Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
File: TDfyfrSZezvvnygmajlpQFD-dPk.mft (raw, json)
Hash identifier: 2P5QbNIcH9xzfSgc+5OepOSaLas53+HWJQ9o6FC44wM=
Subject key identifier: 35:FF:74:FA:EB:F8:0A:AB:55:5D:EC:95:96:10:EC:81:40:09:10:00
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 019748C3170C07FEFC876F748093221AD456
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
Manifest number: 15DC
Signing time: Sat 07 Jun 2025 05:00:34 +0000
Manifest this update: Sat 07 Jun 2025 05:00:34 +0000
Manifest next update: Sun 08 Jun 2025 05:00:34 +0000
Files and hashes: 1: O9nHfOl2QVEFkw8z5PZAG-bDmQE.roa (hash: CmUudjBRBoLhGNB6o4EaSfh+UkgJVlz+52jeWbtrV5A=)
2: SzyIBUJURbOXMTDJ4Z_haTgvNpI.roa (hash: wJIDwOiFxDwrE3GURrkhai8iWOYh1f3lI6qeGAaNPyc=)
3: TDfyfrSZezvvnygmajlpQFD-dPk.crl (hash: 30FQVp83/1s4hO7c5KEKFj+ncHDLLZ/J03Fp18N/uzo=)
4: UVW-IEFCCq7ahpPdj9WY7Kn8QqE.roa (hash: MZl++GgZA3uWjf7S8QTsOZZtzVITuzAAAAPegKRXupI=)
5: VIrZrIPn5JgwIWuerakwG37U7jA.roa (hash: +9EBlzR1H7BphSJTPeOlUDa4YDh16MokR5NsBCSFTMs=)
6: dQ4y2x688XsG8rEL7o8Sp4uIl8M.roa (hash: LuvxH8ju8nmShoj6OHN3o8s0V6hBxEddqrv3+BFDAgQ=)
7: gQDaBeXH0szJXrJTEvqe4lIGCV4.roa (hash: fhlImZ1nrh4i7H6LIP2R5ZbAmjbxd5MHcou/l4C25qU=)
8: lPoIPYo1ITlq-R71JXKfxiC_US0.roa (hash: 1ODRbC1wRix1ieOTK6Ku3fYNq0UfGPEvF5Esjd3aqDM=)
9: luug-CwXmvS54qQ88cgMGt-f5zU.roa (hash: HAfj14rHhfvfAv/i1MqUIJYZwmFczeoc01ZA/poLVk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:17:0c:07:fe:fc:87:6f:74:80:93:22:1a:d4:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Jun 7 05:00:34 2025 GMT
Not After : Jun 8 05:00:34 2025 GMT
Subject: CN=35ff74faebf80aab555dec959610ec8140091000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8c:51:49:09:08:0c:16:33:18:c0:62:0c:38:
47:47:a8:ed:bc:d9:7e:df:6e:c7:19:a2:0c:16:c3:
41:1b:e1:33:39:1d:7f:cd:49:f6:2d:61:9e:72:8b:
56:d3:9b:f9:b9:e2:21:a3:a3:f2:bf:52:21:b8:34:
19:61:87:33:fd:29:68:bb:db:08:75:09:c5:0b:35:
0e:bd:9b:c6:ae:eb:a4:7d:24:9e:bb:37:16:ce:67:
05:cb:68:b2:12:f6:51:de:db:05:4e:18:ff:61:73:
97:4d:30:31:c1:3d:fb:ac:af:14:22:5a:24:7d:22:
23:26:03:97:f7:8d:19:3e:e0:8e:88:f9:4b:48:0b:
e3:33:02:a6:a1:44:1a:e7:fb:2a:5b:20:54:a9:9c:
20:86:09:50:3e:71:ea:78:a0:7e:42:c7:7a:fb:36:
e2:04:9e:e3:8c:19:6f:d8:cb:79:30:4e:7e:ea:a4:
00:a6:d5:82:59:cb:ac:ea:b1:a4:a4:d5:ea:da:2f:
83:60:3e:eb:31:a1:e5:12:a7:26:9d:c6:60:cb:e4:
ca:f0:52:4b:00:c7:a6:89:28:9d:ea:5a:3f:e7:6b:
2e:9a:b1:e8:94:80:f1:23:c9:6f:df:05:dc:45:ec:
77:8a:8b:ce:fc:b2:90:85:f7:7e:64:ca:a8:c9:86:
32:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:FF:74:FA:EB:F8:0A:AB:55:5D:EC:95:96:10:EC:81:40:09:10:00
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:be:f1:82:5a:33:ba:71:bb:2d:ab:b3:36:5b:c1:7a:26:cf:
64:52:51:63:b9:76:17:72:b6:90:8e:14:67:25:78:3b:07:33:
de:af:05:7b:59:2c:cc:20:32:b6:9b:7d:42:96:20:bf:4a:11:
af:4f:f4:5d:34:c0:45:75:5e:e4:46:58:34:cb:ec:33:63:c2:
a6:b0:d3:9a:e9:87:cf:2e:3f:45:a4:ee:25:ef:38:48:9a:89:
fd:c1:6a:59:02:9f:5a:1e:70:f2:89:22:e0:6d:d3:0b:25:f7:
fc:7c:f8:41:b3:c3:79:39:19:98:da:41:d5:20:fb:f8:c8:14:
47:87:87:0c:2c:8a:99:27:06:06:f3:2c:e2:93:7c:d0:56:d5:
ff:40:35:a9:17:19:4a:f4:44:d9:5c:eb:15:72:30:32:b5:fb:
2c:3b:8e:68:ff:ec:1e:6b:39:2c:f6:e4:5d:4a:cf:71:38:ec:
3e:47:c5:4a:02:f8:77:45:39:d3:8b:bc:dc:f6:e3:46:bd:47:
49:89:9b:86:b0:19:11:60:7d:b1:11:c1:9c:f0:71:04:1a:6d:
49:5a:16:d0:89:f6:92:5f:8e:91:6d:e9:15:e1:c4:03:77:c7:
a8:92:db:23:2b:40:93:97:b3:4b:31:66:e9:4b:86:fd:b4:16:
f8:13:fc:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIwxcMB/78h290gJMiGtRWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjMzdmMjdlYjQ5OTdiM2JlZjlmMjgyNjZhMzk2OTQwNTBm
ZTc0ZjkwHhcNMjUwNjA3MDUwMDM0WhcNMjUwNjA4MDUwMDM0WjAzMTEwLwYDVQQD
EygzNWZmNzRmYWViZjgwYWFiNTU1ZGVjOTU5NjEwZWM4MTQwMDkxMDAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4YxRSQkIDBYzGMBiDDhHR6jtvNl+
327HGaIMFsNBG+EzOR1/zUn2LWGecotW05v5ueIho6Pyv1IhuDQZYYcz/Slou9sI
dQnFCzUOvZvGruukfSSeuzcWzmcFy2iyEvZR3tsFThj/YXOXTTAxwT37rK8UIlok
fSIjJgOX940ZPuCOiPlLSAvjMwKmoUQa5/sqWyBUqZwghglQPnHqeKB+Qsd6+zbi
BJ7jjBlv2Mt5ME5+6qQAptWCWcus6rGkpNXq2i+DYD7rMaHlEqcmncZgy+TK8FJL
AMemiSid6lo/52sumrHolIDxI8lv3wXcRex3iovO/LKQhfd+ZMqoyYYyxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDX/dPrr+AqrVV3slZYQ7IFACRAAMB8GA1UdIwQY
MBaAFEw38n60mXs7758oJmo5aUBQ/nT5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wOWNlYTAtZWYyYi00ZjIwLWExOWEt
ZWI1YTYyN2U3NmEzLzEvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8wOWNlYTAtZWYyYi00ZjIwLWExOWEtZWI1YTYyN2U3NmEz
LzEvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnr7xgloz
unG7LauzNlvBeibPZFJRY7l2F3K2kI4UZyV4Owcz3q8Fe1kszCAytpt9QpYgv0oR
r0/0XTTARXVe5EZYNMvsM2PCprDTmumHzy4/RaTuJe84SJqJ/cFqWQKfWh5w8oki
4G3TCyX3/Hz4QbPDeTkZmNpB1SD7+MgUR4eHDCyKmScGBvMs4pN80FbV/0A1qRcZ
SvRE2VzrFXIwMrX7LDuOaP/sHms5LPbkXUrPcTjsPkfFSgL4d0U504u83PbjRr1H
SYmbhrAZEWB9sRHBnPBxBBptSVoW0In2kl+OkW3pFeHEA3fHqJLbIytAk5ezSzFm
6UuG/bQW+BP8Ww==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:48:02 2025 by rpki-client