:2B:11:D7:60
X509v3 Authority Key Identifier:
keyid:4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:86:1d:b3:07:e6:be:fc:3a:33:c7:48:f3:8c:6b:45:07:0b:
04:bd:2d:13:11:dd:88:5d:1a:e8:0b:51:df:5c:31:d3:22:a4:
d3:ad:3a:9d:d7:b8:2c:84:e3:e2:30:82:dd:88:44:64:54:3f:
a2:06:d9:3c:6f:e0:84:2d:72:8a:1a:f2:a9:cc:03:59:5a:c7:
82:e7:07:20:25:96:e5:4b:a2:7e:5f:a8:6f:16:23:75:aa:79:
24:fe:7e:b6:8e:ac:a5:f7:b4:42:61:b8:b0:f3:db:75:1e:95:
81:75:3f:e9:a6:93:b8:1f:4d:31:f4:63:22:30:80:df:8a:c6:
92:49:80:c0:ce:d1:af:d5:77:41:d6:f4:09:b3:02:41:62:9c:
ca:93:74:a5:83:4c:89:b1:07:41:11:a6:a1:98:71:6b:c2:60:
8e:09:0e:43:75:3a:f2:fd:8b:cf:3d:d7:b6:13:92:e7:5b:72:
c9:14:35:69:cb:f4:3b:ee:ca:8a:b8:7a:dc:db:cf:91:7b:3c:
bd:a8:c0:cc:bf:6e:12:c7:91:96:e4:ff:f1:b6:0b:14:b0:ce:
a1:db:ec:fa:43:bc:2b:fe:73:44:e9:e1:25:58:7d:e8:6d:6d:
a0:83:83:bf:6e:ee:2a:35:b7:78:53:86:d7:6a:bb:85:f9:f6:
b8:57:52:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 17:35:30 2025 by rpki-client