Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
File: TKha1Dt7R-dSh4MHGEeU1woCdmw.mft (raw, json)
Hash identifier: pmmdj0uacS/oXCtttt1UeClsJKj6PW3QYOCCXtc02RI=
Subject key identifier: AB:27:B7:0F:A4:81:F8:9B:A6:2F:40:D8:1D:6E:40:FF:C3:94:83:3C
Authority key identifier: 4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
Certificate issuer: /CN=4ca85ad43b7b47e752878307184794d70a02766c
Certificate serial: 0197481E2A516609A5551AF63BCA4BA47415
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
Manifest number: 0101
Signing time: Sat 07 Jun 2025 02:00:25 +0000
Manifest this update: Sat 07 Jun 2025 02:00:25 +0000
Manifest next update: Sun 08 Jun 2025 02:00:25 +0000
Files and hashes: 1: TKha1Dt7R-dSh4MHGEeU1woCdmw.crl (hash: 8IsaVUSlMvf98q4CYahsP+E4+mkZ4erUZAVg4xYKeqc=)
2: cpRFayTuWEzodEO-QznXVMR-alE.roa (hash: wcJbOFjwwy8ZnD5yiXe5CzeprbHM7YA3HHhv8zEs++s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 02:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:2a:51:66:09:a5:55:1a:f6:3b:ca:4b:a4:74:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca85ad43b7b47e752878307184794d70a02766c
Validity
Not Before: Jun 7 02:00:25 2025 GMT
Not After : Jun 8 02:00:25 2025 GMT
Subject: CN=ab27b70fa481f89ba62f40d81d6e40ffc394833c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7d:e7:d7:71:20:ef:23:28:8e:0f:db:93:1d:
35:1c:18:73:85:9f:e5:2e:ce:bc:a9:85:1e:bd:14:
95:fc:34:7f:96:60:28:fb:3e:90:7f:49:9d:48:d7:
0c:ed:17:8f:0f:7a:1d:6e:82:f0:6a:95:2c:3a:9e:
c3:7a:8a:03:aa:7d:80:12:0a:ab:14:e0:18:99:c1:
70:02:45:5b:8c:5a:46:d7:ca:1f:69:bf:89:13:f0:
5b:41:40:7e:77:18:13:a9:aa:26:4e:76:b3:e7:63:
24:5e:07:7f:9e:43:65:c4:7c:93:d6:fc:be:31:5b:
29:99:2e:42:1d:c1:48:17:d6:07:cc:c7:3c:67:fa:
b4:d4:d0:1d:8d:e6:88:66:b9:3e:e3:51:66:83:d7:
7e:f4:85:f0:45:2a:8d:b4:2d:47:d0:3c:56:86:2f:
b1:e4:de:8c:19:24:b7:98:56:81:14:7d:39:ec:47:
73:04:d0:59:7c:86:f6:da:87:ab:47:0c:91:b0:5c:
2f:ed:5f:43:62:30:71:28:a6:0b:91:e0:91:7b:43:
6f:47:97:ce:c0:53:45:fe:55:97:99:7b:db:b0:33:
eb:6f:dc:b2:9c:96:89:b7:1c:8e:42:69:fe:78:a6:
8b:86:1e:52:e8:af:14:08:e0:d9:c2:ef:9c:9a:d6:
73:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:27:B7:0F:A4:81:F8:9B:A6:2F:40:D8:1D:6E:40:FF:C3:94:83:3C
X509v3 Authority Key Identifier:
keyid:4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:03:a2:f9:e9:fc:54:77:60:1d:f2:43:a4:77:87:2f:9c:a0:
51:ec:33:e3:08:c1:fe:da:07:8e:72:54:89:99:1b:e5:71:d2:
bb:e5:cf:bc:5b:46:bd:65:b3:f3:7e:98:69:44:8d:5a:7c:05:
07:52:9a:09:db:99:4c:14:2c:4a:5d:22:87:1d:d1:19:dd:3c:
f4:54:8d:6d:17:d8:0b:9a:d7:2d:af:25:28:97:71:81:5a:01:
65:8b:ff:3f:9c:69:1f:6e:95:e8:4f:93:97:74:d4:24:18:fc:
df:40:11:7d:55:7b:84:e3:cc:7b:c1:01:94:d5:72:e6:58:89:
a8:9f:0d:27:ee:c4:3e:06:f1:80:b5:49:65:5f:0a:bc:58:3c:
97:8a:30:52:dc:70:53:8a:c8:d6:e3:6a:d0:43:b6:b0:c3:19:
a5:70:54:2b:13:cd:86:12:36:f1:84:d0:ad:98:87:f4:4c:9e:
5d:f9:b9:0a:49:d0:24:9b:8f:98:9d:dd:94:76:01:26:2d:42:
ec:3a:a0:27:77:3a:07:2e:47:c4:06:bb:52:cc:13:8c:f8:0e:
79:92:c9:fc:73:c8:28:35:0b:94:ff:ff:c0:a5:74:0f:a7:80:
56:12:6c:a3:77:d5:d5:7a:29:5d:0e:98:23:f9:ec:cb:1f:67:
a0:00:a0:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIHipRZgmlVRr2O8pLpHQVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYTg1YWQ0M2I3YjQ3ZTc1Mjg3ODMwNzE4NDc5NGQ3MGEw
Mjc2NmMwHhcNMjUwNjA3MDIwMDI1WhcNMjUwNjA4MDIwMDI1WjAzMTEwLwYDVQQD
EyhhYjI3YjcwZmE0ODFmODliYTYyZjQwZDgxZDZlNDBmZmMzOTQ4MzNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyX3n13Eg7yMojg/bkx01HBhzhZ/l
Ls68qYUevRSV/DR/lmAo+z6Qf0mdSNcM7RePD3odboLwapUsOp7DeooDqn2AEgqr
FOAYmcFwAkVbjFpG18ofab+JE/BbQUB+dxgTqaomTnaz52MkXgd/nkNlxHyT1vy+
MVspmS5CHcFIF9YHzMc8Z/q01NAdjeaIZrk+41Fmg9d+9IXwRSqNtC1H0DxWhi+x
5N6MGSS3mFaBFH057EdzBNBZfIb22oerRwyRsFwv7V9DYjBxKKYLkeCRe0NvR5fO
wFNF/lWXmXvbsDPrb9yynJaJtxyOQmn+eKaLhh5S6K8UCODZwu+cmtZzcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKsntw+kgfibpi9A2B1uQP/DlIM8MB8GA1UdIwQY
MBaAFEyoWtQ7e0fnUoeDBxhHlNcKAnZsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yYmVhOGYtOWZiYy00NzY1LTkzYmMt
MjIyMjUyOTI5ODczLzEvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC8yYmVhOGYtOWZiYy00NzY1LTkzYmMtMjIyMjUyOTI5ODcz
LzEvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADQOi+en8
VHdgHfJDpHeHL5ygUewz4wjB/toHjnJUiZkb5XHSu+XPvFtGvWWz836YaUSNWnwF
B1KaCduZTBQsSl0ihx3RGd089FSNbRfYC5rXLa8lKJdxgVoBZYv/P5xpH26V6E+T
l3TUJBj830ARfVV7hOPMe8EBlNVy5liJqJ8NJ+7EPgbxgLVJZV8KvFg8l4owUtxw
U4rI1uNq0EO2sMMZpXBUKxPNhhI28YTQrZiH9EyeXfm5CknQJJuPmJ3dlHYBJi1C
7DqgJ3c6By5HxAa7UswTjPgOeZLJ/HPIKDULlP//wKV0D6eAVhJso3fV1XopXQ6Y
I/nsyx9noACg3w==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:05:51 2025 by rpki-client