Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
File: _tdzOdk4vvCHWZKTwgGzufgiNiM.mft (raw, json)
Hash identifier: TDG9lPO2IqtZGJ/yNFrnpwEtcB+ifvIeQMZkdacdPTU=
Subject key identifier: 79:B0:B3:AA:C6:69:C5:71:B9:C4:2D:01:0F:CE:84:8D:AB:E6:57:D6
Authority key identifier: FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
Certificate issuer: /CN=fed77339d938bef087599293c201b3b9f8223623
Certificate serial: 01975948A2EC4BB011C15FA8A1948331472A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
Manifest number: 1516
Signing time: Tue 10 Jun 2025 10:00:21 +0000
Manifest this update: Tue 10 Jun 2025 10:00:21 +0000
Manifest next update: Wed 11 Jun 2025 10:00:21 +0000
Files and hashes: 1: JiqQ-b59vNl0MF5eVXzf0TfeO3c.roa (hash: OKAd29RpT9wnjVFO/8cLOZm/b/ev+jNX/rx5kLKiews=)
2: _tdzOdk4vvCHWZKTwgGzufgiNiM.crl (hash: M47XlmUZrXGeEL+5Uwe4R8/qk6Unq7z38McBmWwNPTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 10:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:48:a2:ec:4b:b0:11:c1:5f:a8:a1:94:83:31:47:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fed77339d938bef087599293c201b3b9f8223623
Validity
Not Before: Jun 10 10:00:21 2025 GMT
Not After : Jun 11 10:00:21 2025 GMT
Subject: CN=79b0b3aac669c571b9c42d010fce848dabe657d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5f:1c:77:05:f8:39:cf:2c:da:33:06:57:6c:
75:da:b2:0b:0a:1f:69:e9:f1:d0:f8:ea:66:43:42:
a2:ea:7f:34:aa:b3:20:ec:e8:c8:4b:4f:94:9b:09:
ec:0c:ce:af:1e:d0:16:f9:7a:38:74:1c:67:1d:ce:
1d:6d:ae:df:89:61:54:80:9a:22:98:8c:5d:eb:f1:
f3:64:d1:d2:8b:77:ff:ec:76:29:d6:9f:6f:e7:b7:
96:95:4c:3f:16:ff:b1:ee:42:4f:ab:c4:11:ef:5e:
a0:5a:48:e9:16:27:87:da:ef:de:78:98:88:db:6c:
0c:18:62:b3:d0:77:ab:3d:2f:7b:89:f7:2e:dc:fc:
b1:70:04:34:81:78:b1:ca:d1:8f:59:51:33:88:29:
2c:d4:c5:a1:89:fd:0c:bb:7a:7f:ab:e0:11:79:7f:
2b:04:87:fd:e0:85:5a:ea:c4:55:8d:74:ca:75:eb:
21:69:fb:98:aa:34:ee:72:23:10:d6:23:f2:58:73:
40:76:be:47:87:4c:b2:b2:4d:00:9a:54:a3:ee:08:
53:1c:fd:bb:3d:87:8c:03:d9:a5:79:41:b2:e3:81:
5d:37:96:0b:cc:8b:61:c8:fa:ee:4d:19:05:24:a5:
e9:64:3a:09:5c:80:5b:aa:99:8c:7c:5a:53:bf:4e:
87:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:B0:B3:AA:C6:69:C5:71:B9:C4:2D:01:0F:CE:84:8D:AB:E6:57:D6
X509v3 Authority Key Identifier:
keyid:FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:ed:83:a3:32:9b:80:de:27:5c:e6:9e:78:07:05:e0:79:4c:
46:f0:c0:e8:a4:10:52:83:4e:bc:e6:b9:aa:be:77:ce:20:ea:
fb:bd:d3:0a:7e:8b:9a:e9:36:3f:5e:66:4e:fa:29:c3:d2:d3:
3a:17:44:b1:a0:a4:5e:9c:59:ca:4f:23:fb:b4:f8:28:5f:64:
7f:5c:a1:d0:4e:64:37:d9:28:1d:ea:21:d4:51:54:03:0b:80:
31:9c:b6:5b:9d:7f:cb:f6:a0:63:ee:bb:4f:02:9f:0b:e9:6a:
c8:4e:59:ef:cd:05:7d:f6:13:68:48:00:09:ea:c0:d1:4e:2a:
85:87:ac:f9:01:a3:4f:e0:6b:72:4d:69:9e:6c:2b:d2:7f:bb:
6a:31:15:7b:04:78:8d:5d:91:b1:1a:41:db:f7:6e:67:ff:b8:
38:da:27:58:18:0b:95:9f:d5:f4:38:a1:11:af:c2:ca:21:26:
b4:25:e6:91:ca:1c:34:e8:a4:0e:a3:22:a2:06:f9:a3:85:1a:
51:1a:6a:c7:5b:62:c7:bb:14:df:00:33:de:3b:3d:a2:75:1d:
89:d5:8b:46:65:a9:70:fb:34:59:32:50:84:5f:45:ff:5d:e2:
ff:c4:e5:40:cc:66:8b:74:1e:4c:8d:1e:19:77:9d:70:e5:51:
64:c1:b0:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 17:42:21 2025 by rpki-client