Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
File: TSPi7bMh4ailzp7j4tlapA8N6KA.mft (raw, json)
Hash identifier: OySlw8kcaSZku+ydYt1hc8VNrB1RGIi7Qn+lZGpH1f0=
Subject key identifier: E2:95:A3:F6:E4:3F:5D:27:A1:7C:2E:41:C9:F8:F4:7B:75:77:56:C4
Authority key identifier: 4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0
Certificate issuer: /CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0
Certificate serial: 01969ED0DEAE7D39131478B805B8DD36E7DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
Manifest number: 09DA
Signing time: Mon 05 May 2025 05:00:10 +0000
Manifest this update: Mon 05 May 2025 05:00:10 +0000
Manifest next update: Tue 06 May 2025 05:00:10 +0000
Files and hashes: 1: E8fqlMMExB61QIsEKMENcZNpWcs.roa (hash: BmnUAt4AevLzEKuzLNe+ibP+z5vcZguaEireBbRJdHM=)
2: TSPi7bMh4ailzp7j4tlapA8N6KA.crl (hash: 18zc1YJObYi0ucKLtjl5txtTg4nH7K1Tld4Q8MdjtMI=)
3: gXlhbbxVLQVqCMGvhejieNdtoBY.roa (hash: 8u7C6SqKmEB/oIEa7cYGrPkrur0B3bFj0WV0Kh36+qQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:d0:de:ae:7d:39:13:14:78:b8:05:b8:dd:36:e7:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0
Validity
Not Before: May 5 05:00:10 2025 GMT
Not After : May 6 05:00:10 2025 GMT
Subject: CN=e295a3f6e43f5d27a17c2e41c9f8f47b757756c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:27:c2:36:91:9c:6b:92:09:94:1d:2e:fa:7c:
a7:bf:a8:11:c2:fe:97:54:30:81:ea:7b:34:67:e6:
32:1a:60:08:22:09:40:fb:15:36:11:80:b5:bb:3c:
bd:54:a7:12:f6:e2:46:fa:f6:62:40:07:0a:61:87:
1d:32:2c:b3:18:1f:7a:64:22:fa:34:8b:21:da:d8:
a7:35:3b:e3:cc:5e:89:88:c5:a3:8e:80:74:35:e3:
c2:4b:7e:47:73:8c:08:db:e8:a3:8c:73:7d:f3:b5:
40:31:71:9f:af:d2:9c:e3:59:3e:dd:ab:c3:ca:7c:
6c:88:4c:44:c9:e7:4a:cb:4c:31:e8:43:7d:eb:2f:
57:64:f5:3d:db:aa:cc:31:6a:cb:fc:b1:33:69:f6:
f1:5c:04:fe:aa:a1:00:62:92:77:64:f6:b8:25:19:
d3:83:84:b4:de:1f:2b:26:56:49:fe:db:9f:9c:2c:
cb:8c:61:30:7b:06:2e:96:c3:3e:cf:85:95:9b:35:
c4:14:68:ce:1d:77:d0:31:a0:c9:aa:8c:66:70:11:
60:c4:bf:9b:3f:f1:0a:b4:55:46:47:a7:a3:e9:10:
3f:df:e3:78:59:0d:aa:fe:14:3e:c0:22:07:4d:85:
36:ed:82:a7:d3:5f:e5:17:cb:60:c6:6b:77:29:06:
aa:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:95:A3:F6:E4:3F:5D:27:A1:7C:2E:41:C9:F8:F4:7B:75:77:56:C4
X509v3 Authority Key Identifier:
keyid:4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:2f:6b:2c:5c:a7:37:80:32:10:3b:2b:71:bb:53:8d:99:b3:
0b:93:d8:11:36:04:6f:c8:f2:db:76:cc:79:18:b1:0e:7c:81:
40:d1:2d:ad:87:da:08:3b:eb:32:1f:ae:e9:48:0b:e2:6f:37:
22:21:11:58:66:9c:c3:75:f4:7b:5e:2c:d7:01:0f:fd:6a:35:
61:73:d6:12:80:d1:b4:db:fe:38:7b:44:6c:46:a3:d4:16:9c:
33:fc:b1:4f:a9:f0:11:33:e3:aa:8a:c3:c6:63:9c:21:76:71:
73:00:9b:a6:73:57:b2:cb:16:f3:d5:f2:0e:b2:a5:aa:1c:70:
ac:7c:a8:e1:be:4f:73:a3:e2:d8:e6:c0:60:b1:78:78:5f:ec:
53:73:94:28:70:d6:36:78:a8:36:82:1c:b1:13:76:24:01:16:
71:76:20:70:a6:4f:ae:cf:0e:2c:02:ea:23:df:06:e7:9a:f4:
ce:3b:5b:c7:17:d1:47:89:01:ba:ed:01:be:ec:f6:3e:9e:c2:
09:91:1d:f8:cb:bd:13:86:36:f1:12:17:7c:4b:ba:34:8e:50:
81:d2:ac:0d:fe:61:34:00:69:a3:58:d5:5f:e6:97:67:5f:17:
d2:57:ca:c2:09:3a:a3:03:34:ad:60:05:98:93:b3:ac:02:8a:
aa:08:d8:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 09:32:56 2025 by rpki-client