Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
File: TLbePNkQ87_3_4Xe1FLEMbHopSA.mft (raw, json)
Hash identifier: CIzOHHj2PwQK8h1+RgRq9z821vPo6l8Iqy1GENPIRnc=
Subject key identifier: 7C:32:1B:94:DB:7E:77:EA:6C:AD:B6:F9:BC:2E:F7:22:D4:4E:E8:EE
Authority key identifier: 4C:B6:DE:3C:D9:10:F3:BF:F7:FF:85:DE:D4:52:C4:31:B1:E8:A5:20
Certificate issuer: /CN=4cb6de3cd910f3bff7ff85ded452c431b1e8a520
Certificate serial: 0196832332582176A23ABDBDAD9344AA1749
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
Manifest number: 1517
Signing time: Tue 29 Apr 2025 20:00:44 +0000
Manifest this update: Tue 29 Apr 2025 20:00:44 +0000
Manifest next update: Wed 30 Apr 2025 20:00:44 +0000
Files and hashes: 1: TLbePNkQ87_3_4Xe1FLEMbHopSA.crl (hash: 1CjiAKYjwZBnWw5mpArKgODbmVFUQC0cD34iuNaVrIg=)
2: kE8LdGAFW614HUcjN1MoZxFokJs.roa (hash: XYMGtkKoA87TX5nzm+UQ3ylduTU9EvUGKlmdAtXqyu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:23:32:58:21:76:a2:3a:bd:bd:ad:93:44:aa:17:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cb6de3cd910f3bff7ff85ded452c431b1e8a520
Validity
Not Before: Apr 29 20:00:44 2025 GMT
Not After : Apr 30 20:00:44 2025 GMT
Subject: CN=7c321b94db7e77ea6cadb6f9bc2ef722d44ee8ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ff:a7:89:d2:72:e6:ad:b1:19:b7:d6:a8:c7:
da:dd:7c:92:d5:f9:bc:80:d5:34:0e:a9:fc:dd:50:
90:f4:48:d6:a3:76:3b:90:9c:64:6c:0b:84:bc:d2:
51:1d:66:70:91:cf:c3:46:07:5e:22:ee:c3:e7:27:
88:2c:2a:8f:72:d1:c8:8b:dc:60:01:46:0d:b3:97:
59:2c:af:5b:c2:c5:fe:20:27:0f:01:30:7d:8a:da:
ca:6c:ad:81:14:a9:b7:08:84:68:4a:2a:5d:a8:af:
9c:b7:cf:99:6a:a3:b4:df:00:6e:76:3d:bb:ea:4d:
a6:7e:1b:ef:d0:f5:f7:c3:0d:b7:4f:e7:a3:e9:de:
d4:a4:13:43:53:64:a7:46:f4:2c:53:88:ab:7e:7c:
54:c9:cd:c1:08:13:a1:30:c9:3a:b2:68:62:d2:5c:
8e:c1:3f:26:a9:77:4b:a4:8f:0d:30:bb:88:b6:4b:
5f:b2:fe:85:23:e0:61:3d:d2:fa:59:73:b7:2d:b1:
39:a4:94:88:5a:35:28:c0:bc:ff:27:8a:24:7e:fa:
a4:d4:18:f1:5e:7c:ee:23:c8:d3:63:3d:4d:02:d5:
da:6b:2f:5e:4b:c6:74:0a:26:98:d5:ea:3b:89:6a:
9c:51:70:e0:a6:82:3b:78:49:4e:18:1c:dc:07:ac:
1e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:32:1B:94:DB:7E:77:EA:6C:AD:B6:F9:BC:2E:F7:22:D4:4E:E8:EE
X509v3 Authority Key Identifier:
keyid:4C:B6:DE:3C:D9:10:F3:BF:F7:FF:85:DE:D4:52:C4:31:B1:E8:A5:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:3a:9c:6d:86:f3:40:de:32:d1:6c:d5:eb:47:0e:e8:14:83:
ca:89:d7:08:32:7a:18:11:9a:38:db:be:c3:fd:c2:a2:82:8b:
15:bb:c3:f2:87:9d:9c:e9:66:69:e2:7a:d0:45:f6:f7:fa:93:
d3:74:7a:57:d6:6f:48:2d:bb:7b:09:cc:a1:26:a7:4d:92:6b:
9c:26:10:ba:ec:49:23:e5:9b:11:5e:3b:d0:c5:f6:3f:81:25:
c5:13:b6:61:27:21:8b:b1:d9:98:29:fb:24:b8:40:79:d7:be:
2e:04:eb:8f:59:7d:0d:df:44:91:e0:a4:22:82:d6:7f:0b:2e:
cb:2c:ff:88:87:4b:9b:83:e4:e8:30:fd:b8:99:97:95:35:f9:
4b:3d:32:34:fa:67:d4:84:ae:b8:b5:7c:85:18:dc:2d:f1:ea:
6e:5e:fe:ed:e9:86:c6:db:13:91:e5:c2:06:c9:d2:ba:17:6a:
e1:e1:ec:ea:92:e3:e7:33:04:ea:28:ba:fd:8c:97:9c:50:87:
c1:28:9c:0c:5b:1f:e3:85:3a:8c:17:0c:36:b7:98:da:b4:07:
8c:1c:9e:f3:5d:31:fe:1a:a9:1e:75:5c:ec:3c:81:48:09:fb:
40:a6:49:9b:b1:8c:86:3e:ec:1e:91:7c:54:42:64:96:21:39:
2f:54:4f:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaDIzJYIXaiOr29rZNEqhdJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYjZkZTNjZDkxMGYzYmZmN2ZmODVkZWQ0NTJjNDMxYjFl
OGE1MjAwHhcNMjUwNDI5MjAwMDQ0WhcNMjUwNDMwMjAwMDQ0WjAzMTEwLwYDVQQD
Eyg3YzMyMWI5NGRiN2U3N2VhNmNhZGI2ZjliYzJlZjcyMmQ0NGVlOGVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/+nidJy5q2xGbfWqMfa3XyS1fm8
gNU0Dqn83VCQ9EjWo3Y7kJxkbAuEvNJRHWZwkc/DRgdeIu7D5yeILCqPctHIi9xg
AUYNs5dZLK9bwsX+ICcPATB9itrKbK2BFKm3CIRoSipdqK+ct8+ZaqO03wBudj27
6k2mfhvv0PX3ww23T+ej6d7UpBNDU2SnRvQsU4irfnxUyc3BCBOhMMk6smhi0lyO
wT8mqXdLpI8NMLuItktfsv6FI+BhPdL6WXO3LbE5pJSIWjUowLz/J4okfvqk1Bjx
XnzuI8jTYz1NAtXaay9eS8Z0CiaY1eo7iWqcUXDgpoI7eElOGBzcB6weRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHwyG5TbfnfqbK22+bwu9yLUTujuMB8GA1UdIwQY
MBaAFEy23jzZEPO/9/+F3tRSxDGx6KUgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVExiZVBOa1E4N18zXzRYZTFGTEVNYkhvcFNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS84ZmEzNTQtNGJkNS00NTRkLWIyZDgt
MDNmNjA0MzI0ZmNmLzEvVExiZVBOa1E4N18zXzRYZTFGTEVNYkhvcFNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS84ZmEzNTQtNGJkNS00NTRkLWIyZDgtMDNmNjA0MzI0ZmNm
LzEvVExiZVBOa1E4N18zXzRYZTFGTEVNYkhvcFNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnTqcbYbz
QN4y0WzV60cO6BSDyonXCDJ6GBGaONu+w/3CooKLFbvD8oednOlmaeJ60EX29/qT
03R6V9ZvSC27ewnMoSanTZJrnCYQuuxJI+WbEV470MX2P4ElxRO2YSchi7HZmCn7
JLhAede+LgTrj1l9Dd9EkeCkIoLWfwsuyyz/iIdLm4Pk6DD9uJmXlTX5Sz0yNPpn
1ISuuLV8hRjcLfHqbl7+7emGxtsTkeXCBsnSuhdq4eHs6pLj5zME6ii6/YyXnFCH
wSicDFsf44U6jBcMNreY2rQHjBye810x/hqpHnVc7DyBSAn7QKZJm7GMhj7sHpF8
VEJkliE5L1RPKQ==
-----END CERTIFICATE-----
Generated at Tue Apr 29 23:08:00 2025 by rpki-client