Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
File: TyKDTEeXR7CovQphKfn-ZfgwJtA.mft (raw, json)
Hash identifier: B1OkgUMxOlA1WY0/UVbeF1WaiEWfbsqQP7FDVmhXQSI=
Subject key identifier: C0:74:52:78:A8:EB:15:AF:AF:2A:2E:A0:97:65:2A:A9:5B:94:1E:D1
Authority key identifier: 4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
Certificate issuer: /CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Certificate serial: 0196D4AD430FFBF201DD749B82E6FE14E96C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
Manifest number: 032B
Signing time: Thu 15 May 2025 16:00:46 +0000
Manifest this update: Thu 15 May 2025 16:00:46 +0000
Manifest next update: Fri 16 May 2025 16:00:46 +0000
Files and hashes: 1: 5_qRdcU_zBI67bUjjCeGmUT4bso.roa (hash: S33Bj4i6cQIjVG+I+Gmo76E+1aI2U06ldTXtc0u4sXQ=)
2: TyKDTEeXR7CovQphKfn-ZfgwJtA.crl (hash: WGnlsJ/4YxXkawK8hyo23rcfeE7eIjb3iQOP/Ol7L4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 14:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d4:ad:43:0f:fb:f2:01:dd:74:9b:82:e6:fe:14:e9:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Validity
Not Before: May 15 16:00:46 2025 GMT
Not After : May 16 16:00:46 2025 GMT
Subject: CN=c0745278a8eb15afaf2a2ea097652aa95b941ed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4f:b8:a7:b3:a1:7f:b2:d6:47:fd:1d:f3:85:
41:04:69:4a:4d:81:73:ad:80:4a:71:60:b8:8b:2b:
8f:ea:3f:fd:ff:53:67:96:5d:ea:0c:da:4f:73:d0:
2e:f9:6b:0a:e4:ae:82:de:39:5a:4f:95:ff:5c:f5:
d3:76:16:0a:4c:0d:a1:44:c4:08:d0:ee:50:df:20:
6c:53:ac:15:0e:5f:cc:8c:a2:7a:cb:c4:ba:10:ea:
7d:9d:b5:ef:22:a9:d5:dd:53:b4:a2:51:89:de:6a:
da:92:fb:92:e7:ac:51:8f:e0:45:36:8a:f3:bc:c0:
4e:34:cb:84:78:77:08:e9:dd:22:8e:c5:36:b7:a0:
cf:e2:7d:75:95:bc:3e:3e:96:17:de:7a:db:0c:0c:
a4:db:83:bc:a0:27:b7:99:24:96:74:72:1d:df:29:
d1:0f:2b:a9:00:54:6b:0c:7f:7c:dc:4c:50:59:f2:
f7:1f:f6:4b:b7:16:4f:d8:10:34:af:32:b0:e7:ab:
95:6d:1a:c6:3c:ac:b0:de:d2:5a:a0:61:61:16:ff:
0c:be:7a:16:dd:d4:2a:fc:7b:73:64:22:4c:f5:04:
53:60:4a:f0:d9:fe:25:70:04:e4:19:01:10:2c:98:
74:cf:5f:a6:ef:4a:bb:23:b6:23:cc:52:6e:2b:98:
b8:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:74:52:78:A8:EB:15:AF:AF:2A:2E:A0:97:65:2A:A9:5B:94:1E:D1
X509v3 Authority Key Identifier:
keyid:4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:72:c7:f9:ae:3c:d9:de:23:cc:13:63:1b:ae:ad:bf:77:fa:
c4:30:61:ab:95:59:48:38:bd:44:88:58:ec:eb:77:08:c1:ec:
fd:f0:e2:17:87:c0:3c:8c:20:1d:af:f8:1e:83:d9:f1:69:12:
c1:8c:70:21:1a:32:48:f9:59:8d:6e:a0:d9:42:e6:d9:29:a9:
58:d8:98:58:b7:be:f5:de:3e:fd:00:0b:ed:b4:07:de:c1:32:
27:82:fd:d6:3d:9f:a1:29:be:ac:0d:46:fd:7c:90:3d:cf:13:
85:c7:58:21:90:74:d8:85:2e:3e:3d:29:27:f8:2a:07:93:2a:
17:5f:e2:1c:03:71:82:8c:f9:ae:08:35:53:be:b2:24:68:d6:
f7:b7:5f:8f:99:1a:79:4b:01:3f:13:e4:92:f8:d8:1f:78:7f:
8d:d1:ae:a0:f2:5b:69:a0:9f:02:f0:fc:13:b0:c3:31:3d:b8:
3d:a4:d9:2e:90:b3:64:9e:bb:31:ae:63:8b:44:56:8e:c2:36:
af:6a:19:3d:5d:74:26:d3:ee:d2:d4:8e:24:67:46:02:68:4f:
6d:58:91:9c:ec:9b:0f:c3:2b:5c:91:8d:ae:bb:f4:eb:5b:e2:
28:4a:6e:a4:25:43:be:c2:ac:80:44:ac:64:de:43:2c:a7:89:
51:d7:77:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 18:23:00 2025 by rpki-client