Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json)
Hash identifier: heNv4Aa7q1fEhEaB3ghKFUvWv1cvjeTINYUROGsCrbo=
Subject key identifier: A4:4A:2B:67:8D:1D:AF:A2:B6:4E:78:F9:8C:93:5D:0B:8F:1A:3F:1C
Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136
Certificate serial: 0196BA7F6859942C51C03EEC25FE7D1090A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
Manifest number: 09C2
Signing time: Sat 10 May 2025 14:00:33 +0000
Manifest this update: Sat 10 May 2025 14:00:33 +0000
Manifest next update: Sun 11 May 2025 14:00:33 +0000
Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: VAl02qBlyELIEFYr+Iex7cJgPuUxlsp3nivAkOW9aaU=)
2: ELYZJGHcWhKUiY7ABJ-PY-iSroQ.roa (hash: XKv64QH5ODk1+MXzK56Lue/Lun/NuUmKCWEmKamL9J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:7f:68:59:94:2c:51:c0:3e:ec:25:fe:7d:10:90:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136
Validity
Not Before: May 10 14:00:33 2025 GMT
Not After : May 11 14:00:33 2025 GMT
Subject: CN=a44a2b678d1dafa2b64e78f98c935d0b8f1a3f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d2:3d:80:91:56:38:ea:7a:ce:df:5c:2d:d1:
56:76:72:04:cd:f2:94:fa:9a:ba:8e:53:c2:6d:d8:
d8:a6:6a:28:f9:a2:df:67:55:f0:4c:ec:4a:04:3c:
c3:6d:43:15:2d:14:a8:f1:3e:4f:21:1b:d6:60:b6:
b8:4f:dd:cd:22:e7:a1:2a:a0:2f:bc:14:25:58:5e:
51:19:88:a6:b0:09:5d:4c:0f:c7:2b:95:19:1b:4d:
26:b2:1a:a5:81:97:4e:0a:ea:9f:70:85:ed:5a:68:
f6:a8:73:b5:8c:a9:45:02:7c:6d:3d:96:94:2b:b8:
4f:66:3a:11:25:12:8f:25:4a:d9:c2:51:be:c7:f0:
15:48:be:35:2d:4b:65:0b:88:45:24:dc:c7:aa:c8:
48:9d:22:19:fd:ee:01:86:f8:cf:6c:9a:b9:78:01:
c8:9a:5c:92:8b:b8:66:37:06:aa:2b:d4:d5:ec:7a:
46:d6:a8:b5:42:dd:2d:3e:c0:a8:55:37:1f:19:76:
a0:83:5d:6d:4d:23:1b:70:45:1b:ad:63:e5:dd:c5:
20:95:6c:46:f6:a4:6d:ad:2e:9d:3c:27:8d:42:bf:
6a:c7:06:ff:d6:03:79:36:c5:0b:59:b9:7b:7b:97:
e6:dd:35:9d:e3:b9:8d:83:f3:85:6e:04:97:05:50:
64:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:4A:2B:67:8D:1D:AF:A2:B6:4E:78:F9:8C:93:5D:0B:8F:1A:3F:1C
X509v3 Authority Key Identifier:
keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:10:8c:2d:dc:8b:dc:01:62:64:ad:62:17:a1:cc:3c:8b:14:
6b:e8:28:72:ad:64:17:a6:57:9c:48:9e:42:79:38:da:fd:ad:
f5:61:e9:b1:68:5a:a0:b4:b2:3d:9d:f0:a5:e1:b1:a2:32:be:
aa:8b:9f:95:35:5b:85:61:09:92:70:ac:6c:5a:32:79:de:f4:
d1:49:2e:cc:1f:09:1d:9c:8d:6f:05:0e:89:40:f8:70:9a:da:
9f:a9:28:1d:27:19:4a:59:aa:6d:0d:9a:f2:ea:d4:ab:db:d9:
a4:55:49:6a:5e:85:7a:6f:61:04:40:8a:d6:03:12:35:ca:b0:
c9:08:fe:bf:ff:e2:9f:ec:ad:8f:e8:4e:eb:5a:ec:de:10:3d:
04:ec:eb:d3:6d:46:7a:74:99:27:6d:e4:b5:d6:95:13:96:e2:
f6:71:83:0a:cd:27:16:2f:e8:5a:5d:de:64:78:e0:34:2e:c7:
41:1e:81:36:df:da:c9:a6:31:13:3f:9b:e1:b0:8b:d4:c7:cb:
0e:1a:51:ea:3f:ef:f2:33:f0:79:0e:9a:34:cf:cf:32:51:1f:
ec:e0:57:c3:54:db:44:af:49:e1:0d:9e:c3:20:1e:de:d9:88:
ad:ad:7f:f6:96:e1:e7:92:55:d9:8b:c8:9f:38:d1:23:f8:d3:
57:b1:c1:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 23:00:36 2025 by rpki-client