Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.mft
File: TORqOpla2FRclax7aSMcpiT8iJM.mft (raw, json)
Hash identifier: QxIjAmtcXsgCrd6G0irze3UCOzWiZO0B/A8XJJ57CX8=
Subject key identifier: ED:69:F2:83:D2:15:3C:A9:F7:E7:2C:A4:6B:30:EC:22:26:04:A7:18
Authority key identifier: 4C:E4:6A:3A:99:5A:D8:54:5C:95:AC:7B:69:23:1C:A6:24:FC:88:93
Certificate issuer: /CN=4ce46a3a995ad8545c95ac7b69231ca624fc8893
Certificate serial: 0196A653B87CDC1AFEAAD01F7E933AE7EC38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TORqOpla2FRclax7aSMcpiT8iJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.mft
Manifest number: 100D
Signing time: Tue 06 May 2025 16:00:26 +0000
Manifest this update: Tue 06 May 2025 16:00:26 +0000
Manifest next update: Wed 07 May 2025 16:00:26 +0000
Files and hashes: 1: TORqOpla2FRclax7aSMcpiT8iJM.crl (hash: zHjAtOCV08KohU6FDwcJWaFLuGwpKQ1EL/RHbX8/o/I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TORqOpla2FRclax7aSMcpiT8iJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 14:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a6:53:b8:7c:dc:1a:fe:aa:d0:1f:7e:93:3a:e7:ec:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ce46a3a995ad8545c95ac7b69231ca624fc8893
Validity
Not Before: May 6 16:00:26 2025 GMT
Not After : May 7 16:00:26 2025 GMT
Subject: CN=ed69f283d2153ca9f7e72ca46b30ec222604a718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:45:56:29:3f:f2:86:c7:67:24:c9:49:54:12:
42:c2:44:d6:62:22:a7:67:44:d3:e2:06:3d:62:eb:
22:54:a6:d8:fb:75:c5:e3:1e:51:a5:77:5c:d8:ac:
c6:d6:83:e5:14:4e:6e:ac:b5:2f:14:d5:7e:84:5f:
11:2a:3b:85:6c:12:60:9f:aa:30:40:31:d3:ac:7e:
64:8b:dd:93:6b:f0:94:cb:45:8f:41:ec:17:7e:be:
62:f5:4a:18:25:8d:f1:56:fc:22:c5:d9:79:5f:c4:
59:e0:ca:75:cc:01:aa:0d:b9:3d:b1:6b:5c:50:db:
13:e3:5c:7b:d5:c9:7e:f5:79:b4:c5:f5:77:8b:37:
b3:43:ba:b3:ef:58:f7:38:25:9d:27:a8:d5:d4:c3:
d3:6a:cd:6b:1b:6b:12:4c:02:ba:c4:d8:96:8a:2c:
35:ff:bc:36:a3:47:b7:63:2a:2a:fa:b0:7e:70:e1:
be:e1:7c:69:af:ae:20:6f:ae:97:ba:7e:f2:07:9a:
92:d2:f6:72:dd:6b:b8:fd:de:75:8b:5c:38:df:d8:
dc:05:fa:b3:fb:ec:10:91:80:63:fa:e3:b2:c0:e4:
6e:61:ad:9e:55:32:9a:59:5f:d4:ca:a1:76:b0:e7:
f9:82:b8:cc:68:a8:d1:88:92:04:ca:98:74:81:5f:
1a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:69:F2:83:D2:15:3C:A9:F7:E7:2C:A4:6B:30:EC:22:26:04:A7:18
X509v3 Authority Key Identifier:
keyid:4C:E4:6A:3A:99:5A:D8:54:5C:95:AC:7B:69:23:1C:A6:24:FC:88:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TORqOpla2FRclax7aSMcpiT8iJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b34d06-5247-48f8-9b56-60f6d4a5a74f/1/TORqOpla2FRclax7aSMcpiT8iJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:0a:81:48:12:12:8b:81:11:4b:8b:e5:38:86:55:22:4d:c3:
db:e9:d8:49:62:5d:43:a3:33:87:b9:00:dc:15:c8:af:39:6c:
15:ef:a3:c3:2b:8e:8e:9e:e1:f2:d6:87:a6:36:1b:ca:15:3b:
a5:fa:c6:7f:13:82:fd:50:55:64:4a:ea:a0:ba:da:f6:48:ca:
c0:9a:6a:d6:a4:c7:16:3f:dc:6e:a9:e9:c4:6e:76:24:64:49:
5b:89:b5:f5:8f:31:f1:bb:c9:b9:0c:b2:da:26:55:36:98:01:
89:ed:e6:4d:21:d6:b7:01:dc:3a:aa:24:90:8a:c6:9a:2f:64:
5c:dc:ee:10:15:60:9a:62:37:d1:f0:8b:d6:df:04:e4:4b:b7:
60:ac:ce:9f:30:31:00:c8:8d:9a:98:36:f4:5d:9a:f3:e4:c3:
60:8d:24:ae:a4:1a:4c:17:58:dc:9c:0d:e9:61:bf:9e:c6:23:
d9:74:df:24:ad:73:52:f1:07:6a:42:a1:1f:0e:1f:e7:bf:fc:
42:5e:cf:39:d7:11:9b:4c:e5:f6:03:4a:b5:b4:d5:e4:54:a5:
29:6e:1f:07:41:d4:88:77:d2:ec:13:aa:cb:db:f5:10:81:c1:
57:a7:87:39:f2:dc:ec:3c:c9:06:27:40:66:2d:9a:f9:96:c0:
e1:b8:a1:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 20:58:30 2025 by rpki-client