Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: nnI/FVkjiamaH6qEH44LRlIueUs9IRetL2K5B6NuX8M=
Subject key identifier: 3E:3A:E8:F5:F0:3A:6F:08:AA:CD:40:29:B7:6A:68:C1:0A:0B:D8:E3
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 0196BC37010F7FFE20BEB786330D6CC585AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 1531
Signing time: Sat 10 May 2025 22:00:43 +0000
Manifest this update: Sat 10 May 2025 22:00:43 +0000
Manifest next update: Sun 11 May 2025 22:00:43 +0000
Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: vdbcoiISwSVYI5yGQRSNOatcxBfY6Fpccb/bO029Tb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 14:04:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:37:01:0f:7f:fe:20:be:b7:86:33:0d:6c:c5:85:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: May 10 22:00:43 2025 GMT
Not After : May 11 22:00:43 2025 GMT
Subject: CN=3e3ae8f5f03a6f08aacd4029b76a68c10a0bd8e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:27:a3:ad:e2:ae:cc:79:63:54:3a:9e:b7:fd:
46:11:a8:d2:6a:ca:d8:27:45:8e:58:26:d2:ff:3f:
9a:a2:47:e3:8c:21:61:c8:4a:33:49:4b:f6:d4:b1:
43:39:3d:5e:7e:9e:4d:33:67:ea:16:77:a1:55:bb:
94:2b:05:f7:5f:b4:0c:07:f4:5a:9f:12:db:8c:bb:
25:50:d3:06:50:87:95:8c:4f:5b:e3:b5:ef:90:0f:
4d:e7:07:68:83:fa:44:74:b4:6b:13:67:90:c2:f9:
58:2e:d0:65:01:22:42:f8:7f:4f:a4:18:ba:17:48:
01:29:19:f0:ef:17:fa:cc:21:a6:87:45:35:0a:c0:
30:2b:13:0c:fc:a8:c6:02:c4:a4:a5:52:0b:a1:3d:
d8:7e:66:d6:c1:20:8a:bb:8e:d1:2e:b5:00:b5:cb:
10:09:33:90:9c:c5:59:a1:a5:7b:3c:0b:b4:87:6e:
a2:58:06:ce:f3:b5:de:95:65:23:a0:d7:8b:9a:38:
18:e8:58:d1:2b:86:c4:00:5a:64:ec:5c:ed:a0:9b:
db:fc:d2:73:38:47:21:72:56:49:1e:98:06:45:cf:
e9:e8:ae:3a:00:b5:f7:5f:dc:97:a5:1b:02:74:e9:
b6:04:bf:4a:72:e4:a4:3e:76:cd:bd:73:6f:40:37:
63:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:3A:E8:F5:F0:3A:6F:08:AA:CD:40:29:B7:6A:68:C1:0A:0B:D8:E3
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:a3:ed:9c:bb:1f:b4:37:81:77:11:1e:74:df:a4:a9:03:44:
2d:36:f3:35:c1:21:d7:0c:f7:3c:5d:a1:87:37:af:83:71:ff:
42:fb:f0:71:c8:e7:1d:82:1b:00:8e:70:21:c9:26:80:bf:24:
ad:fe:8c:f2:a5:d6:ba:28:49:34:eb:60:15:14:31:6f:4a:6b:
04:7f:56:3f:5a:9d:73:3f:88:24:48:ae:29:eb:a6:6a:f0:ec:
a2:93:e8:01:68:94:b8:4c:f1:71:eb:08:c0:fb:53:ee:5a:6c:
16:56:e2:81:72:29:67:5d:2a:cd:a7:83:25:27:f2:3d:ae:a6:
2a:00:da:36:33:21:9f:1f:c6:f3:a7:52:2c:d1:92:54:d3:2a:
6f:28:29:f9:75:5d:f9:c7:a1:5a:a9:ee:6f:e1:09:ca:53:f4:
9c:36:06:8d:23:3c:a2:f1:a1:4f:4b:d1:a0:71:01:ac:01:1e:
ab:de:db:78:02:e0:ab:c4:72:c5:79:07:46:c2:ee:58:02:e8:
d1:36:1f:56:ab:60:95:f8:21:a3:5a:5f:e1:11:ae:de:f8:d2:
b3:da:31:1f:40:ba:fb:63:47:3a:e0:75:97:1e:ad:c7:aa:dd:
9b:2a:06:a8:cb:13:51:f1:ff:d0:61:39:6e:eb:2d:db:0e:5b:
00:0b:8f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 23:32:44 2025 by rpki-client