Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
File: tKW-MwcSDmXjxBZcnI50jBwSp6I.mft (raw, json)
Hash identifier: dOFYQNyKQ5+9Bg6Vpk+/2j+hw7rg4PR9UH4JXJSp7PI=
Subject key identifier: 02:7A:7B:56:6B:00:64:F6:A9:A0:B1:72:18:9F:C9:C1:17:4B:7C:C6
Authority key identifier: B4:A5:BE:33:07:12:0E:65:E3:C4:16:5C:9C:8E:74:8C:1C:12:A7:A2
Certificate issuer: /CN=b4a5be3307120e65e3c4165c9c8e748c1c12a7a2
Certificate serial: 0196C12625538D1C6042392D596DA061B647
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
Manifest number: 0486
Signing time: Sun 11 May 2025 21:00:24 +0000
Manifest this update: Sun 11 May 2025 21:00:24 +0000
Manifest next update: Mon 12 May 2025 21:00:24 +0000
Files and hashes: 1: pHJ5oRo1kF5oiX8KeKirS42gdJI.roa (hash: pWmX7zoUYI3ChoG1HELYfAkOPLPYyR79PMNSLK6H1B0=)
2: tKW-MwcSDmXjxBZcnI50jBwSp6I.crl (hash: fV7DioluV/1guHNo+5n8ZUs9sjKyQmWFyQJo9VjjwFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 21:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:26:25:53:8d:1c:60:42:39:2d:59:6d:a0:61:b6:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a5be3307120e65e3c4165c9c8e748c1c12a7a2
Validity
Not Before: May 11 21:00:24 2025 GMT
Not After : May 12 21:00:24 2025 GMT
Subject: CN=027a7b566b0064f6a9a0b172189fc9c1174b7cc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cd:81:0a:19:0b:c9:3d:2c:cc:ac:0e:07:6a:
5f:76:29:bd:2d:ae:de:96:29:e8:f2:ea:1a:e6:14:
7d:a4:3f:dc:e5:9e:95:20:c3:41:6c:bb:29:7b:76:
66:ac:0c:47:1c:09:e5:72:a6:be:ea:b8:34:d3:17:
c7:7a:e7:69:ac:6f:74:0d:90:ea:a0:e6:15:ba:80:
28:af:d0:11:b4:45:9e:1a:e8:fb:ec:be:bf:0f:6a:
01:6e:ff:18:3b:2d:a0:24:a6:64:9b:01:60:ed:6d:
3e:0e:1d:57:b1:0e:fb:47:99:69:64:56:67:4f:d3:
d6:b3:e1:24:06:fe:46:2b:cb:82:b1:37:dc:6f:2b:
8b:0d:b4:ab:19:49:d7:0d:06:90:fe:02:21:b5:20:
70:75:95:d4:64:2b:1d:9e:de:ec:d8:46:a8:a8:68:
0f:57:50:df:0c:d1:ff:26:79:1a:b3:09:d6:93:0d:
1d:6f:d5:0c:e9:77:c9:ef:29:a1:5c:81:1d:4b:dc:
0f:bf:39:40:91:30:40:43:ae:83:0a:22:0c:17:02:
ca:d7:f9:a1:ae:c8:8e:1d:b0:20:a4:36:43:23:3c:
c5:75:ab:0b:06:1d:44:bc:14:db:ff:99:a9:73:dd:
5d:42:9f:2e:ce:ae:8f:2c:5d:8d:20:29:c0:2f:98:
14:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:7A:7B:56:6B:00:64:F6:A9:A0:B1:72:18:9F:C9:C1:17:4B:7C:C6
X509v3 Authority Key Identifier:
keyid:B4:A5:BE:33:07:12:0E:65:E3:C4:16:5C:9C:8E:74:8C:1C:12:A7:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:3e:61:8c:89:a0:2f:6b:5d:80:ae:09:41:87:12:f3:0b:dc:
94:14:8d:a3:58:72:80:6c:69:07:9c:7c:85:78:fb:cd:de:bf:
49:49:ee:c0:2f:04:8f:09:56:44:da:0f:cf:38:26:a3:3d:75:
a6:e3:0d:6e:bd:0d:3e:17:7d:ac:b0:05:6b:ed:d5:55:e4:cc:
cb:e3:43:b1:a2:f4:5d:4b:24:44:1c:64:9e:5f:3f:95:c3:aa:
b2:70:5f:d5:f0:97:40:5f:a5:51:7e:63:c1:03:69:0d:e7:9a:
92:f8:cb:15:26:ed:68:62:57:c8:7d:9a:68:40:af:e3:6e:71:
69:14:ac:77:7f:bf:73:79:a4:ba:0a:0c:7e:bf:d3:cf:5d:a7:
14:e1:b2:00:c2:df:32:85:ac:cc:fc:30:57:2f:24:eb:25:87:
81:8f:79:e2:d9:e0:0e:ca:3f:a6:3f:01:02:1c:dd:9f:75:3b:
34:2c:de:56:3d:ee:d6:0e:8e:e4:ee:ed:9f:7e:ab:e2:da:3a:
24:f2:84:cc:93:3a:9e:b3:e8:0a:2d:1c:03:cc:41:1f:43:db:
51:0e:cc:29:3c:53:31:68:43:11:05:3d:c9:5f:3f:7c:0d:24:
21:1b:de:4e:ea:55:a0:d1:91:d1:ea:b6:43:27:a4:9f:87:3a:
10:d6:35:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 03:47:00 2025 by rpki-client