Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
File: rwlQP8rAF2lRWhny3CZX2S_TUN8.mft (raw, json)
Hash identifier: +L4g1fckuiFNZk4jjWrG/tVCxuN/L27NvsSd5IP21ng=
Subject key identifier: 58:26:63:0C:46:03:37:6F:48:63:DB:DF:87:43:D2:0D:57:0A:E6:16
Authority key identifier: AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
Certificate issuer: /CN=af09503fcac01769515a19f2dc2657d92fd350df
Certificate serial: 0196C01387689790E878CF7EB9988E6ACEA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
Manifest number: 14C8
Signing time: Sun 11 May 2025 16:00:27 +0000
Manifest this update: Sun 11 May 2025 16:00:27 +0000
Manifest next update: Mon 12 May 2025 16:00:27 +0000
Files and hashes: 1: bI5hqVT8m0qS2JmySaAVyieiKDc.roa (hash: Ur47592mLsTtDVQWZDc8e3eMtHnqyDHoxs3kpjL/ez4=)
2: rwlQP8rAF2lRWhny3CZX2S_TUN8.crl (hash: eNA7coYKzcttxBa1CEOjyjnX+UFwZWFk+oRSdbcYQsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:13:87:68:97:90:e8:78:cf:7e:b9:98:8e:6a:ce:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09503fcac01769515a19f2dc2657d92fd350df
Validity
Not Before: May 11 16:00:27 2025 GMT
Not After : May 12 16:00:27 2025 GMT
Subject: CN=5826630c4603376f4863dbdf8743d20d570ae616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0c:f5:47:de:dd:5e:1d:c0:02:1b:5b:36:66:
d2:59:f9:9d:84:aa:01:01:b3:e1:1c:a6:79:dc:6d:
de:8f:c8:80:2f:1b:41:cb:fa:7c:4f:12:8a:cc:eb:
94:e8:cc:59:fc:3c:9f:d1:95:93:c8:0a:53:68:76:
c7:09:1e:b9:76:51:f5:2a:93:ca:7c:ea:9b:72:56:
55:91:53:c9:29:2e:64:18:85:85:dc:92:7e:e6:fb:
8f:34:e9:dd:e4:69:64:3a:99:bf:5a:be:69:ba:dc:
c4:c8:c5:e4:0b:a7:97:aa:c6:bc:2e:f8:01:39:d0:
07:28:e5:5d:7d:63:06:39:fd:ba:cc:bc:58:74:ae:
77:6a:cb:a2:26:03:49:d8:43:b0:98:f7:05:0a:6d:
0c:36:1f:52:b0:f4:57:a2:2e:92:1d:7e:58:f9:43:
ee:93:f5:32:16:74:9f:ad:cb:58:7b:f4:5a:32:72:
0a:ec:8c:05:c2:4b:e2:c3:61:e6:d7:fa:e7:8a:23:
20:d5:76:10:61:61:bb:58:48:83:14:d2:3b:95:64:
f0:ce:ef:2f:cd:ae:45:a0:dc:9c:14:17:a1:fd:a7:
25:9b:b0:20:f8:7d:84:54:44:c2:0a:e8:ea:18:f4:
04:54:c9:be:78:a4:63:3f:f7:42:cb:0c:35:2a:b1:
e7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:26:63:0C:46:03:37:6F:48:63:DB:DF:87:43:D2:0D:57:0A:E6:16
X509v3 Authority Key Identifier:
keyid:AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:d9:90:60:5c:20:28:f9:83:26:22:1a:db:3d:09:3d:83:26:
6c:c4:c7:52:bd:93:f9:c9:83:72:2c:50:80:2e:9b:4e:29:e4:
09:9b:8b:29:a6:cc:fb:41:0a:c1:de:8a:74:4a:e4:eb:b9:8a:
5e:64:f8:9e:4c:da:88:12:d5:2d:88:26:08:98:9f:f1:19:ca:
81:3d:8a:20:50:94:0c:48:c5:b0:fc:b8:08:43:2a:c0:0d:67:
4c:bd:54:63:d5:be:45:52:e3:5b:fa:1f:e6:63:c9:ec:0c:c9:
2f:66:db:d6:15:78:62:f6:26:82:df:73:45:74:c7:29:58:0f:
e3:6b:18:79:17:88:58:9d:82:44:ed:03:9a:2a:94:da:08:b3:
08:2b:67:4e:39:e1:7e:1c:dc:c5:56:84:16:77:ca:b5:5b:96:
6f:5f:7f:a8:4f:b7:ce:19:f4:e3:7b:2e:8b:6e:8a:20:cf:d6:
98:34:e8:1b:04:d6:70:94:3b:24:70:a2:5c:cf:0f:a7:62:7f:
85:ee:9b:c3:ad:9c:94:c7:56:56:39:05:1b:56:9d:20:9e:b6:
05:5c:1b:e6:89:87:f2:b3:65:54:92:ab:a2:5a:09:ea:ad:fc:
2f:4d:3e:0b:ae:c9:41:8b:8a:e8:6c:52:3b:3f:d9:8d:8f:c5:
ce:03:dc:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 02:17:10 2025 by rpki-client