Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft
File: TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft (raw, json)
Hash identifier: VsAmqyBXmno2gi8YK9F2rEMdVJT+dWATBBdZeXfjFDs=
Subject key identifier: D3:6A:2B:EF:27:5E:0F:D2:EB:78:1A:E1:B9:F1:83:80:AB:BA:EA:EA
Authority key identifier: 4C:4B:E4:33:94:A7:C2:BF:1E:8F:DF:BB:1D:50:6F:A3:7A:C7:32:31
Certificate issuer: /CN=4c4be43394a7c2bf1e8fdfbb1d506fa37ac73231
Certificate serial: 0196C0138BCE80503CD0ED3A880BA56BF17C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TEvkM5Snwr8ej9-7HVBvo3rHMjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft
Manifest number: 1535
Signing time: Sun 11 May 2025 16:00:28 +0000
Manifest this update: Sun 11 May 2025 16:00:28 +0000
Manifest next update: Mon 12 May 2025 16:00:28 +0000
Files and hashes: 1: 9dHpkAlOL0XgkLxchS4Qy2sMNCs.roa (hash: g9vMbBt1/drUDiVGZvjhkatTyph0Mun8c4A/qeNjgzE=)
2: TEvkM5Snwr8ej9-7HVBvo3rHMjE.crl (hash: GYkY/YwIrOG6mhde6Y6A1K1kNfkyae71mY/aEL191rQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TEvkM5Snwr8ej9-7HVBvo3rHMjE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:13:8b:ce:80:50:3c:d0:ed:3a:88:0b:a5:6b:f1:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c4be43394a7c2bf1e8fdfbb1d506fa37ac73231
Validity
Not Before: May 11 16:00:28 2025 GMT
Not After : May 12 16:00:28 2025 GMT
Subject: CN=d36a2bef275e0fd2eb781ae1b9f18380abbaeaea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:87:0a:a4:a4:bd:62:41:47:e6:ae:d2:15:e1:
a7:da:53:df:43:83:64:fb:68:bf:01:d5:9c:cf:96:
7a:d1:f1:18:86:7d:af:5a:65:ef:ed:4d:d0:f3:bf:
15:56:67:01:23:f1:d6:a1:79:0e:e4:fc:69:15:da:
7d:5c:0c:85:d3:80:ad:a8:a4:4f:d6:1a:aa:b0:9f:
58:c5:7c:58:62:a9:05:1c:92:fa:27:3e:b3:8d:cf:
73:2f:3f:c6:53:09:6d:15:ea:53:33:db:3e:1c:72:
22:ff:8f:61:9e:45:01:ee:51:74:77:c6:1a:93:65:
1d:9d:1d:bc:d0:d1:f9:a1:f8:96:6b:ef:dd:b4:ec:
e6:b1:56:7d:cb:a5:32:e2:c7:6e:35:31:3f:c0:ca:
72:e6:a0:24:2e:87:a7:1f:30:74:e7:cd:38:c9:bf:
fb:e9:ed:31:90:2e:96:d3:fd:a4:e6:d1:10:68:2e:
97:47:50:9c:c6:b1:4e:23:5c:88:06:c1:65:1a:ba:
d3:3c:e5:f6:7d:53:cd:b2:be:1e:84:89:92:b8:d0:
fc:ac:d3:f4:af:21:83:eb:c1:a7:3b:15:d9:57:44:
83:0f:90:86:76:dd:44:d1:33:21:6c:e2:76:90:32:
7f:07:bb:02:14:f4:df:f5:a8:ed:60:6e:03:2c:6b:
aa:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:6A:2B:EF:27:5E:0F:D2:EB:78:1A:E1:B9:F1:83:80:AB:BA:EA:EA
X509v3 Authority Key Identifier:
keyid:4C:4B:E4:33:94:A7:C2:BF:1E:8F:DF:BB:1D:50:6F:A3:7A:C7:32:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TEvkM5Snwr8ej9-7HVBvo3rHMjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:1e:7c:7d:b7:6f:68:fa:13:54:3a:46:16:e6:88:fe:91:c5:
48:c8:35:a3:6c:3c:e7:10:2e:b2:8b:89:70:d3:d7:fe:0a:93:
c2:d8:77:07:a1:cb:9d:a9:2d:ca:db:5b:08:36:01:2e:3e:0b:
75:cf:d9:ea:7c:ca:c3:24:22:e9:45:7e:85:e3:42:6e:bb:3a:
43:f9:f4:c6:bc:bb:dd:3f:7e:a3:95:86:06:56:75:d3:ea:35:
14:16:bf:84:4e:ac:3a:f2:ba:64:09:ab:94:86:2f:bc:ac:29:
94:f3:b8:b7:55:ef:1f:b9:43:a9:c5:5e:cc:c6:5f:52:2a:a8:
84:4a:18:af:58:d3:99:51:19:00:13:d2:b7:d6:72:49:0a:08:
cf:ae:dd:bd:4e:27:b7:d1:ed:48:c0:e7:05:65:b9:6f:b4:bc:
31:78:1c:08:a3:b3:4f:f7:44:ea:7b:49:31:5f:ec:05:ee:04:
0f:a6:d4:57:b2:e7:5a:1a:1a:02:93:87:92:c8:95:a6:8f:ee:
95:31:c1:83:73:78:47:3f:df:6e:f5:0c:99:25:de:be:b0:73:
a0:a2:23:34:e9:76:d3:df:b7:f5:d6:c8:0d:ad:f1:ca:72:a3:
e0:13:b6:ff:ca:80:e2:95:ac:e5:33:e2:f0:44:6e:c9:bd:95:
64:c3:b2:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 02:24:29 2025 by rpki-client