Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
File: _tdzOdk4vvCHWZKTwgGzufgiNiM.mft (raw, json)
Hash identifier: qKQVXumXRrJmVruyHhcpFTHqeXPsKRWgkgilYfsWWes=
Subject key identifier: FD:D0:FB:37:F7:9A:A1:D6:7F:BA:5D:85:94:E0:CD:1A:4A:E9:85:25
Authority key identifier: FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
Certificate issuer: /CN=fed77339d938bef087599293c201b3b9f8223623
Certificate serial: 01975F13D049871B841D1F4BD2A35F478B10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
Manifest number: 1519
Signing time: Wed 11 Jun 2025 13:00:23 +0000
Manifest this update: Wed 11 Jun 2025 13:00:23 +0000
Manifest next update: Thu 12 Jun 2025 13:00:23 +0000
Files and hashes: 1: JiqQ-b59vNl0MF5eVXzf0TfeO3c.roa (hash: OKAd29RpT9wnjVFO/8cLOZm/b/ev+jNX/rx5kLKiews=)
2: _tdzOdk4vvCHWZKTwgGzufgiNiM.crl (hash: LzwD1wvV7Ldd3CcPX5+CVTkWCGp0U7GQDBZzx7QfNrU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 13:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:13:d0:49:87:1b:84:1d:1f:4b:d2:a3:5f:47:8b:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fed77339d938bef087599293c201b3b9f8223623
Validity
Not Before: Jun 11 13:00:23 2025 GMT
Not After : Jun 12 13:00:23 2025 GMT
Subject: CN=fdd0fb37f79aa1d67fba5d8594e0cd1a4ae98525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:75:96:e0:0a:b8:a4:23:47:1e:d8:f7:9b:3d:
47:6c:c4:94:6e:dd:ab:fa:98:5d:0b:cb:16:47:6a:
c4:14:22:db:56:de:75:2e:74:14:d4:43:ff:13:8b:
00:c2:ac:b7:b8:8c:26:5b:ad:51:4c:a3:21:9f:b0:
d3:b6:c2:a9:8b:fb:84:6b:ef:45:c9:34:b7:3a:51:
e6:5a:0b:2c:45:28:be:12:a3:52:6b:d5:ca:32:5e:
15:da:65:70:d4:16:b8:2d:bf:55:5d:4b:73:44:83:
4b:23:78:4c:3c:67:84:11:2c:72:2b:de:0b:ac:9e:
d2:cd:0e:45:2c:51:0f:b0:e8:39:48:78:df:ff:36:
c6:29:c2:0f:36:42:00:89:5f:2b:49:24:3b:d0:dc:
8e:69:06:c5:fd:79:dd:4d:9b:5e:57:4e:fe:d6:b1:
f9:83:c7:c4:22:a3:68:2e:75:22:b0:39:64:da:74:
7e:07:40:32:eb:bc:69:79:75:60:b7:bc:4d:c9:0e:
2b:93:dc:0d:2e:15:b4:b8:b5:ab:f2:8d:6f:19:0e:
2a:b3:b2:66:ae:1f:6a:a2:1e:8d:28:13:da:ce:e3:
f7:00:8c:de:80:3a:08:2e:d3:7f:41:3b:41:a5:9e:
78:57:ff:20:e3:76:26:c6:2e:87:5e:5e:df:0e:1c:
74:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D0:FB:37:F7:9A:A1:D6:7F:BA:5D:85:94:E0:CD:1A:4A:E9:85:25
X509v3 Authority Key Identifier:
keyid:FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:8e:cd:a1:3b:86:c4:4a:f9:f3:0f:ac:9e:63:2c:39:8e:15:
c5:89:77:9a:af:02:24:56:47:13:71:de:d7:52:15:dc:1f:1a:
da:1f:1d:0f:e0:09:33:8c:78:7b:c2:f6:5a:2b:ec:38:4e:de:
0e:62:cf:72:84:3a:9b:4b:38:d1:96:a6:91:d2:36:76:e4:72:
7d:da:74:2a:63:22:3d:f6:d9:64:84:02:1e:ce:5c:bd:af:b8:
b1:aa:38:83:47:80:91:38:cb:7c:f5:da:33:4b:06:8c:da:78:
c9:e0:49:cb:94:e0:1c:a0:24:4c:50:e8:84:cf:10:e8:18:38:
f5:63:5c:7c:f8:e6:24:70:0f:92:32:f5:f9:4f:e4:15:fe:0b:
94:53:2f:aa:a8:3d:75:f7:af:e3:8f:fe:2f:97:16:4e:fb:f4:
9c:e5:30:c2:79:c8:c0:7e:11:ed:79:97:6a:ec:47:b6:fa:62:
70:09:37:f4:41:1d:01:9c:f3:f5:b6:f2:b7:09:57:81:2c:79:
04:99:23:5f:97:5d:14:40:8b:97:65:bc:b8:1b:b1:cc:0c:e5:
26:4f:3f:1d:74:97:45:00:ce:bc:38:a9:03:ad:99:62:ac:80:
66:f6:a2:e3:6a:ae:c1:cb:16:e8:4b:2e:64:df:8d:02:5d:a0:
22:72:b8:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 23:08:55 2025 by rpki-client