Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
File: tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft (raw, json)
Hash identifier: kliTi0SIf8R3KcnVvnfqHDh5Ol285HgWudiW3w8dD28=
Subject key identifier: 85:C6:F2:1B:12:21:C2:66:1A:7D:52:0D:C2:44:19:0C:14:43:05:68
Authority key identifier: B5:D8:7F:DC:27:2A:E0:58:61:87:86:E7:41:70:75:57:BF:4E:1A:33
Certificate issuer: /CN=b5d87fdc272ae058618786e741707557bf4e1a33
Certificate serial: 0198548DC9E4AF78B701B57AE82C6076B0B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
Manifest number: 03A2
Signing time: Tue 29 Jul 2025 05:00:35 +0000
Manifest this update: Tue 29 Jul 2025 05:00:35 +0000
Manifest next update: Wed 30 Jul 2025 05:00:35 +0000
Files and hashes: 1: qQy9nbutIB840i93Gc6Vw1Yt6lA.roa (hash: 65g5a8+QhFyUXfSxWzLsMCFvk+W/xMxKhOR8kW2aeMw=)
2: tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl (hash: dBmWWwyOBFb2craLW3s5FIJHZYeszytsdTMGbk+5QSM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:54:8d:c9:e4:af:78:b7:01:b5:7a:e8:2c:60:76:b0:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5d87fdc272ae058618786e741707557bf4e1a33
Validity
Not Before: Jul 29 05:00:35 2025 GMT
Not After : Jul 30 05:00:35 2025 GMT
Subject: CN=85c6f21b1221c2661a7d520dc244190c14430568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b6:82:50:bb:0c:6c:36:4f:61:b8:94:22:6d:
e0:c4:fb:17:19:7a:b8:9a:8b:e2:25:45:16:0c:f2:
bf:23:f0:0f:6c:46:44:3c:73:73:a9:d2:af:f3:d4:
99:3a:aa:69:fb:e6:12:bf:23:38:e9:50:00:e4:c2:
6e:ce:38:32:44:5e:49:0a:ff:31:60:93:56:9b:75:
b1:5d:16:f0:8b:a7:63:a2:ee:49:59:2f:22:03:5d:
44:8b:2a:1a:d5:8c:8d:c0:2e:78:fc:67:9e:df:82:
d5:4c:ab:03:9d:32:69:5e:2f:dd:bb:9f:e0:6b:ed:
fa:8d:62:f2:75:24:35:2e:d0:1c:70:7c:79:f0:f3:
2b:b7:f9:51:88:06:48:ee:59:9c:b8:e1:ae:5c:3f:
df:e7:55:52:fb:ad:f4:d1:23:87:22:16:1c:5b:3f:
c0:3f:d4:47:33:23:15:c5:b3:18:ca:a5:02:02:b7:
d4:be:f7:0a:f5:8d:85:79:d5:70:1a:9b:85:20:83:
00:cc:82:8d:ea:a7:be:bb:f4:c1:ed:bd:44:c5:10:
69:36:3d:d9:f4:7f:a0:a1:fb:dd:63:33:7b:cf:37:
46:c0:0a:41:4f:8d:7e:e1:93:b2:32:58:7b:d7:23:
d6:33:d9:03:54:b4:93:bf:ad:d8:fc:3f:c4:c7:89:
83:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:C6:F2:1B:12:21:C2:66:1A:7D:52:0D:C2:44:19:0C:14:43:05:68
X509v3 Authority Key Identifier:
keyid:B5:D8:7F:DC:27:2A:E0:58:61:87:86:E7:41:70:75:57:BF:4E:1A:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:d5:ca:33:a4:dc:aa:81:f7:53:80:c9:b3:df:a8:94:95:25:
ff:99:64:7f:45:6d:27:54:19:e8:5d:d2:52:58:8f:11:cd:fc:
97:54:f5:3c:d1:64:43:25:eb:1b:09:1f:68:e7:ad:e6:d1:ae:
a9:76:ac:96:ac:9e:33:bb:fd:b8:7b:da:f0:db:d5:ae:8e:e1:
2b:16:3a:29:c7:71:c1:a5:53:62:22:72:8c:de:32:c5:d6:6d:
9e:ab:ae:5e:cf:d4:f3:a4:92:03:3c:27:ae:74:61:e8:b3:29:
06:71:d6:10:5e:d8:43:cb:ac:7f:29:13:be:c5:64:b6:3a:0b:
ab:e5:86:a0:63:6d:2a:6a:34:cd:a3:e3:b2:f6:29:bf:18:6b:
64:75:ee:95:17:70:36:4a:b9:11:14:72:6f:16:d7:96:1b:f3:
26:5c:37:9e:d1:20:cc:41:d3:cb:f1:f3:05:f2:79:4a:72:02:
23:1d:31:ff:b2:5f:e2:28:8f:d5:99:4e:76:a6:2b:05:6b:6b:
5d:0b:3b:13:37:a7:42:3c:f0:fa:57:16:3e:b9:85:d7:30:1a:
e2:11:78:f7:9c:8a:a0:a4:68:8f:e9:5e:74:35:b7:2a:e3:19:
38:4e:3b:9d:f0:b0:38:85:3f:b3:56:f7:6b:77:84:b6:56:9d:
49:12:68:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 07:31:02 2025 by rpki-client