Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
File: TjQBh8D85f_wN87ZplCCQ-QE2nE.mft (raw, json)
Hash identifier: MxnXNnGRw8ZfQdzTEyslGAkAEK+xD3iTYdAjB/2OnQs=
Subject key identifier: 3D:04:CF:67:BE:76:3A:B5:45:C1:78:4D:CE:08:70:A6:B7:80:ED:A2
Authority key identifier: 4E:34:01:87:C0:FC:E5:FF:F0:37:CE:D9:A6:50:82:43:E4:04:DA:71
Certificate issuer: /CN=4e340187c0fce5fff037ced9a6508243e404da71
Certificate serial: 0196B8232BD684B3A48185BEDA912B31902B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TjQBh8D85f_wN87ZplCCQ-QE2nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
Manifest number: 085D
Signing time: Sat 10 May 2025 03:00:34 +0000
Manifest this update: Sat 10 May 2025 03:00:34 +0000
Manifest next update: Sun 11 May 2025 03:00:34 +0000
Files and hashes: 1: CpuMVh4uJ1tcoj_OkQygaUN_hh8.roa (hash: yhnMpFW3oI3a8/KGPX3tjlLUQZvGsHrg1LJyUrjeFm8=)
2: TjQBh8D85f_wN87ZplCCQ-QE2nE.crl (hash: saWBvpQ+ScEmpiTAiEtKDYPoIJZhDccOZqOoLQPS7vE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TjQBh8D85f_wN87ZplCCQ-QE2nE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:23:2b:d6:84:b3:a4:81:85:be:da:91:2b:31:90:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e340187c0fce5fff037ced9a6508243e404da71
Validity
Not Before: May 10 03:00:34 2025 GMT
Not After : May 11 03:00:34 2025 GMT
Subject: CN=3d04cf67be763ab545c1784dce0870a6b780eda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:38:fd:b4:d6:10:da:d1:cb:4a:70:22:81:32:
ba:6f:cd:9a:e5:da:1c:8b:78:a8:e9:52:a5:42:35:
ed:5e:69:95:47:5c:04:a4:3b:79:08:0b:52:98:88:
cb:7c:95:84:b8:01:7a:a3:96:5a:07:6c:8b:f0:24:
5a:2c:27:3f:53:6e:f1:d5:86:bd:16:5f:7f:7d:fc:
08:78:5f:e6:7e:f3:da:73:df:af:e7:63:8b:fe:ca:
f9:da:f0:6f:5c:45:e8:1e:41:53:d0:cd:5a:22:da:
52:96:de:03:7f:e9:99:f6:a8:93:64:52:e3:8c:1a:
5d:6b:8b:1a:bb:b3:7e:5e:a2:e1:d5:51:87:c7:7b:
dd:3a:53:40:fa:95:aa:a5:38:b6:72:93:53:77:b8:
87:fb:7c:45:ad:ae:ee:b4:79:12:3a:3f:72:79:88:
6a:01:c0:de:34:72:3c:10:e4:eb:b2:64:01:39:b6:
b7:5a:c5:d0:58:6d:7d:e6:1d:c5:ef:78:37:a2:3f:
a5:9d:19:be:53:b6:64:36:44:77:34:bf:50:dc:0e:
1d:37:ad:62:b6:6f:72:d8:46:90:b6:99:bf:1d:30:
44:66:46:a1:30:f5:ce:dc:44:da:ff:6f:75:08:b0:
a7:7c:1e:28:90:de:57:b5:1f:c2:bb:ab:e6:d1:66:
c0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:04:CF:67:BE:76:3A:B5:45:C1:78:4D:CE:08:70:A6:B7:80:ED:A2
X509v3 Authority Key Identifier:
keyid:4E:34:01:87:C0:FC:E5:FF:F0:37:CE:D9:A6:50:82:43:E4:04:DA:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TjQBh8D85f_wN87ZplCCQ-QE2nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:c9:54:b1:fa:73:74:44:94:17:77:5d:fb:f6:0b:18:fa:8f:
78:f6:8e:42:d2:4a:8d:36:71:b1:53:2b:0a:16:61:bf:dc:aa:
31:bd:d4:78:ce:09:d7:a5:cd:d1:5f:f4:f5:9c:27:48:11:d8:
48:8a:06:c3:74:fb:e8:7d:40:0d:f9:3c:36:81:0c:a2:62:5f:
6a:77:b0:a7:fe:7f:c5:bb:a9:70:28:16:05:64:36:da:fc:19:
b9:9d:f6:57:fa:a5:a2:1b:e7:5a:f9:6d:05:9c:c4:41:05:d7:
2c:07:9d:ac:7a:52:8a:b5:bd:fb:be:c2:e6:a3:d2:2e:60:c4:
9b:4b:87:75:7c:ad:29:ba:7a:af:c8:17:59:c3:6a:88:5f:f1:
5c:02:95:a6:fb:6f:97:26:60:cc:7f:29:67:40:af:72:c9:65:
c8:47:4b:9b:fc:7c:ad:cf:18:a3:d0:f5:b2:67:ea:39:79:ca:
63:2a:7f:a0:ce:bb:c1:f7:86:a3:85:b8:27:3f:e9:22:9f:c6:
e3:81:f3:1a:58:c0:2d:93:1a:d1:83:34:af:ad:80:b3:f1:04:
2b:b2:b9:35:1d:d3:44:83:38:7b:3b:35:57:5d:85:4c:75:98:
b8:da:00:2c:5f:48:97:96:9d:ad:53:26:e5:a5:20:ee:43:9c:
98:35:ab:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 05:01:28 2025 by rpki-client