Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
File: tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft (raw, json)
Hash identifier: VtzmE4W38e0lhnt6HWAHxzDYAU5KUHrrRNS9vU5LAFU=
Subject key identifier: 1E:81:F4:5B:F7:72:73:8D:D2:2C:F6:08:DE:67:36:5D:FB:80:FB:01
Authority key identifier: B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
Certificate issuer: /CN=b4430ba11506741d676ea202e291ec7ec6191b17
Certificate serial: 01967AFB86FD481B7181C48E2FF0021CB116
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
Manifest number: 1516
Signing time: Mon 28 Apr 2025 06:00:26 +0000
Manifest this update: Mon 28 Apr 2025 06:00:26 +0000
Manifest next update: Tue 29 Apr 2025 06:00:26 +0000
Files and hashes: 1: Ar5ixINRYv4h1JY24F8pTYnNdfU.roa (hash: cerPS0rrVRA1DCH9YtBUW4yHi1b4My2ifCj92CGheoI=)
2: tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl (hash: CigCO/TOFQTOmC2eIVBz988tA5hfGpM5b9Sw/3eKVzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:fb:86:fd:48:1b:71:81:c4:8e:2f:f0:02:1c:b1:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4430ba11506741d676ea202e291ec7ec6191b17
Validity
Not Before: Apr 28 06:00:26 2025 GMT
Not After : Apr 29 06:00:26 2025 GMT
Subject: CN=1e81f45bf772738dd22cf608de67365dfb80fb01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:be:ab:86:7c:f7:ef:4d:81:8f:1e:ef:4b:59:
e7:1c:5e:79:74:23:9c:5e:8b:a2:3d:c6:74:da:4d:
67:15:31:28:b0:fe:d0:8e:46:31:59:f1:d5:64:f5:
91:fc:03:5b:ce:c9:30:3a:ad:a3:28:db:6d:34:7a:
f1:9c:8b:df:53:4b:c5:13:ab:8a:28:5d:88:68:49:
77:50:32:0e:2a:c9:ea:db:07:d6:e0:02:ff:bd:9a:
ee:5a:9f:ae:32:80:47:bf:ff:b7:76:67:37:bc:63:
5c:9a:ea:6d:d6:6f:a3:ce:41:60:a5:db:12:6b:cd:
31:d6:c0:e2:fb:d1:99:97:ce:2c:6d:ef:ed:76:47:
bb:89:75:aa:64:b7:d4:65:92:88:56:94:2d:7a:d4:
a4:7e:52:c8:3e:30:2a:eb:b0:47:99:bb:19:a6:4b:
01:03:81:b0:b1:ea:66:4d:16:1d:86:8e:93:e5:ff:
56:fb:5e:13:4a:88:2a:0b:48:43:4a:0d:f8:8a:d0:
fa:4d:cd:c0:66:42:a1:dc:a2:71:6c:7b:61:c9:84:
d3:80:e8:b6:a5:b0:ea:9e:ff:85:6b:fb:18:8a:39:
fa:53:a4:06:ad:aa:31:03:a4:ca:f1:ce:17:d1:21:
25:89:84:63:a7:74:61:bc:c8:a5:0e:40:e6:08:77:
31:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:81:F4:5B:F7:72:73:8D:D2:2C:F6:08:DE:67:36:5D:FB:80:FB:01
X509v3 Authority Key Identifier:
keyid:B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:f7:6b:66:15:3a:f0:4c:39:9c:d1:e7:fc:c5:48:55:b6:6b:
d0:8b:07:e1:86:83:f8:a2:e6:ca:f3:d7:f0:c8:6e:1b:cc:d0:
3f:6d:0f:de:99:cf:7b:c7:b9:4a:09:6a:b7:15:73:c8:5f:26:
75:c0:27:a4:ae:36:52:be:cc:6b:33:4e:b2:41:c8:f9:d8:3c:
0b:4f:e8:3f:7f:c1:18:0a:00:17:16:4d:58:97:1e:bb:6b:a3:
ae:b7:82:24:77:33:55:cf:2b:b5:22:72:21:b7:0f:4c:bf:31:
00:56:82:f1:78:40:e1:e8:3a:82:1f:b2:f2:91:32:ff:34:1a:
61:18:3e:89:8c:cb:46:e9:69:f6:aa:0b:a6:08:6e:b6:ad:a1:
61:6e:de:8c:6c:eb:d3:07:e3:bd:b6:55:5d:05:63:b5:40:40:
51:de:af:89:7d:5e:d6:a5:0a:ed:92:71:7a:0b:6c:ff:fc:48:
62:85:7d:19:92:2e:44:4f:c2:b9:c0:0a:c3:56:47:1c:7f:a1:
6a:23:5a:75:f6:16:ed:61:28:b2:a4:47:15:9f:a4:eb:77:8d:
0a:a6:c2:97:b5:f7:f8:53:31:37:40:11:50:ae:34:05:62:e2:
ea:3f:b7:9a:f7:12:87:d4:23:c5:fd:95:83:95:86:10:40:6a:
83:ed:60:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 15:23:53 2025 by rpki-client