Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
File: tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft (raw, json)
Hash identifier: 4w8f5IxrwDysJMidBVrw0ybgVJZkaZI16GT3MpnW2YM=
Subject key identifier: AA:06:07:A6:78:F7:7E:C9:5E:21:7C:03:FF:1A:59:E1:28:4B:42:B6
Authority key identifier: B5:D8:7F:DC:27:2A:E0:58:61:87:86:E7:41:70:75:57:BF:4E:1A:33
Certificate issuer: /CN=b5d87fdc272ae058618786e741707557bf4e1a33
Certificate serial: 019658A6C6D67DC311A085B0A61619F947AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
Manifest number: 029B
Signing time: Mon 21 Apr 2025 14:00:46 +0000
Manifest this update: Mon 21 Apr 2025 14:00:46 +0000
Manifest next update: Tue 22 Apr 2025 14:00:46 +0000
Files and hashes: 1: qQy9nbutIB840i93Gc6Vw1Yt6lA.roa (hash: 65g5a8+QhFyUXfSxWzLsMCFvk+W/xMxKhOR8kW2aeMw=)
2: tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl (hash: hCzPTkdQJyZ8iJKLnVdbfwr6XbCtgaWxgGeciWp6wWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 14:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:a6:c6:d6:7d:c3:11:a0:85:b0:a6:16:19:f9:47:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5d87fdc272ae058618786e741707557bf4e1a33
Validity
Not Before: Apr 21 14:00:46 2025 GMT
Not After : Apr 22 14:00:46 2025 GMT
Subject: CN=aa0607a678f77ec95e217c03ff1a59e1284b42b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:03:90:e6:18:7e:e3:fa:6b:df:6a:12:ea:c4:
62:4d:65:68:cd:cb:77:b6:df:db:4f:dd:35:30:4b:
b3:7c:76:9a:0c:34:0f:10:1c:ef:0c:cc:81:bf:49:
db:7b:4c:65:24:dc:f5:84:ac:2a:d6:7d:6f:e8:fc:
4e:55:6b:85:63:23:bb:40:0f:f3:69:4f:0c:6c:59:
66:2c:2f:35:b4:59:e6:10:b8:bc:58:53:2b:01:03:
fd:ec:11:63:b9:21:98:10:d0:19:80:1e:f6:75:57:
a1:37:16:4b:79:7e:78:28:9b:0b:e1:ac:b0:dd:be:
4c:d8:d3:f6:12:14:65:05:2c:a9:dc:02:49:74:59:
a1:60:42:7d:4d:ea:b2:6c:ad:f6:29:0e:d6:7a:e8:
d6:78:51:6f:73:7d:17:be:5f:4b:76:14:16:25:73:
18:ff:a2:8a:aa:09:07:60:7b:ca:83:08:ae:c2:43:
e9:50:5a:02:10:ff:01:14:03:c5:07:a6:78:e9:ac:
06:b7:40:41:ce:75:68:0c:dd:95:f2:72:12:2b:62:
03:2f:ef:0a:16:ad:1f:e9:dd:ba:e7:8f:9a:91:37:
4f:5a:d8:b3:7e:f0:df:8d:41:e8:07:7d:51:2f:bb:
be:19:4d:90:fe:a0:b5:90:db:61:c9:10:8c:67:a1:
ae:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:06:07:A6:78:F7:7E:C9:5E:21:7C:03:FF:1A:59:E1:28:4B:42:B6
X509v3 Authority Key Identifier:
keyid:B5:D8:7F:DC:27:2A:E0:58:61:87:86:E7:41:70:75:57:BF:4E:1A:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:45:53:f6:2f:91:84:9d:f6:4f:d5:18:46:63:01:78:e4:60:
7e:b6:55:00:e6:10:1e:f4:da:f7:67:5f:a5:1e:d1:a0:5c:d2:
e4:1c:fd:9f:8b:7d:63:16:d9:13:61:12:fe:bc:77:6b:27:49:
76:ae:07:63:e1:2e:fd:7b:37:6d:23:2d:dc:6f:4c:57:f6:96:
c6:33:f6:13:3e:66:43:13:fe:64:1d:86:bd:0e:88:fc:13:a7:
75:a5:85:0b:32:d1:85:da:c9:50:83:c8:06:1f:4a:84:a7:87:
83:a8:4d:17:50:e4:9b:de:3d:b0:36:2d:5d:ed:27:76:b8:bd:
fb:f7:20:f5:f8:aa:62:7c:19:fb:7b:ea:89:63:dc:fd:24:e5:
ff:a7:86:16:5a:a6:1d:c8:75:cd:8c:d0:5a:63:15:9f:6c:0f:
eb:05:4d:49:50:08:fc:d1:54:b5:56:50:cf:ee:6d:3a:15:75:
46:4e:21:86:89:9e:01:f3:06:d4:49:e1:e5:cb:1b:4f:d0:e8:
82:f2:4c:e0:40:9e:f5:fc:b0:99:be:de:77:f2:81:d2:da:8d:
b3:46:65:c2:16:dd:7a:e9:5b:ca:6a:3b:3b:8b:16:0e:a4:36:
df:fd:cb:db:f9:81:20:c3:f6:f3:26:df:3b:4d:7c:36:10:f7:
4f:22:68:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 22:23:27 2025 by rpki-client