Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json)
Hash identifier: E1PIeo/DoOB45BVwZGtDb7fpCT9+v9DWZUrEmUYCHqY=
Subject key identifier: 03:7B:92:57:43:45:C0:02:F8:91:EF:40:D7:B6:1F:5C:F3:28:B3:3D
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 0196B4B4A562BCDC0BE3201ECB81BE4CF6D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
Manifest number: 0C11
Signing time: Fri 09 May 2025 11:00:59 +0000
Manifest this update: Fri 09 May 2025 11:00:59 +0000
Manifest next update: Sat 10 May 2025 11:00:59 +0000
Files and hashes: 1: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: Fgrcs2vuZlA6AFkxXHqOG86mdihW2lix9TjGESlfDG0=)
2: ehQIMYmYwJQIMwezxzrnCxQWXrQ.roa (hash: K5j8O7wSUuuth3uj2946HM7L4q3WosF43ObE+K/eL8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 11:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b4:b4:a5:62:bc:dc:0b:e3:20:1e:cb:81:be:4c:f6:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: May 9 11:00:59 2025 GMT
Not After : May 10 11:00:59 2025 GMT
Subject: CN=037b92574345c002f891ef40d7b61f5cf328b33d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:51:64:d6:6e:94:00:01:b7:5f:66:4e:b8:df:
23:b3:5f:89:df:b4:c3:0b:fc:90:55:60:73:94:39:
d7:20:93:6a:ff:d9:ef:54:36:1e:91:e6:f6:6e:f7:
62:7d:01:30:0a:ad:4b:b0:6b:fc:0e:2e:80:4a:27:
03:7d:f9:3a:8c:58:4b:48:7c:ef:b4:b3:e9:6d:ed:
cc:f1:7b:02:e3:04:ca:99:11:6c:dc:ec:eb:e5:8a:
e3:e4:b0:30:9b:85:70:a2:44:01:5d:d1:ed:ef:df:
cb:79:0a:b7:0b:d6:7b:32:cf:71:98:4d:6a:35:99:
66:58:94:e0:7c:8c:c5:c6:26:58:68:b5:36:7b:c4:
eb:1d:5b:86:ef:83:0e:23:b2:41:86:15:0c:60:a2:
d4:7a:9f:24:a7:1e:22:d7:7d:5b:e8:30:bf:93:60:
9b:1d:0c:6f:eb:ac:e0:55:18:43:b3:6d:a0:5a:31:
75:90:d0:0c:e6:b0:e1:22:f3:3b:f9:57:56:89:21:
dc:a0:70:93:41:08:2c:3f:67:61:3a:bc:3c:a1:b7:
4d:11:45:57:df:29:8f:c2:23:0c:f1:f0:13:e3:5d:
5b:82:d1:81:1a:49:f6:70:d9:ad:7b:9b:0c:e6:9d:
a4:fa:10:11:02:2b:7c:ec:58:c6:d7:9d:f1:af:72:
1d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:7B:92:57:43:45:C0:02:F8:91:EF:40:D7:B6:1F:5C:F3:28:B3:3D
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:4f:5c:65:d4:48:43:e0:c8:d6:00:61:30:b6:77:2e:ca:95:
c1:2a:49:9a:e7:21:7f:8b:f4:23:ef:6b:85:c5:8c:1e:65:fd:
93:43:c0:e4:58:44:b5:19:cb:90:5d:a5:3d:54:b7:92:82:92:
48:97:b6:ee:7c:e5:10:3f:75:91:41:ae:49:4f:6f:2b:3e:d9:
93:3b:c7:e3:36:54:b3:e4:cf:5a:e2:f3:34:5c:37:b0:d9:3f:
f9:00:f5:78:c6:c0:cd:92:23:b7:b4:ea:a9:c3:43:3d:be:4e:
c6:9f:c4:45:4a:62:09:02:c2:d9:d8:d3:b7:3e:87:dd:52:17:
ba:8b:8e:51:c3:13:0d:d3:fa:32:b5:0a:32:31:0c:57:15:2f:
4c:4e:5a:67:2d:10:c6:e4:db:6c:d6:0f:96:c3:9a:be:e9:72:
21:01:b7:56:a9:be:67:20:fc:4e:1c:7f:c8:df:5c:f4:5f:8f:
d1:69:a1:41:16:f3:ca:c0:ad:f8:9b:e7:b9:08:2e:ac:9f:88:
f0:c4:fe:93:2d:34:8c:a3:10:63:aa:35:b3:1d:35:15:2a:db:
52:ae:09:b0:66:18:ce:92:29:89:a2:13:2a:08:93:b4:48:ed:
28:0e:f9:c9:6b:4b:df:ca:58:b1:40:b1:14:48:47:bb:c1:3a:
1c:73:09:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 20:47:55 2025 by rpki-client