Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: u36sMc2+io3srsaHwrWnPbYQ8tHilvwO2iPeTouZ1f4=
Subject key identifier: 33:A8:54:EA:F2:E1:3A:57:01:96:1E:93:FD:A5:D2:A4:15:0D:6C:F9
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 0196BCA4FAFDBF16301A7EB0F7A761FBEB67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 1534
Signing time: Sun 11 May 2025 00:00:50 +0000
Manifest this update: Sun 11 May 2025 00:00:50 +0000
Manifest next update: Mon 12 May 2025 00:00:50 +0000
Files and hashes: 1: DvRXNlTCR35yGxJPggKI6LQ1TXY.roa (hash: uCs5edSvBBj2KY6s6HL8wAMD7pMX49G3e3NvxavAQGo=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: kSqcWvedKRYRwCfGXCNg8jFe0nZq2UOIaik5sz8ciBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 00:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:a4:fa:fd:bf:16:30:1a:7e:b0:f7:a7:61:fb:eb:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: May 11 00:00:50 2025 GMT
Not After : May 12 00:00:50 2025 GMT
Subject: CN=33a854eaf2e13a5701961e93fda5d2a4150d6cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4f:7d:22:db:17:d3:79:01:b4:be:d3:75:c0:
ee:6d:6d:a9:5e:8a:5e:46:f0:7f:d1:4c:f9:55:91:
61:2b:5f:90:6e:07:5a:e3:10:eb:6f:7f:08:d9:9a:
24:44:a8:99:9e:c6:83:c3:3a:20:22:43:6f:b2:60:
ac:bf:54:53:f5:a7:b3:54:32:b5:01:34:11:72:b5:
09:46:a6:35:0c:49:2a:84:07:6a:c0:63:08:b9:5b:
43:f3:09:11:3e:fd:a7:9f:e4:d4:26:b5:1f:0f:48:
62:c9:eb:ee:37:fc:2a:0c:cb:91:98:7a:86:25:bf:
62:0f:e4:32:3b:40:92:99:63:97:a5:01:51:f0:c7:
cd:5c:32:cf:51:86:ac:52:d9:9b:8a:9f:bc:e6:0f:
51:f5:03:7d:14:28:69:c2:4c:f5:38:05:b7:b1:49:
25:cc:e4:8f:aa:bd:4e:9c:6d:50:ae:12:8d:74:cf:
30:82:09:98:e0:c0:a9:a2:5e:48:e9:38:da:50:eb:
8f:78:ef:67:c8:5a:b6:0a:39:7d:52:3e:57:e1:af:
5d:7d:74:2e:c7:bd:5d:fe:01:c8:f8:93:28:15:bb:
ab:eb:7c:4d:b5:eb:41:44:d8:25:67:02:e0:a1:29:
d5:9d:31:32:59:0f:25:69:7f:bc:ba:74:85:d9:d5:
59:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A8:54:EA:F2:E1:3A:57:01:96:1E:93:FD:A5:D2:A4:15:0D:6C:F9
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:ca:ff:6f:1c:bf:74:e2:fc:ab:7f:70:01:6b:2d:a8:e8:3a:
bf:d0:ec:d6:76:10:ae:a3:cd:2c:48:75:b2:e7:c6:4c:5d:21:
4d:50:8f:0d:62:9c:30:6a:a5:ae:db:72:8b:48:34:ee:14:0f:
a7:49:4a:b1:64:75:e9:b6:dd:33:e6:50:fc:6b:5a:20:13:e5:
08:9d:96:f6:e8:2c:bd:ef:0f:81:26:67:62:db:02:96:9a:aa:
09:d7:cf:4f:6d:98:4a:d2:31:3e:e0:63:01:7f:62:8e:d0:76:
2b:aa:94:90:98:30:1c:d6:9c:05:e7:2e:ad:12:cf:17:72:9f:
39:69:8f:96:04:43:0a:7f:69:76:39:86:4d:93:ec:68:a8:28:
4e:af:fa:54:6b:43:fd:f1:b1:f8:54:da:fa:91:1e:c6:2d:4a:
2b:51:b8:7a:d5:bf:90:4b:65:e0:3b:63:bc:09:af:54:9b:7f:
30:54:a6:28:00:77:a2:3f:4b:5c:dc:a6:d1:54:be:2a:db:9c:
b3:d2:ad:29:fe:18:47:e1:d7:8b:bb:ac:2d:09:61:f3:f1:03:
ad:a4:06:4f:d2:84:10:71:45:17:80:5e:e6:01:6c:9d:3a:50:
08:b3:2d:10:e5:c7:9f:a0:15:6f:b9:8a:0b:99:48:d0:99:51:
77:f4:5e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:42:09 2025 by rpki-client