Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
File: tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft (raw, json)
Hash identifier: YtrJqasGgAmeBhG+LUJFaU3F97zvO61RHGUCfN+niZs=
Subject key identifier: 8C:6B:44:55:C4:23:43:4B:05:1E:27:88:A8:6F:47:6B:C8:9C:DE:F9
Authority key identifier: B4:D8:B2:7A:AA:55:E5:1A:34:5F:6A:45:19:E3:67:95:50:46:C3:0A
Certificate issuer: /CN=b4d8b27aaa55e51a345f6a4519e367955046c30a
Certificate serial: 019675D507F191116C5BA28AC74193E73E66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
Manifest number: 10B7
Signing time: Sun 27 Apr 2025 06:00:17 +0000
Manifest this update: Sun 27 Apr 2025 06:00:17 +0000
Manifest next update: Mon 28 Apr 2025 06:00:17 +0000
Files and hashes: 1: nqRmyRsi2-hKiZqffDikHhIZIA8.roa (hash: vx+mbFW9leAh9kJ2X2Cv3OUNnkvDKbo77etkxvxrmFM=)
2: tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl (hash: Xd0Ll35Fmiiqb3KVkrM3zyVmfJF07st7Mu4jsTlE6Fo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:07:f1:91:11:6c:5b:a2:8a:c7:41:93:e7:3e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4d8b27aaa55e51a345f6a4519e367955046c30a
Validity
Not Before: Apr 27 06:00:17 2025 GMT
Not After : Apr 28 06:00:17 2025 GMT
Subject: CN=8c6b4455c423434b051e2788a86f476bc89cdef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5a:db:d1:ed:0a:33:83:dd:10:6f:0e:cf:f9:
f9:ac:95:ce:ec:68:4b:9a:00:ea:98:f4:90:12:b4:
e3:12:43:d4:58:b7:f2:5d:63:98:e3:36:90:9d:66:
d8:05:c9:56:c6:68:8f:27:79:17:00:05:64:55:5f:
30:29:6b:41:fa:fc:e3:8a:00:e6:9c:84:f5:b1:df:
c9:36:be:4d:6a:aa:33:b1:c0:94:ef:fe:cf:8f:37:
76:38:fd:66:77:ef:0b:18:4f:23:ab:1b:85:cd:9c:
0c:34:79:17:ac:ba:38:b7:e0:ab:58:1f:35:c2:40:
de:a6:0c:cc:d2:10:ae:e9:55:ab:84:e2:6a:41:b3:
fa:ad:13:f8:cc:75:8f:b8:6c:b0:a1:d0:93:6c:8a:
27:3a:7a:93:82:40:eb:ff:76:f0:7d:78:86:32:ce:
0e:97:01:f0:15:c1:95:56:71:f9:b2:79:aa:83:e8:
37:48:b2:d3:e4:9d:19:d9:3f:87:fd:c3:ea:6a:a1:
8b:53:9b:0e:30:5a:22:db:62:48:eb:a5:59:4c:fa:
5d:ab:48:4c:e8:53:ef:ee:3a:e8:9f:50:a6:35:1f:
ba:b9:a8:c1:02:36:c6:b4:d5:e4:40:2f:05:7a:82:
2b:7e:f7:a7:5f:a0:b4:01:65:ed:eb:22:00:bb:22:
91:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:6B:44:55:C4:23:43:4B:05:1E:27:88:A8:6F:47:6B:C8:9C:DE:F9
X509v3 Authority Key Identifier:
keyid:B4:D8:B2:7A:AA:55:E5:1A:34:5F:6A:45:19:E3:67:95:50:46:C3:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:f9:5e:2a:11:55:69:cf:0d:7e:27:5f:c2:bc:b4:04:76:55:
ab:39:fa:54:08:00:17:7c:b5:e3:d6:fb:bd:4b:4b:09:87:2e:
2c:f3:3b:11:35:73:91:35:1d:45:21:ff:dc:9f:e4:61:2b:79:
19:fe:9a:52:4d:32:8f:2e:4f:a0:60:c6:35:ea:7b:fd:db:8d:
26:68:a1:46:dd:ee:9b:a3:c8:da:5b:bc:d8:62:bc:ce:37:2e:
c0:97:de:be:97:da:f9:a1:bd:e0:88:c3:2d:5e:5d:c3:a7:c2:
7d:8c:11:74:24:b4:13:a0:82:1d:8b:14:69:52:7f:4e:3e:89:
6f:55:67:0f:96:39:ab:5c:34:97:72:af:e1:fb:8d:c0:c3:b6:
47:d8:ca:d7:47:28:5a:27:9f:37:e0:e8:f7:2d:bd:a8:32:63:
6b:1b:33:be:70:9b:3b:7d:4e:df:97:44:0c:9d:24:72:b6:9b:
75:8a:43:c6:85:8e:8a:99:bb:39:7b:49:a0:e6:53:27:ea:eb:
6d:72:b1:c4:7c:4f:34:2f:0f:a2:d4:2e:9b:1e:9e:87:e4:a8:
3c:07:67:df:cc:48:58:b5:98:d0:04:c7:6a:b0:a9:05:4e:37:
42:d5:27:b9:ab:53:be:8f:fe:50:3d:95:54:3f:37:7f:3f:c4:
0c:34:75:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:33:01 2025 by rpki-client