Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
File: tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft (raw, json)
Hash identifier: AQQxZLkQAHQswNoSRw/Sbfw4SLWKazFfzxvOCQZdOWs=
Subject key identifier: 74:41:58:DD:B9:CE:F2:15:D3:EC:97:5A:DD:7A:90:5D:8E:48:53:94
Authority key identifier: B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
Certificate issuer: /CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Certificate serial: 01974EC53147AE3EF1AC2BEB673685CE86EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
Manifest number: 0BB0
Signing time: Sun 08 Jun 2025 09:00:35 +0000
Manifest this update: Sun 08 Jun 2025 09:00:35 +0000
Manifest next update: Mon 09 Jun 2025 09:00:35 +0000
Files and hashes: 1: 6mSAzptlMtavroiRBEbzErufO08.roa (hash: lJ5Bp/WretmXqwZLM24/DP1Oy5iyysz4o7F+olg5yZQ=)
2: tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl (hash: GIZbSrspNuHBu57NE7rsGbY/kUuJH0pQRdiiojdxopM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:31:47:ae:3e:f1:ac:2b:eb:67:36:85:ce:86:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Validity
Not Before: Jun 8 09:00:35 2025 GMT
Not After : Jun 9 09:00:35 2025 GMT
Subject: CN=744158ddb9cef215d3ec975add7a905d8e485394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:66:78:00:17:9c:1f:36:ba:4d:db:12:de:00:
5f:a1:ab:1f:b7:72:ce:cd:e9:53:d1:12:19:29:fa:
0b:11:78:32:82:f1:bd:89:b6:49:dc:01:41:69:7f:
24:97:46:12:52:22:3c:e0:87:96:47:6e:6e:eb:00:
76:09:be:a6:c1:3a:1b:00:07:5a:10:cd:38:21:0b:
4c:b3:80:85:4e:14:66:5f:88:34:8c:cb:a5:78:e4:
6f:4a:f1:cf:bf:51:8d:ac:3d:8c:54:a5:d2:63:f3:
30:67:b0:89:ba:8d:32:e0:2a:28:1f:0f:45:ef:26:
2a:ef:be:fa:84:7c:9f:8b:b4:a9:6e:f4:b1:78:61:
7b:9e:e1:c0:cb:df:59:15:05:b3:f9:72:1f:12:f2:
51:1e:ac:fd:82:7e:f5:40:ef:16:8d:82:c0:9a:cf:
d5:25:39:32:ba:b4:b9:8b:30:13:4e:96:d7:aa:ad:
9f:b7:67:44:aa:aa:98:20:f9:b2:fe:a8:fc:9a:ec:
52:87:72:35:b2:d0:8b:2c:21:c3:3d:fa:54:bc:0f:
b8:d8:d4:31:13:54:85:5a:f5:fa:ce:c5:dc:7b:41:
7e:0a:46:46:8d:ca:f1:fb:25:01:ce:20:00:34:00:
ff:52:fe:76:ae:7c:db:b0:4e:04:2e:14:a3:f8:61:
89:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:41:58:DD:B9:CE:F2:15:D3:EC:97:5A:DD:7A:90:5D:8E:48:53:94
X509v3 Authority Key Identifier:
keyid:B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:60:d4:8f:f8:b4:e2:6b:29:8f:09:5b:95:b3:61:b0:a0:c2:
e1:d1:e0:95:58:1a:7c:de:48:78:9c:37:8c:10:b0:94:63:0b:
ac:31:ea:96:11:e2:d0:02:da:84:51:c8:71:45:63:e4:5c:7f:
ae:62:1a:44:74:8a:3f:a0:70:cf:85:32:0c:24:1e:9e:fc:24:
e0:5d:0e:6c:69:d3:89:dc:6d:4e:3d:01:1d:97:d0:b1:99:59:
14:34:e6:44:d6:b4:23:eb:a3:46:0f:c8:13:b5:46:13:bc:33:
4c:a6:63:dc:a1:0c:94:eb:be:14:3f:d7:3a:33:d7:aa:ff:28:
39:2d:72:24:a7:2e:a3:7b:87:71:2e:f0:26:66:a8:73:93:a6:
ab:2e:9c:0d:5d:29:77:7c:4c:b9:e0:10:90:a3:ee:42:f8:ea:
33:e7:ab:e0:ce:3d:0a:e3:df:cc:60:38:56:a3:f9:4f:9b:9f:
94:8b:14:15:1c:9a:84:1b:f4:5a:bc:1f:0b:08:b3:3f:a4:27:
1e:99:12:22:df:b8:e4:c8:48:c9:f2:79:90:5b:39:30:7c:2b:
9c:8c:01:18:3b:fd:ad:59:2f:2c:fb:4c:31:59:be:fd:9a:db:
63:54:f5:35:e7:4e:10:21:ec:b8:77:b6:0f:e5:d4:1b:c9:25:
58:af:1d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:05:18 2025 by rpki-client