Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
File: 1TVDIcElQ2AUXq8l9pk4uN80ezE.mft (raw, json)
Hash identifier: YPZOo8tCO/2aFcQbDJpYXc6PKoAS/DQPU6xQGhKn38I=
Subject key identifier: 94:76:4B:D4:D0:BB:BB:19:E0:82:D9:33:40:16:F1:F5:F1:66:48:9E
Authority key identifier: D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
Certificate issuer: /CN=d5354321c1254360145eaf25f69938b8df347b31
Certificate serial: 0196C9176C384A9FB6A92A86F8D831450C96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
Manifest number: 0A39
Signing time: Tue 13 May 2025 10:01:17 +0000
Manifest this update: Tue 13 May 2025 10:01:17 +0000
Manifest next update: Wed 14 May 2025 10:01:17 +0000
Files and hashes: 1: 1TVDIcElQ2AUXq8l9pk4uN80ezE.crl (hash: 9/OL2a69X8Iac62qLWZxrN3MvZ6twPbxVIO3LR+oFx0=)
2: 5hvMdLYnfsXTSuV237JH9FWLZN0.roa (hash: +NNavIzbs+bo3gjOvC6npGrxT+kBJ6ESc9cDAGFiB9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 10:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:17:6c:38:4a:9f:b6:a9:2a:86:f8:d8:31:45:0c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5354321c1254360145eaf25f69938b8df347b31
Validity
Not Before: May 13 10:01:17 2025 GMT
Not After : May 14 10:01:17 2025 GMT
Subject: CN=94764bd4d0bbbb19e082d9334016f1f5f166489e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ab:74:08:e2:d9:76:b1:0f:5a:06:67:89:d1:
60:11:0f:bf:e5:90:dc:cf:de:f9:b1:3f:86:4a:ca:
e4:88:3b:b9:e3:99:01:73:ed:17:86:b0:88:9e:6c:
ba:44:94:2a:af:00:91:d1:76:5f:48:76:5c:01:d3:
72:c5:f6:d2:67:01:0f:69:65:68:3c:07:15:52:b8:
05:03:6d:72:23:86:c3:2d:d2:32:9f:a6:61:ee:2a:
65:0b:5c:c4:d6:4a:59:2e:a3:80:40:3b:55:81:12:
fd:54:14:57:6e:ca:00:e8:67:b8:1c:56:c4:ac:fb:
91:0f:e5:20:0a:0a:1a:3e:e8:39:bb:ae:95:d2:af:
c4:e1:e9:7a:ed:c6:39:ae:d7:c8:dd:24:3a:aa:c8:
87:b3:e9:ed:16:7c:cb:75:c0:95:2d:28:e9:60:a6:
ef:d5:b8:eb:8f:2b:be:25:08:b5:c4:71:7d:26:90:
ff:39:45:27:99:82:4e:f5:6a:f4:f6:40:f8:2a:d0:
af:df:6f:35:2f:45:fc:ee:8d:7f:98:29:46:27:55:
6a:78:64:e4:59:c0:01:5f:f9:86:33:0a:5e:f7:d8:
be:b5:6b:15:96:62:6e:96:5d:c6:cc:a7:d2:e4:49:
10:43:6a:f1:9a:5d:39:23:a5:4d:82:90:16:3e:4d:
61:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:76:4B:D4:D0:BB:BB:19:E0:82:D9:33:40:16:F1:F5:F1:66:48:9E
X509v3 Authority Key Identifier:
keyid:D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:52:fb:3b:47:a8:1c:9f:1c:19:86:5c:98:93:16:61:b9:fc:
46:70:a0:0f:f5:40:3e:d1:ba:97:ad:ea:f1:72:f1:5d:0d:64:
3a:e2:8c:3b:d1:5a:4e:58:a2:81:16:bf:af:32:fd:e2:30:dc:
b9:a4:bb:4c:ef:eb:ec:1f:39:71:cc:ee:20:94:02:cc:53:e0:
6a:79:ec:8c:c3:51:f4:eb:e2:43:54:40:80:e5:11:9a:6b:19:
a8:5c:c9:2b:64:e6:cf:4d:01:a0:f8:3f:ad:16:aa:f3:a2:3c:
3f:0d:51:f9:82:9c:2d:d6:92:49:ca:fd:69:20:20:20:4d:1a:
30:9a:5d:c0:ee:5c:7c:c9:84:3f:eb:77:0d:c3:5b:e1:b7:ab:
41:4f:a4:10:89:18:a3:6d:89:f9:2c:44:19:84:51:29:18:3f:
2c:d4:9c:f9:2d:ac:bf:e4:16:d2:39:4c:fe:62:ce:92:e8:20:
59:1b:d2:a9:e6:34:f4:4c:9f:7b:fc:67:ee:40:b9:88:09:43:
cd:a6:bb:65:7f:ce:18:c7:94:69:fc:13:39:e3:6c:c0:c9:64:
ad:bc:62:24:22:da:d8:93:8f:88:78:72:88:3d:3e:8b:0b:24:
68:35:7a:e0:11:a1:61:ec:29:df:83:bf:2e:51:ab:05:a3:b2:
71:5a:53:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 15:20:06 2025 by rpki-client