Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/2aaf4a-e03f-4d61-b652-435e57fccdc9/1/tNkMTfZ2phH1alrtWAmwV-msV5E.mft
File: tNkMTfZ2phH1alrtWAmwV-msV5E.mft (raw, json)
Hash identifier: 7QgxUFZ9wa490jNv51TKsAMXag/UnB2O67SaGGDeYsc=
Subject key identifier: 5D:53:08:92:A4:79:B9:87:C5:B3:15:CA:78:DC:38:FD:04:A9:5D:7C
Authority key identifier: B4:D9:0C:4D:F6:76:A6:11:F5:6A:5A:ED:58:09:B0:57:E9:AC:57:91
Certificate issuer: /CN=b4d90c4df676a611f56a5aed5809b057e9ac5791
Certificate serial: 01969D19A734EDB626B0252D7D7F65B35F61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tNkMTfZ2phH1alrtWAmwV-msV5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/2aaf4a-e03f-4d61-b652-435e57fccdc9/1/tNkMTfZ2phH1alrtWAmwV-msV5E.mft
Manifest number: 07AA
Signing time: Sun 04 May 2025 21:00:26 +0000
Manifest this update: Sun 04 May 2025 21:00:26 +0000
Manifest next update: Mon 05 May 2025 21:00:26 +0000
Files and hashes: 1: tNkMTfZ2phH1alrtWAmwV-msV5E.crl (hash: +HxCgF4lbSmuKcj+zQeYlUYnNffhq8wCEmrOLZRUUvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/2aaf4a-e03f-4d61-b652-435e57fccdc9/1/tNkMTfZ2phH1alrtWAmwV-msV5E.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/2aaf4a-e03f-4d61-b652-435e57fccdc9/1/tNkMTfZ2phH1alrtWAmwV-msV5E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tNkMTfZ2phH1alrtWAmwV-msV5E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 21:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:19:a7:34:ed:b6:26:b0:25:2d:7d:7f:65:b3:5f:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4d90c4df676a611f56a5aed5809b057e9ac5791
Validity
Not Before: May 4 21:00:26 2025 GMT
Not After : May 5 21:00:26 2025 GMT
Subject: CN=5d530892a479b987c5b315ca78dc38fd04a95d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:56:e8:6a:ea:af:b3:aa:59:bd:98:4a:78:30:
37:f5:05:c2:eb:4f:4a:ec:64:6a:2b:7e:10:46:90:
63:62:e7:e9:c2:cb:63:6f:6f:2a:e5:88:6e:2f:2c:
9d:44:c1:d2:45:44:64:72:3e:8b:e9:b6:16:39:a7:
81:e1:67:c0:4b:a8:41:7f:11:1b:a7:1c:0e:0e:ce:
30:16:9a:5b:9d:c9:83:6f:5a:6d:52:d2:e2:21:00:
fa:52:8c:09:7a:ab:44:71:8c:53:82:d6:1f:95:4e:
36:ee:fd:ea:a1:b6:04:60:af:8e:dc:d0:79:6e:e3:
d0:22:e8:f9:2f:8c:86:c8:c6:99:21:d7:42:c2:0a:
6a:ca:fa:80:97:78:d8:0e:0e:13:ab:4e:21:b9:3d:
d8:35:d2:11:c1:f8:ae:30:0c:83:4c:ba:4c:97:9e:
e3:5a:55:c5:07:10:7f:81:e0:a6:8c:f6:40:89:52:
e8:48:23:2a:36:ef:62:54:a7:dd:cb:3c:df:9c:64:
d1:ea:a5:46:9d:55:c2:53:6c:a9:3d:db:1b:10:29:
fd:7f:c7:1a:b5:37:09:89:78:07:23:83:80:8a:c9:
a5:04:d7:44:0b:d9:15:4a:3c:90:07:4f:ef:9b:0e:
04:62:e4:27:e9:39:e5:82:36:e9:16:b3:69:d5:b2:
b8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:53:08:92:A4:79:B9:87:C5:B3:15:CA:78:DC:38:FD:04:A9:5D:7C
X509v3 Authority Key Identifier:
keyid:B4:D9:0C:4D:F6:76:A6:11:F5:6A:5A:ED:58:09:B0:57:E9:AC:57:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tNkMTfZ2phH1alrtWAmwV-msV5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2aaf4a-e03f-4d61-b652-435e57fccdc9/1/tNkMTfZ2phH1alrtWAmwV-msV5E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2aaf4a-e03f-4d61-b652-435e57fccdc9/1/tNkMTfZ2phH1alrtWAmwV-msV5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:e3:a1:1f:4b:46:bb:0e:ca:5f:3b:62:e7:47:fd:fe:c8:97:
92:9c:e3:39:c7:fd:8f:91:52:39:b2:31:54:f9:da:95:6a:25:
da:70:c5:b7:5c:73:b6:63:d2:83:21:a3:eb:7f:e3:76:a2:02:
4b:1c:8d:99:7c:b2:07:63:04:35:d9:96:21:7f:94:dc:e9:80:
6e:fa:78:30:2e:c6:3e:8a:a4:13:55:aa:8a:ec:17:7e:6a:2c:
64:3a:09:a7:2a:70:38:82:dc:1e:08:3c:5b:96:dd:db:77:80:
fc:6e:1f:ef:7f:b7:a1:a6:d9:c4:e3:22:65:d0:40:3d:fb:55:
4f:9a:7f:fb:34:4b:4c:6f:34:fc:98:76:88:cd:f7:72:7b:45:
20:d8:36:0a:2b:43:6f:5a:17:f9:22:18:2e:a3:12:b7:2c:db:
0d:28:eb:78:1b:53:a5:88:e4:80:af:44:4b:e7:2f:c7:ed:6b:
96:4d:8c:9b:3a:a3:3a:d2:27:3e:73:34:1b:8a:85:5d:39:e7:
39:4f:9c:f2:f5:81:b0:41:44:27:35:bf:5f:3d:35:93:07:13:
ae:a5:8b:3e:2e:74:29:04:0d:47:15:9f:08:bd:a9:64:a9:07:
f3:ca:6b:e6:ed:72:11:86:eb:5f:38:a3:ab:83:2f:4c:4f:d5:
ed:5f:a5:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 06:23:17 2025 by rpki-client