Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
File: tZXiFxdovJspQknw46U1kBecUu4.mft (raw, json)
Hash identifier: uI5s0Sb/I/SliyamOuaNMhEAF7zMAVbvGTn9Qe8Dsuk=
Subject key identifier: 33:D7:2E:CD:6F:0F:74:0A:76:0A:73:D5:CF:C2:BE:75:D1:98:80:B3
Authority key identifier: B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
Certificate issuer: /CN=b595e2171768bc9b294249f0e3a53590179c52ee
Certificate serial: 0196BF6ECFA8FF036A83E2F75CC3EC80032E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
Manifest number: 1536
Signing time: Sun 11 May 2025 13:00:32 +0000
Manifest this update: Sun 11 May 2025 13:00:32 +0000
Manifest next update: Mon 12 May 2025 13:00:32 +0000
Files and hashes: 1: tZXiFxdovJspQknw46U1kBecUu4.crl (hash: U2pC/70LQn85W2FR4MxgPqxgnaPzpDmX0KYvHqfwq4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:6e:cf:a8:ff:03:6a:83:e2:f7:5c:c3:ec:80:03:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b595e2171768bc9b294249f0e3a53590179c52ee
Validity
Not Before: May 11 13:00:32 2025 GMT
Not After : May 12 13:00:32 2025 GMT
Subject: CN=33d72ecd6f0f740a760a73d5cfc2be75d19880b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f3:ee:02:9a:da:98:10:40:be:7f:84:11:52:
f9:7f:65:14:7c:f0:cd:3d:93:ee:0a:19:46:5b:88:
39:56:97:2e:92:10:a3:06:ab:76:ee:0a:ac:d3:f8:
16:62:f5:f7:14:26:5f:ae:ea:a4:e3:40:02:2d:16:
10:8c:f0:cc:73:32:bc:81:b7:e7:7b:ef:e6:dd:e4:
15:29:e4:b5:25:da:fc:92:c3:ed:76:0c:18:49:4e:
d9:84:8d:f6:d1:30:f4:9a:34:5c:6e:01:0d:e4:3d:
49:b7:91:10:5b:48:67:9d:71:6d:9f:42:8c:f3:99:
c3:f2:b0:0b:72:71:ba:a5:6c:0a:a7:e4:e8:2e:34:
de:30:fe:cd:d4:2d:3e:ea:b4:f7:18:26:02:08:30:
d1:95:cd:e2:04:5c:ee:e0:4e:9f:ed:1b:f1:f5:75:
f6:39:e6:c8:8b:ae:52:31:3b:86:a1:2d:8e:04:86:
ed:54:3f:1c:f9:0d:e8:6b:b6:ed:2f:92:69:78:62:
55:00:c1:15:32:1c:cc:93:80:0b:66:8c:4c:ef:c3:
aa:a7:52:f9:95:4e:ca:3e:40:7b:ba:ba:c0:1b:2a:
94:dd:4b:70:5f:61:2b:9a:20:41:e5:fd:0e:ac:9e:
ae:ff:27:d2:cb:0a:ac:4a:5a:3f:8f:be:b1:2b:6b:
cb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:D7:2E:CD:6F:0F:74:0A:76:0A:73:D5:CF:C2:BE:75:D1:98:80:B3
X509v3 Authority Key Identifier:
keyid:B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:77:b9:2c:00:9b:b7:1e:c8:f8:1d:55:bf:67:9e:0e:88:dc:
2d:aa:78:8a:cf:79:71:89:d2:0c:96:0a:29:88:8b:eb:5e:b7:
57:dd:14:04:b1:f8:9d:dd:67:0a:09:0f:70:0e:98:fd:87:d0:
c4:6a:0b:34:8f:b2:05:66:fb:cc:fd:a6:52:f3:a2:20:86:1b:
79:3d:fb:6f:75:8c:cb:93:9c:6d:78:19:0b:48:09:71:c9:3d:
d9:0e:91:ea:6c:e9:2c:5d:09:08:e2:c3:af:b1:61:d9:3b:05:
8a:dc:9d:b0:83:33:b4:70:0f:ba:5a:11:7b:5c:56:71:19:c5:
66:6d:5a:31:42:bd:88:fd:f6:46:b4:4e:94:6a:43:4d:cf:b8:
5d:48:e6:24:8a:bc:af:c7:cb:7d:ad:b0:0d:cd:7a:3d:84:a2:
80:2f:48:9e:8b:b2:56:4c:09:01:66:bd:db:8a:d6:b5:1c:9e:
af:fd:df:d0:3f:c9:75:53:6e:0c:95:45:d5:d3:26:1f:f6:44:
80:1f:1a:a6:63:61:a0:d5:88:4d:70:61:14:9a:cf:85:e1:58:
e5:64:61:51:23:2f:0d:5d:ed:25:72:83:4b:c8:bc:f0:a8:be:
50:ce:2f:96:87:4a:5b:bc:5e:8a:ec:98:1b:24:9f:7c:bc:84:
3b:d7:2a:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:02:28 2025 by rpki-client