Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
File: tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft (raw, json)
Hash identifier: tPtK3NR0qUK5J/jMLp6dRUa2ROwMKYlb0RSRWZiqkkw=
Subject key identifier: 52:0E:46:A0:51:68:D8:A5:9E:B0:A8:02:A7:7C:40:6F:07:57:EA:AF
Authority key identifier: B5:3A:CA:36:84:6D:2D:30:23:64:8E:AC:58:1C:7D:9B:63:17:EE:DC
Certificate issuer: /CN=b53aca36846d2d3023648eac581c7d9b6317eedc
Certificate serial: 0196808FBB546C9DD0D2C1F43AD34BB26616
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
Manifest number: 0113
Signing time: Tue 29 Apr 2025 08:00:25 +0000
Manifest this update: Tue 29 Apr 2025 08:00:25 +0000
Manifest next update: Wed 30 Apr 2025 08:00:25 +0000
Files and hashes: 1: tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl (hash: iBoclZxxblX0o/kV0kkzE3qDn4nPX1v/P5hOVU0wuzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 08:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:8f:bb:54:6c:9d:d0:d2:c1:f4:3a:d3:4b:b2:66:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53aca36846d2d3023648eac581c7d9b6317eedc
Validity
Not Before: Apr 29 08:00:25 2025 GMT
Not After : Apr 30 08:00:25 2025 GMT
Subject: CN=520e46a05168d8a59eb0a802a77c406f0757eaaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a3:66:68:a6:18:32:f7:d8:4f:a3:0c:3d:ff:
a0:15:96:a9:af:3d:93:f6:44:b7:42:50:fd:57:23:
e1:14:b1:6e:3c:8e:e4:78:32:78:5f:b5:7f:0a:b5:
ba:bd:77:b0:93:00:d3:a8:58:3a:de:7a:46:c5:51:
1c:96:04:07:9e:86:b7:cd:29:d3:95:0f:31:18:d5:
92:b5:07:3e:dd:a5:23:d9:f3:0e:6b:25:73:3f:1c:
ca:32:42:c1:4a:54:49:2a:84:aa:11:4f:0c:aa:de:
93:4d:88:74:ce:0b:05:c1:a3:bd:e5:56:2e:48:84:
e8:3f:7f:2b:7d:cc:9b:28:c4:6f:62:f8:a3:30:86:
95:94:7e:a3:7d:a2:d5:cd:8f:39:7a:6d:3a:e3:9f:
b4:d5:39:59:8f:76:10:25:18:f7:59:6b:ae:ae:6e:
bf:d7:b3:5a:3c:19:82:a7:51:01:ca:34:d8:3d:af:
05:df:1b:5b:20:33:c7:eb:fa:cb:3e:c8:b4:89:af:
67:cf:d3:b3:be:86:6d:c3:b1:8c:53:4b:0c:41:90:
33:65:78:3c:a4:61:0e:ad:93:66:b6:a9:80:d7:b4:
fb:27:9f:10:71:bf:47:79:2c:39:56:43:de:2e:7c:
ab:99:a4:c0:e5:af:e1:57:0a:d7:6e:4a:ea:cd:a8:
45:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0E:46:A0:51:68:D8:A5:9E:B0:A8:02:A7:7C:40:6F:07:57:EA:AF
X509v3 Authority Key Identifier:
keyid:B5:3A:CA:36:84:6D:2D:30:23:64:8E:AC:58:1C:7D:9B:63:17:EE:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:93:e0:88:6f:0c:ec:20:cc:b0:68:5c:88:94:68:e6:18:82:
41:71:6c:5f:f4:4a:36:24:66:3d:85:82:7b:df:df:0f:54:f6:
8a:5e:0b:9b:79:e2:9f:ad:e3:1b:da:8f:9f:f4:13:44:88:d0:
b9:11:4d:6a:12:d8:e5:43:7b:5a:76:74:7e:13:c6:bc:c8:8f:
e9:af:0c:d0:b3:a3:53:2b:b8:14:dd:9e:b7:ba:34:69:3f:59:
09:46:8e:86:cb:14:d3:f1:6f:36:6c:e1:b9:c4:9e:91:b0:f3:
fc:9d:22:e6:24:f1:28:31:e0:0d:7c:ce:21:de:45:0b:27:e3:
29:9c:b0:4f:0b:85:8e:7f:6a:59:31:f9:95:a1:d0:22:59:6c:
96:8f:f6:37:07:09:3a:5c:7b:c1:fc:7f:83:b6:3e:78:00:41:
6c:82:7e:85:cc:94:79:73:84:9a:a8:8d:81:61:c4:6a:f1:ad:
4f:25:31:2c:b7:27:db:89:2a:0a:92:41:f6:b2:e3:67:74:19:
9d:0d:c7:74:46:77:aa:c7:9b:98:2b:95:ee:0a:cc:cc:75:a0:
27:52:70:5b:cb:34:a5:a1:d7:ce:04:1e:f6:2a:ae:d7:cc:08:
17:e4:26:6d:3e:cb:d7:e7:07:50:d3:39:45:b8:5e:6d:09:dc:
0e:50:d1:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 11:51:33 2025 by rpki-client