Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
File: tDpxymDXTkXSuXSKsQZlKf0BM34.mft (raw, json)
Hash identifier: QxOCZPgt86jqOIo6wb6zf/iuttCI6+oYv98S7zbcZ/Y=
Subject key identifier: 91:FE:0E:43:E4:B6:A4:83:BF:E5:F9:F5:B1:D0:17:DF:D2:6D:17:14
Authority key identifier: B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
Certificate issuer: /CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Certificate serial: 0196BD80B83F634A9444F42F34C1D2408B98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
Manifest number: 1534
Signing time: Sun 11 May 2025 04:00:51 +0000
Manifest this update: Sun 11 May 2025 04:00:51 +0000
Manifest next update: Mon 12 May 2025 04:00:51 +0000
Files and hashes: 1: M5_-d1GdbRA2RUGO5npOtRSNEB8.roa (hash: DYZ2j8UdvivRy1b6Q4G0ZdvY6U48+tpNnHP/gql8rCo=)
2: tDpxymDXTkXSuXSKsQZlKf0BM34.crl (hash: 7OSZdmJgDd4r4aGBFXshlQbeGDdYBTXvhrSmb2BdsrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 04:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:80:b8:3f:63:4a:94:44:f4:2f:34:c1:d2:40:8b:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Validity
Not Before: May 11 04:00:51 2025 GMT
Not After : May 12 04:00:51 2025 GMT
Subject: CN=91fe0e43e4b6a483bfe5f9f5b1d017dfd26d1714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2e:eb:f7:67:ab:0c:c8:36:a4:64:d0:60:51:
c1:39:17:ea:36:d1:70:a8:b5:58:96:42:50:b8:8e:
dd:a4:ca:f7:a0:78:88:3f:60:29:d5:c7:9d:b7:14:
a4:7b:d3:91:b7:22:f3:61:99:69:0d:3f:1d:d5:2c:
aa:c5:fc:13:aa:1c:47:f8:93:3e:34:39:3f:cf:21:
c1:3f:bf:98:38:c2:ce:13:a6:34:84:bd:c2:3e:78:
87:51:8c:13:71:e7:72:e5:94:bb:ef:0a:f1:89:3a:
3f:b0:b8:10:20:ef:f5:c8:ae:94:77:97:a1:dd:f4:
a2:f2:9b:a0:c3:e7:7c:2a:a4:96:28:e8:1d:7b:27:
2b:b6:86:7f:de:44:fd:ca:9d:ab:47:a2:98:6f:f0:
43:35:61:a2:fe:d9:a7:a5:3f:aa:c0:fa:b9:ce:04:
1f:aa:4b:22:f4:fe:35:ee:81:9f:8a:09:b4:2e:f5:
ee:d8:22:e2:0c:4c:30:4e:66:d2:1d:70:7f:93:07:
a9:33:8f:da:7b:40:c8:be:0e:0d:24:11:df:2b:54:
c7:54:98:d8:ba:57:26:2b:ee:24:ae:fd:d5:13:ed:
36:61:50:df:38:9e:01:fe:da:5b:34:21:1b:00:f1:
68:34:4d:33:2a:4c:e4:c3:e0:97:66:fc:c8:d5:6e:
3b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:FE:0E:43:E4:B6:A4:83:BF:E5:F9:F5:B1:D0:17:DF:D2:6D:17:14
X509v3 Authority Key Identifier:
keyid:B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:aa:f9:38:3c:3f:1a:41:24:b9:fa:0a:49:5d:46:33:e7:e0:
2b:54:b7:45:bf:1c:36:d4:f5:fa:65:5f:10:da:18:b6:e7:e9:
f3:fd:a4:50:4f:de:30:ac:50:6f:93:5d:e8:2c:aa:30:6a:3f:
90:51:64:a9:7d:98:b0:57:b7:3d:fc:e2:e9:8b:86:dc:3c:ce:
72:2d:a4:7d:4f:6b:1a:4e:5a:b3:02:d0:55:fb:bf:59:20:ba:
29:4b:a6:d0:56:64:d3:12:e8:5c:a7:b3:0b:d0:9c:e4:77:d7:
2f:74:7a:aa:08:c5:0a:c6:fe:3b:ca:a6:b0:a7:93:ce:7b:7d:
94:89:aa:33:8a:47:2e:cc:96:33:d4:ec:11:0d:b6:76:6f:f3:
2e:21:b7:fe:6e:51:a8:f9:8c:6b:7f:45:42:7b:c9:32:a2:10:
39:e3:11:f4:f3:fe:cf:00:c2:0f:42:4b:df:ba:75:5e:71:cd:
81:b7:3f:4a:3c:50:f0:b2:be:d3:d5:57:fa:12:ec:d2:5a:7d:
a0:c6:e4:a2:92:3a:b4:6d:88:8b:69:55:da:49:b6:a6:6d:ae:
3e:cb:ba:d9:9b:79:96:f5:e2:1e:a5:75:bc:78:de:8c:49:ce:
87:8e:af:2a:8f:14:94:c0:70:18:99:76:a0:a3:fb:8c:1b:be:
e0:27:6b:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:06:14 2025 by rpki-client