Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
File: tu2bXLS2SGbDg97kV2v_P_h1JC0.mft (raw, json)
Hash identifier: gzIw7cIo1VPHgORDsicvjEqJmWSDUYU1KqTISUGgmlY=
Subject key identifier: A0:D5:29:DF:5F:6C:95:FA:E8:45:1D:EF:0D:DC:9E:E7:54:64:BF:28
Authority key identifier: B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
Certificate issuer: /CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Certificate serial: 0196B890CE847A50F33076150EB050BE6751
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
Manifest number: 0CA9
Signing time: Sat 10 May 2025 05:00:19 +0000
Manifest this update: Sat 10 May 2025 05:00:19 +0000
Manifest next update: Sun 11 May 2025 05:00:19 +0000
Files and hashes: 1: Cr7WIZXJqqSxx1MgWk3fJvY56gA.roa (hash: W0p2Ng/L4A+CUhGlPSgje47dkJ8+aMEjdUAnh4zo9Rc=)
2: tu2bXLS2SGbDg97kV2v_P_h1JC0.crl (hash: 3AhwckTxY+4V+MCqiFySzLS4DJ2lj2VzRZylAG9KFsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:90:ce:84:7a:50:f3:30:76:15:0e:b0:50:be:67:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Validity
Not Before: May 10 05:00:19 2025 GMT
Not After : May 11 05:00:19 2025 GMT
Subject: CN=a0d529df5f6c95fae8451def0ddc9ee75464bf28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ab:74:e2:e4:b7:65:e3:0d:f4:bc:7b:63:65:
03:3d:0e:c8:0a:b9:c1:83:d6:3a:3c:c1:81:75:20:
c6:4f:0c:34:8e:ae:7f:91:e3:05:4b:01:f4:7a:b0:
3c:a4:29:45:8e:6e:2b:09:a6:15:24:9d:bb:ec:a8:
c5:6b:e0:ab:0b:13:7f:ed:ff:3e:d0:78:7c:6c:66:
65:7b:a8:98:54:90:f8:87:1c:6b:5a:5f:44:b8:a1:
fc:5a:32:59:ea:93:ce:a4:81:1a:14:97:46:13:ef:
8d:d1:ef:3f:06:56:e0:36:fa:ba:01:11:3f:94:2d:
dd:0c:bf:a9:55:66:cd:ae:d8:22:e8:0c:10:e6:2d:
e7:6a:6b:26:77:13:1e:4c:db:cf:d8:23:9a:a5:3c:
e9:11:33:9d:7b:5d:1d:ca:98:fe:33:2a:e6:44:4e:
d8:f5:ce:58:46:af:89:5e:6d:1f:31:73:67:e7:d6:
2f:c8:02:78:18:d0:c9:28:a8:c0:60:0e:fd:bb:4b:
49:96:7f:e3:8b:8a:4c:d1:95:ee:43:aa:bd:de:11:
a9:89:59:fc:f4:09:3e:d5:6f:f8:9c:34:7a:b9:7b:
a7:07:2d:d0:47:6e:7e:23:c2:3b:78:c5:42:a1:82:
13:b6:42:1c:89:7e:50:b9:e6:15:c5:e2:0c:87:94:
92:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D5:29:DF:5F:6C:95:FA:E8:45:1D:EF:0D:DC:9E:E7:54:64:BF:28
X509v3 Authority Key Identifier:
keyid:B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:a4:b4:27:2b:ce:08:c7:b4:95:7f:af:05:c6:4b:dc:1b:c0:
96:b6:5e:cc:3f:dd:5a:e2:b6:dc:91:12:bd:f2:24:b8:9f:16:
f7:15:83:04:71:88:40:a5:17:f6:a3:d0:cc:ee:1b:a6:5f:f4:
71:f5:fe:d7:5f:98:00:72:ca:8b:90:2a:01:8e:35:94:99:bb:
18:4b:b5:c7:33:6e:9d:a2:07:1d:96:3f:65:db:0b:4b:60:50:
56:64:e1:8e:83:8b:74:be:2c:ed:d2:2e:fb:ab:40:3c:47:9d:
36:b3:a8:6a:68:a6:ff:5e:c2:a2:17:4c:78:fc:db:7d:f9:d2:
45:b2:23:d4:c5:40:a0:a3:d0:d4:e8:d9:4c:7b:d2:72:e7:53:
71:25:41:3f:1c:1f:0b:71:6c:2b:11:7b:d1:5a:d1:e3:d2:6f:
61:f5:8e:bc:53:4f:cf:c5:a1:62:be:23:8e:5d:2f:4a:ab:51:
1a:da:30:8b:06:0c:e6:7d:87:e2:62:9e:57:b5:aa:00:21:77:
ca:12:59:1b:1e:0f:a8:3b:1e:d2:6a:cb:fa:8d:4c:37:34:e5:
4d:82:c8:85:35:29:63:a8:32:30:86:37:6f:f1:95:e0:db:f4:
a8:4d:55:d1:3d:aa:e6:39:69:bb:df:d3:6a:b0:41:de:eb:4e:
48:34:e9:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 09:59:39 2025 by rpki-client