Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
File: TDfyfrSZezvvnygmajlpQFD-dPk.mft (raw, json)
Hash identifier: iU/OQtC9EwSD6V0IOQ+qqMCMk4B1ZJ/FP/6Ia0JVVdg=
Subject key identifier: 61:94:82:5D:A9:CE:16:C0:8B:43:3D:FF:83:86:E3:81:FD:1C:A2:22
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 019841E286554AA1C7859639802B546C497D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
Manifest number: 165D
Signing time: Fri 25 Jul 2025 14:00:21 +0000
Manifest this update: Fri 25 Jul 2025 14:00:21 +0000
Manifest next update: Sat 26 Jul 2025 14:00:21 +0000
Files and hashes: 1: O9nHfOl2QVEFkw8z5PZAG-bDmQE.roa (hash: CmUudjBRBoLhGNB6o4EaSfh+UkgJVlz+52jeWbtrV5A=)
2: SzyIBUJURbOXMTDJ4Z_haTgvNpI.roa (hash: wJIDwOiFxDwrE3GURrkhai8iWOYh1f3lI6qeGAaNPyc=)
3: TDfyfrSZezvvnygmajlpQFD-dPk.crl (hash: mcXPsRMQ7V05PNwfMe/ZHBuwEaL5pQ5c5l8BB4t/WvM=)
4: UVW-IEFCCq7ahpPdj9WY7Kn8QqE.roa (hash: MZl++GgZA3uWjf7S8QTsOZZtzVITuzAAAAPegKRXupI=)
5: VIrZrIPn5JgwIWuerakwG37U7jA.roa (hash: +9EBlzR1H7BphSJTPeOlUDa4YDh16MokR5NsBCSFTMs=)
6: dQ4y2x688XsG8rEL7o8Sp4uIl8M.roa (hash: LuvxH8ju8nmShoj6OHN3o8s0V6hBxEddqrv3+BFDAgQ=)
7: gQDaBeXH0szJXrJTEvqe4lIGCV4.roa (hash: fhlImZ1nrh4i7H6LIP2R5ZbAmjbxd5MHcou/l4C25qU=)
8: lPoIPYo1ITlq-R71JXKfxiC_US0.roa (hash: 1ODRbC1wRix1ieOTK6Ku3fYNq0UfGPEvF5Esjd3aqDM=)
9: luug-CwXmvS54qQ88cgMGt-f5zU.roa (hash: HAfj14rHhfvfAv/i1MqUIJYZwmFczeoc01ZA/poLVk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 14:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:41:e2:86:55:4a:a1:c7:85:96:39:80:2b:54:6c:49:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Jul 25 14:00:21 2025 GMT
Not After : Jul 26 14:00:21 2025 GMT
Subject: CN=6194825da9ce16c08b433dff8386e381fd1ca222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a6:7d:45:4e:01:58:5e:8e:28:0e:af:7b:31:
d6:c2:0e:d6:54:ee:6e:92:bc:86:b3:32:b3:23:cf:
74:76:f0:03:50:4b:01:d1:10:06:73:8c:64:df:f6:
09:5d:8b:80:f2:47:6a:d2:0c:35:90:5c:58:45:34:
7a:ce:d1:fa:5d:4f:3a:0d:8a:ca:f6:fb:bd:dc:18:
26:86:5d:71:d6:4c:50:40:36:65:1d:e8:c5:d2:84:
e1:eb:b7:5c:9d:3f:cf:b1:94:b5:af:1c:6a:51:30:
7a:2f:5a:a3:15:b3:a9:68:93:0a:93:58:ed:21:98:
2a:cd:c9:d2:dc:15:06:a8:7f:cd:df:63:4a:9c:0b:
55:0c:f7:ba:f0:ef:47:8c:75:89:6b:3b:7d:ab:0a:
70:cd:55:d9:09:de:5f:10:ac:67:39:cd:ef:c8:1b:
76:2f:62:74:8f:01:7d:1d:ec:76:c0:ce:5a:ec:5d:
b2:f7:fe:61:a7:d5:3a:68:52:f3:8d:3f:12:5d:2b:
f8:bb:50:31:f1:3c:b4:23:1d:d7:bf:af:47:d0:f7:
f6:41:0f:1d:01:eb:f1:a4:d8:3f:af:18:0a:da:f5:
d5:dc:d9:ed:66:5a:48:16:de:4e:bf:64:4b:45:a8:
92:53:0d:f5:ab:85:42:40:ab:7b:32:ac:ff:27:d9:
00:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:94:82:5D:A9:CE:16:C0:8B:43:3D:FF:83:86:E3:81:FD:1C:A2:22
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:20:01:91:39:16:5d:5a:39:47:72:8d:1a:51:b5:c5:b1:3a:
9c:e9:03:b7:49:45:51:82:a6:ac:b8:3e:50:e8:4c:f5:39:b1:
5c:7a:b6:1e:94:f3:54:f4:7e:1e:66:39:18:04:a7:44:17:67:
af:e4:19:52:eb:9e:67:16:24:b0:77:37:ca:3d:38:f9:e8:2a:
af:36:dc:ae:55:ea:b7:61:1b:d8:28:55:d6:d1:f2:29:9f:d2:
72:df:eb:26:ae:26:1c:74:e8:dd:0f:2e:b5:bd:56:b3:d3:a0:
10:f4:82:ab:5e:b7:2d:ee:b8:4b:e4:66:3e:0a:b7:f7:91:6c:
f7:1a:99:00:88:26:f7:92:2d:25:a3:4c:01:56:0a:54:5c:2c:
48:ce:6f:e3:58:7e:17:bd:d9:03:b7:d5:99:ee:91:68:50:c4:
17:80:ac:82:6b:ce:d7:5f:3b:72:eb:26:3e:88:8f:81:ee:da:
f3:e4:47:eb:fd:60:4c:ed:8d:33:22:e4:85:d6:44:0c:0f:58:
e0:01:82:a9:d8:75:96:c2:f4:63:11:e5:cf:7a:d3:f0:93:c9:
e3:7f:b2:1a:c8:67:78:2c:65:2b:f9:51:71:c0:35:f8:64:04:
a6:d3:77:4e:93:f3:19:7e:53:15:c0:32:59:f1:45:a7:69:80:
69:35:53:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 22:42:27 2025 by rpki-client