Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
File: TyKDTEeXR7CovQphKfn-ZfgwJtA.mft (raw, json)
Hash identifier: 5HIrlkdm55q6zatipqiPCdoYqYvbOx44fzJTv6QrgXY=
Subject key identifier: 18:2C:07:04:B9:5D:FB:AE:FB:60:50:58:FD:62:4E:F7:F5:D1:D1:CA
Authority key identifier: 4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
Certificate issuer: /CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Certificate serial: 01975423561022D084419C7D9D8D2E70CEB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
Manifest number: 036D
Signing time: Mon 09 Jun 2025 10:01:31 +0000
Manifest this update: Mon 09 Jun 2025 10:01:31 +0000
Manifest next update: Tue 10 Jun 2025 10:01:31 +0000
Files and hashes: 1: 5_qRdcU_zBI67bUjjCeGmUT4bso.roa (hash: S33Bj4i6cQIjVG+I+Gmo76E+1aI2U06ldTXtc0u4sXQ=)
2: TyKDTEeXR7CovQphKfn-ZfgwJtA.crl (hash: KFL53zIWZl+1KBkwpByzAqN24lDKsRL2UmiPHB9u4qM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:23:56:10:22:d0:84:41:9c:7d:9d:8d:2e:70:ce:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Validity
Not Before: Jun 9 10:01:31 2025 GMT
Not After : Jun 10 10:01:31 2025 GMT
Subject: CN=182c0704b95dfbaefb605058fd624ef7f5d1d1ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:1e:2a:c2:80:51:83:fc:54:a8:cc:c4:62:60:
c2:95:c3:18:a8:3f:0c:1b:db:71:7d:e1:61:d4:98:
f1:94:05:d7:fc:fa:54:58:a1:47:3c:d3:69:e7:7d:
10:13:9d:42:b2:0e:c1:c1:a7:5a:a2:ce:b1:d9:c9:
3d:56:04:c0:aa:3a:f3:62:a1:9e:cb:00:d9:4d:bb:
a8:77:e7:e6:d7:0e:11:f3:7d:82:ec:bf:02:13:44:
23:84:d4:e2:9f:1d:75:88:e6:3b:a6:4f:c0:09:77:
5f:04:c3:60:2c:fc:18:dc:69:13:89:54:e9:3e:e8:
89:36:c1:b4:a9:eb:8f:29:e0:a6:25:69:59:6a:07:
c3:f0:79:0f:d2:23:9d:2c:f5:d1:7e:d8:15:71:a3:
22:29:12:40:8b:82:5d:32:07:00:0d:16:85:8c:44:
44:8a:e3:ea:55:66:a4:eb:0b:03:80:e0:90:a5:81:
0d:6f:ac:69:81:0c:24:43:7a:90:66:11:3d:e1:a8:
d8:c9:31:08:ef:34:e0:20:13:61:03:1a:66:4c:67:
13:f8:d0:ca:9b:3d:c5:8d:74:c4:7a:71:54:16:b3:
cf:8c:16:d1:1d:76:1f:9a:5d:45:c2:72:d2:df:8c:
e8:35:8c:34:c5:97:64:b0:bd:57:03:1e:f6:1b:10:
1f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:2C:07:04:B9:5D:FB:AE:FB:60:50:58:FD:62:4E:F7:F5:D1:D1:CA
X509v3 Authority Key Identifier:
keyid:4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:ed:ad:4a:da:6f:53:24:99:5d:11:55:0a:ab:27:fe:a9:fa:
a1:81:ca:96:2a:4f:01:3a:07:2f:fd:e3:69:1e:4a:82:76:46:
f3:20:53:7b:69:b0:a7:fa:dc:29:70:22:55:03:a1:90:45:e0:
7e:4b:cf:b1:ff:dc:96:e3:96:0b:e2:fc:5b:7b:04:4e:ea:17:
aa:e7:18:39:4e:3f:57:61:a8:2e:87:ae:73:2a:7e:80:6f:27:
1c:56:48:af:29:53:41:38:4e:2b:7c:b3:ea:c2:ee:6c:0d:0a:
8f:f0:34:37:0a:8d:77:66:db:6f:75:be:20:18:ae:1b:1a:9f:
3f:56:62:68:10:44:50:3d:4a:63:ee:ec:fe:24:8c:b0:fd:45:
de:be:15:17:46:dd:bc:8f:8b:02:88:70:46:ea:88:c2:67:87:
94:76:9f:19:ef:cd:a8:7a:cc:73:e9:75:e5:cf:c7:71:4a:7b:
62:cd:14:9d:d5:fd:60:ba:17:f5:bd:ee:7b:5a:d7:71:6e:87:
e1:a4:f1:b3:58:0d:c8:f2:56:53:c6:b8:b6:1f:66:ad:50:4f:
62:8e:5c:43:f4:27:e4:02:1b:58:08:cd:f9:f4:9e:3d:4c:f5:
54:25:55:90:14:15:6d:65:ad:d1:3b:8e:25:04:b2:94:53:6d:
5e:ff:e4:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdUI1YQItCEQZx9nY0ucM61MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMjI4MzRjNDc5NzQ3YjBhOGJkMGE2MTI5ZjlmZTY1Zjgz
MDI2ZDAwHhcNMjUwNjA5MTAwMTMxWhcNMjUwNjEwMTAwMTMxWjAzMTEwLwYDVQQD
EygxODJjMDcwNGI5NWRmYmFlZmI2MDUwNThmZDYyNGVmN2Y1ZDFkMWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9h4qwoBRg/xUqMzEYmDClcMYqD8M
G9txfeFh1JjxlAXX/PpUWKFHPNNp530QE51Csg7Bwadaos6x2ck9VgTAqjrzYqGe
ywDZTbuod+fm1w4R832C7L8CE0QjhNTinx11iOY7pk/ACXdfBMNgLPwY3GkTiVTp
PuiJNsG0qeuPKeCmJWlZagfD8HkP0iOdLPXRftgVcaMiKRJAi4JdMgcADRaFjERE
iuPqVWak6wsDgOCQpYENb6xpgQwkQ3qQZhE94ajYyTEI7zTgIBNhAxpmTGcT+NDK
mz3FjXTEenFUFrPPjBbRHXYfml1FwnLS34zoNYw0xZdksL1XAx72GxAfewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBgsBwS5Xfuu+2BQWP1iTvf10dHKMB8GA1UdIwQY
MBaAFE8ig0xHl0ewqL0KYSn5/mX4MCbQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHlLRFRFZVhSN0NvdlFwaEtmbi1aZmd3SnRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9iOWEwNTAtNzcyNi00ZWI1LWI0MDMt
N2JmNzI0MDU2MTUzLzEvVHlLRFRFZVhSN0NvdlFwaEtmbi1aZmd3SnRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS9iOWEwNTAtNzcyNi00ZWI1LWI0MDMtN2JmNzI0MDU2MTUz
LzEvVHlLRFRFZVhSN0NvdlFwaEtmbi1aZmd3SnRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcu2tStpv
UySZXRFVCqsn/qn6oYHKlipPAToHL/3jaR5KgnZG8yBTe2mwp/rcKXAiVQOhkEXg
fkvPsf/cluOWC+L8W3sETuoXqucYOU4/V2GoLoeucyp+gG8nHFZIrylTQThOK3yz
6sLubA0Kj/A0NwqNd2bbb3W+IBiuGxqfP1ZiaBBEUD1KY+7s/iSMsP1F3r4VF0bd
vI+LAohwRuqIwmeHlHafGe/NqHrMc+l15c/HcUp7Ys0UndX9YLoX9b3ue1rXcW6H
4aTxs1gNyPJWU8a4th9mrVBPYo5cQ/Qn5AIbWAjN+fSePUz1VCVVkBQVbWWt0TuO
JQSylFNtXv/kRA==
-----END CERTIFICATE-----
Generated at Mon Jun 9 17:58:47 2025 by rpki-client