Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3ac783-9fab-4623-894c-5628faefe11d/1/C_TOA4nPk-LVfggvG-xh2oJy__E.mft
File: C_TOA4nPk-LVfggvG-xh2oJy__E.mft (raw, json)
Hash identifier: tflT3/G+/kLHGQutWTZ+GVDc5mo5329NFRkyuw4LuEA=
Subject key identifier: B1:55:C9:A7:D2:0B:80:DD:A0:10:99:49:93:6C:99:3A:51:27:90:C6
Authority key identifier: 0B:F4:CE:03:89:CF:93:E2:D5:7E:08:2F:1B:EC:61:DA:82:72:FF:F1
Certificate issuer: /CN=0bf4ce0389cf93e2d57e082f1bec61da8272fff1
Certificate serial: 0196C04B3738F30DBA5B042DBE21A9779787
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_TOA4nPk-LVfggvG-xh2oJy__E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3ac783-9fab-4623-894c-5628faefe11d/1/C_TOA4nPk-LVfggvG-xh2oJy__E.mft
Manifest number: 0E03
Signing time: Sun 11 May 2025 17:01:16 +0000
Manifest this update: Sun 11 May 2025 17:01:16 +0000
Manifest next update: Mon 12 May 2025 17:01:16 +0000
Files and hashes: 1: C_TOA4nPk-LVfggvG-xh2oJy__E.crl (hash: fvKyax3vwuwvwKxOmJZczw4Q9XvCdYVdX46ohCBqyqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3ac783-9fab-4623-894c-5628faefe11d/1/C_TOA4nPk-LVfggvG-xh2oJy__E.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3ac783-9fab-4623-894c-5628faefe11d/1/C_TOA4nPk-LVfggvG-xh2oJy__E.mft
rsync://rpki.ripe.net/repository/DEFAULT/C_TOA4nPk-LVfggvG-xh2oJy__E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:4b:37:38:f3:0d:ba:5b:04:2d:be:21:a9:77:97:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf4ce0389cf93e2d57e082f1bec61da8272fff1
Validity
Not Before: May 11 17:01:16 2025 GMT
Not After : May 12 17:01:16 2025 GMT
Subject: CN=b155c9a7d20b80dda0109949936c993a512790c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2c:b7:c3:fa:34:d7:db:d6:84:70:0a:9d:1c:
4d:4f:ee:82:f1:9e:3d:fa:9e:a4:0e:34:ad:18:04:
00:aa:95:bb:81:6a:fc:33:bf:db:9e:6d:c0:ee:d4:
9e:b6:c1:c8:c7:ef:6d:52:2b:47:2d:a3:3d:7d:f3:
c1:6f:12:a7:3c:db:5e:02:0d:cd:2f:6b:3e:85:8b:
6d:c2:18:09:9a:78:3f:f5:99:fc:48:2b:1f:70:e9:
73:92:56:52:09:4c:6f:df:da:6a:f3:52:e3:5a:6b:
64:84:a7:f8:b2:4f:9b:98:26:cb:81:41:97:63:29:
d1:ae:37:44:62:23:fc:92:64:33:7a:ba:00:7f:3f:
f1:fa:28:69:9b:80:af:92:f3:c3:08:55:a4:ea:dc:
d7:79:f7:48:6f:04:66:80:e9:70:b6:fb:93:59:24:
0e:60:69:eb:9b:7e:31:40:c8:c5:86:29:50:fb:79:
fa:9b:20:ed:19:e1:45:0f:7a:61:c4:cc:69:25:15:
a4:5a:f7:52:32:07:b8:d0:41:6d:7a:4f:6d:e0:24:
04:a8:bf:0b:ea:f5:1d:e1:fb:1c:b6:75:07:f4:9f:
6f:8a:4a:6d:03:81:b0:55:e7:43:57:22:cb:a6:b4:
3e:e6:ab:3e:e7:e8:be:45:81:1e:43:3d:6b:32:d8:
80:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:55:C9:A7:D2:0B:80:DD:A0:10:99:49:93:6C:99:3A:51:27:90:C6
X509v3 Authority Key Identifier:
keyid:0B:F4:CE:03:89:CF:93:E2:D5:7E:08:2F:1B:EC:61:DA:82:72:FF:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_TOA4nPk-LVfggvG-xh2oJy__E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3ac783-9fab-4623-894c-5628faefe11d/1/C_TOA4nPk-LVfggvG-xh2oJy__E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3ac783-9fab-4623-894c-5628faefe11d/1/C_TOA4nPk-LVfggvG-xh2oJy__E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:19:a7:78:70:27:65:1d:b3:92:f0:8b:c8:7d:e1:17:dd:d4:
45:66:51:2e:3c:b6:58:10:ac:8c:1f:46:83:93:9a:ae:76:47:
3d:45:75:71:f3:14:9f:2a:45:a1:65:79:96:d4:49:c4:0f:21:
3c:81:b9:df:22:7b:62:9d:76:47:8b:05:fb:3b:f4:ca:e7:b3:
d3:41:36:ec:7a:63:15:f2:16:13:84:d7:67:0d:63:92:b7:ad:
a0:7f:c8:78:a9:2c:8f:7a:b0:f7:04:6a:ad:3e:50:8d:27:f8:
fb:95:31:e1:40:08:26:23:78:cc:14:73:3b:8b:85:ff:6e:06:
98:c7:16:64:0f:5d:6a:23:f7:71:0e:02:d0:40:a7:63:2a:0c:
be:ce:4d:45:22:b7:bc:02:90:1b:1d:fc:52:76:0b:7f:66:bd:
23:0a:d0:a2:de:5e:df:87:5a:a3:3d:03:34:57:56:27:9c:a8:
dd:12:da:ba:5a:7c:45:7a:3f:48:c1:84:01:0b:2e:cf:9d:07:
88:e5:16:11:e4:32:68:87:6e:eb:a7:31:c6:7b:27:79:44:d6:
19:57:17:09:c8:0a:a6:40:00:3c:b7:d5:f3:b5:d1:66:d9:3c:
32:1f:fa:d9:b4:c2:09:92:76:f0:84:89:61:c9:19:e2:28:e4:
2a:ad:01:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 21:20:47 2025 by rpki-client