Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
File: tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft (raw, json)
Hash identifier: MEO/+cpU6KBBVtwN3zhCwYfXcjtyn5H/A5OQy/BXVd0=
Subject key identifier: EE:8A:0E:32:F8:8C:0B:BE:51:D8:DE:CE:6B:8A:80:65:21:AD:56:89
Authority key identifier: B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
Certificate issuer: /CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Certificate serial: 019655A609116A97DC9C495A5FF881EE5A86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
Manifest number: 0B2F
Signing time: Mon 21 Apr 2025 00:01:06 +0000
Manifest this update: Mon 21 Apr 2025 00:01:06 +0000
Manifest next update: Tue 22 Apr 2025 00:01:06 +0000
Files and hashes: 1: 6mSAzptlMtavroiRBEbzErufO08.roa (hash: lJ5Bp/WretmXqwZLM24/DP1Oy5iyysz4o7F+olg5yZQ=)
2: tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl (hash: InpGxjWJ+jT6dJgb9ykOShBIEZIC5bwH/5tTUu7N/dc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a6:09:11:6a:97:dc:9c:49:5a:5f:f8:81:ee:5a:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Validity
Not Before: Apr 21 00:01:06 2025 GMT
Not After : Apr 22 00:01:06 2025 GMT
Subject: CN=ee8a0e32f88c0bbe51d8dece6b8a806521ad5689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1f:d5:6a:8e:07:c7:c4:dd:b3:95:a6:0d:c6:
c7:06:cf:b3:b3:a0:6e:8a:c9:cf:9a:31:24:22:34:
51:fd:9a:4a:cc:32:6a:bf:bd:59:d7:db:a7:8d:07:
ef:de:8d:5e:97:7f:93:50:29:86:50:a6:1b:fe:83:
65:a2:9e:64:bd:02:06:0d:95:ac:6d:c4:72:d4:1f:
81:b5:d6:d3:2e:25:63:af:12:62:63:a6:fe:e9:65:
f2:e7:c3:bd:3c:d9:21:ca:6c:ef:e4:34:a2:bd:5b:
74:3b:11:9c:0a:00:e6:91:e9:34:02:8a:d0:3f:27:
c1:a4:75:c2:d6:f7:ea:35:be:bd:0e:eb:ea:82:7f:
98:c4:66:01:ec:c3:68:f4:20:a5:66:a4:3a:39:f4:
2a:cb:2a:5b:d4:fa:ac:64:68:f0:27:ee:31:fe:3c:
ba:df:cc:c8:1f:59:c1:97:e6:84:36:52:dc:2a:2d:
fa:28:b7:ec:8f:9c:99:bc:d4:e8:2d:b9:15:6c:1e:
1b:a9:bf:ee:37:d7:0b:42:a1:85:cf:7e:5c:f0:05:
52:9b:92:13:21:82:7f:78:90:cd:d6:fc:36:01:fd:
af:a5:9f:51:e8:1b:28:2c:16:f8:bc:ae:79:0b:b3:
5d:fe:39:fe:73:fe:39:97:f6:4d:23:39:a2:5a:be:
b9:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:8A:0E:32:F8:8C:0B:BE:51:D8:DE:CE:6B:8A:80:65:21:AD:56:89
X509v3 Authority Key Identifier:
keyid:B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:4a:43:15:55:7f:2e:50:16:66:d3:e2:ca:de:5a:66:a1:c8:
cd:65:9e:ca:99:4a:66:cc:58:15:e4:8a:f0:4c:d4:b8:c1:93:
55:7c:5f:75:28:4b:63:02:4f:88:55:99:8b:ec:f9:1c:b6:24:
13:11:1d:60:1f:f0:f9:57:9a:cb:77:57:79:4b:18:7d:f9:e8:
01:b0:34:2f:f7:ce:c9:59:af:91:9f:b7:28:c7:57:a6:56:66:
8b:03:c8:5f:b9:96:18:58:c2:65:4b:86:15:0d:c1:53:34:53:
11:2f:f5:97:83:9c:62:a0:12:5d:7e:92:2b:d6:68:08:29:01:
b8:49:15:60:60:10:4d:f8:c3:44:19:16:68:7a:b5:2b:ad:df:
d6:47:0a:78:fc:52:18:25:2f:20:68:8b:b3:60:c6:8c:dc:45:
53:fc:84:0f:92:e2:fa:d9:52:44:4b:b2:60:91:78:ce:34:82:
85:75:4b:72:5b:cc:e2:29:91:a4:e9:c8:3c:e4:c3:76:67:79:
72:23:4f:72:6d:5d:3c:98:9b:11:a8:7e:7b:cc:f5:d9:bb:71:
50:07:bb:6e:da:89:b7:21:73:a2:90:fc:1f:07:b8:16:3f:04:
d7:fb:01:98:7c:11:08:08:09:00:9b:4d:a0:c4:1f:b7:96:fa:
84:18:af:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVpgkRapfcnElaX/iB7lqGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1Y2NkZDg4M2Y2ZGQxMTRlY2Y2ZjcyNzE2YTg0NjM0ZjY3
YWM5NzcwHhcNMjUwNDIxMDAwMTA2WhcNMjUwNDIyMDAwMTA2WjAzMTEwLwYDVQQD
EyhlZThhMGUzMmY4OGMwYmJlNTFkOGRlY2U2YjhhODA2NTIxYWQ1Njg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsR/Vao4Hx8Tds5WmDcbHBs+zs6Bu
isnPmjEkIjRR/ZpKzDJqv71Z19unjQfv3o1el3+TUCmGUKYb/oNlop5kvQIGDZWs
bcRy1B+BtdbTLiVjrxJiY6b+6WXy58O9PNkhymzv5DSivVt0OxGcCgDmkek0AorQ
PyfBpHXC1vfqNb69Duvqgn+YxGYB7MNo9CClZqQ6OfQqyypb1PqsZGjwJ+4x/jy6
38zIH1nBl+aENlLcKi36KLfsj5yZvNToLbkVbB4bqb/uN9cLQqGFz35c8AVSm5IT
IYJ/eJDN1vw2Af2vpZ9R6BsoLBb4vK55C7Nd/jn+c/45l/ZNIzmiWr65PwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO6KDjL4jAu+UdjezmuKgGUhrVaJMB8GA1UdIwQY
MBaAFLXM3Yg/bdEU7Pb3JxaoRjT2esl3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGN6ZGlEOXQwUlRzOXZjbkZxaEdOUFo2eVhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9iYTc4NGQtNzQ2ZS00OWU3LWE0MDgt
NGFiYWY1M2E1MGFmLzEvdGN6ZGlEOXQwUlRzOXZjbkZxaEdOUFo2eVhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS9iYTc4NGQtNzQ2ZS00OWU3LWE0MDgtNGFiYWY1M2E1MGFm
LzEvdGN6ZGlEOXQwUlRzOXZjbkZxaEdOUFo2eVhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAskpDFVV/
LlAWZtPiyt5aZqHIzWWeyplKZsxYFeSK8EzUuMGTVXxfdShLYwJPiFWZi+z5HLYk
ExEdYB/w+Veay3dXeUsYffnoAbA0L/fOyVmvkZ+3KMdXplZmiwPIX7mWGFjCZUuG
FQ3BUzRTES/1l4OcYqASXX6SK9ZoCCkBuEkVYGAQTfjDRBkWaHq1K63f1kcKePxS
GCUvIGiLs2DGjNxFU/yED5Li+tlSREuyYJF4zjSChXVLclvM4imRpOnIPOTDdmd5
ciNPcm1dPJibEah+e8z12btxUAe7btqJtyFzopD8Hwe4Fj8E1/sBmHwRCAgJAJtN
oMQft5b6hBiv1Q==
-----END CERTIFICATE-----
Generated at Mon Apr 21 05:41:33 2025 by rpki-client