Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
File: RETHw600tpd_oYoiN8owa5vuCOA.mft (raw, json)
Hash identifier: MtmIKL52/NfZdLkgkbI+9hEF3YX28vCNYsnoF8ftdyI=
Subject key identifier: 1D:A1:08:DC:AB:A9:D7:6B:F1:EE:90:A9:9B:99:90:15:1B:ED:1C:97
Authority key identifier: 44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
Certificate issuer: /CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Certificate serial: 0196B77E250A46CB43C3CE29B91BCE8E750E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
Manifest number: 1030
Signing time: Sat 10 May 2025 00:00:19 +0000
Manifest this update: Sat 10 May 2025 00:00:19 +0000
Manifest next update: Sun 11 May 2025 00:00:19 +0000
Files and hashes: 1: 2V9yE_-2gPzUwYdccQgBOoOM18I.roa (hash: eOCHHWhfMlB35sI0btwTirM6dsTLjT95v8bNNnNalmA=)
2: NEq6MArjlQuQ-WIB1VyRrErjAd0.roa (hash: MidMhTk3ASBcuW3/c0/stqSyljlKyQu+afJNZt4dhek=)
3: RETHw600tpd_oYoiN8owa5vuCOA.crl (hash: oD1RlqfyWzhIsx4eFe3Vw3hj8bjMcd0dJBodcsJF730=)
4: T9enhqzdG5yQEOgWkABkrQAk6M8.roa (hash: SxiuxM/I8FF8zreMQuHoAzLYfdJRNYC8zGUE4C2+MUg=)
5: TpBonKzdgVHgS_Gy-DCcGH-ISN4.roa (hash: fc1S9Y933e/VnBvBlMJ607HkBmXbxqMq3az/lWDVmME=)
6: YIWnRcAakVGioTGRMmr97QBMxt8.roa (hash: 0pAd524EgOV9gt8eDHTEF8KH00KSBimBO4oKROwsaA0=)
7: kaShJaLkR3B81NHQpcp6VAc_nlg.roa (hash: pqDRdBas3v1MNi9715+npvAM7Hsxyhh7JGLBbksQ+7E=)
8: tLpYmjiy2-hs1MM_Lyatf45ocKg.roa (hash: /IX/rjwA4xnIpYI7Xf4mBV5PcdOdUpUQwLhk+QGjMLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 17:53:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:7e:25:0a:46:cb:43:c3:ce:29:b9:1b:ce:8e:75:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Validity
Not Before: May 10 00:00:19 2025 GMT
Not After : May 11 00:00:19 2025 GMT
Subject: CN=1da108dcaba9d76bf1ee90a99b9990151bed1c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:da:54:a3:8d:22:c9:b6:16:2c:0f:67:30:40:
6d:6d:7a:eb:8a:2c:90:a3:7a:c8:0f:e9:9e:02:fd:
f5:3d:3a:ab:1a:ff:67:b6:e6:2a:a1:08:9d:cb:54:
12:98:14:68:34:fe:49:97:1b:24:a3:2c:40:43:38:
f2:0a:9f:18:ca:b5:17:cd:78:02:f2:f0:55:22:3a:
b0:b2:8f:5f:25:22:c4:87:a3:f6:a6:40:20:29:24:
ef:e0:be:44:51:4a:60:5c:30:93:ac:ee:bd:db:38:
d5:71:f7:a2:95:2f:83:97:d7:16:71:c7:da:5e:7f:
0f:aa:94:b3:91:6c:fa:bf:1d:29:b2:b0:4c:a9:43:
5e:69:97:81:32:90:1a:da:02:0c:26:f5:eb:29:e4:
96:d0:fb:07:1b:6a:ae:fc:9c:45:99:ac:1b:19:44:
07:d2:e0:17:dd:cf:86:65:c9:7a:e5:05:00:87:58:
ad:b9:35:44:57:97:ef:df:96:71:b4:c9:d7:50:57:
2b:0b:18:1b:d5:93:36:3c:f8:f0:89:2a:4c:36:d5:
f6:b4:b1:c6:9c:22:3e:28:0f:45:66:4f:60:65:59:
59:a3:f7:a1:2b:4d:a9:b5:c6:59:00:5d:c8:25:4b:
eb:15:f9:3b:49:30:32:2e:fe:72:e8:ca:51:3e:2a:
c8:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A1:08:DC:AB:A9:D7:6B:F1:EE:90:A9:9B:99:90:15:1B:ED:1C:97
X509v3 Authority Key Identifier:
keyid:44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:d1:b8:ab:aa:b1:68:de:b0:2f:c6:38:d1:28:67:24:d8:b8:
cd:e1:b3:fe:98:df:a0:33:3b:80:49:27:e0:22:2a:f4:84:11:
3c:bc:14:c3:f4:98:09:bc:92:77:21:37:79:d7:77:c2:3e:60:
64:96:50:6e:88:a2:80:e7:f0:d6:1f:8d:6a:0f:b8:b0:a1:92:
b8:60:95:68:61:25:36:06:68:28:53:05:b9:25:ea:00:ca:23:
cc:da:58:11:9a:e8:a3:0f:cf:36:ad:46:70:ad:a8:b0:64:a6:
7a:e4:c7:31:5b:1c:ef:85:05:e9:38:ed:d0:d8:ca:90:35:b3:
6a:92:ac:85:1b:74:43:6b:86:29:37:bb:6b:3a:90:96:1c:fa:
bf:ea:79:31:ea:46:f6:07:93:d0:cc:1d:56:f5:01:68:4d:4e:
8f:a5:eb:ee:0c:df:66:52:27:52:b5:1e:fb:0e:91:f4:4e:2c:
c4:8e:d4:e1:2f:0a:31:97:fb:ad:69:24:21:72:b4:03:b7:37:
a0:62:ca:b7:46:6a:35:85:32:3f:d2:26:06:b2:f0:0e:40:4e:
de:c6:81:d8:04:ca:4a:e2:a7:da:d6:f6:fe:69:fb:55:f5:01:
a6:5f:be:70:b8:da:8f:7b:f7:d0:b4:3d:a1:c3:24:5e:34:eb:
89:5f:60:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa3fiUKRstDw84puRvOjnUOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NDRjN2MzYWQzNGI2OTc3ZmExOGEyMjM3Y2EzMDZiOWJl
ZTA4ZTAwHhcNMjUwNTEwMDAwMDE5WhcNMjUwNTExMDAwMDE5WjAzMTEwLwYDVQQD
EygxZGExMDhkY2FiYTlkNzZiZjFlZTkwYTk5Yjk5OTAxNTFiZWQxYzk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9pUo40iybYWLA9nMEBtbXrriiyQ
o3rID+meAv31PTqrGv9ntuYqoQidy1QSmBRoNP5JlxskoyxAQzjyCp8YyrUXzXgC
8vBVIjqwso9fJSLEh6P2pkAgKSTv4L5EUUpgXDCTrO692zjVcfeilS+Dl9cWccfa
Xn8PqpSzkWz6vx0psrBMqUNeaZeBMpAa2gIMJvXrKeSW0PsHG2qu/JxFmawbGUQH
0uAX3c+GZcl65QUAh1ituTVEV5fv35ZxtMnXUFcrCxgb1ZM2PPjwiSpMNtX2tLHG
nCI+KA9FZk9gZVlZo/ehK02ptcZZAF3IJUvrFfk7STAyLv5y6MpRPirILwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB2hCNyrqddr8e6QqZuZkBUb7RyXMB8GA1UdIwQY
MBaAFEREx8OtNLaXf6GKIjfKMGub7gjgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkVUSHc2MDB0cGRfb1lvaU44b3dhNXZ1Q09BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9jOWM5ZmMtNTg2NC00MTRlLWFlMmEt
ODYzYzliM2QzMmIwLzEvUkVUSHc2MDB0cGRfb1lvaU44b3dhNXZ1Q09BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9jOWM5ZmMtNTg2NC00MTRlLWFlMmEtODYzYzliM2QzMmIw
LzEvUkVUSHc2MDB0cGRfb1lvaU44b3dhNXZ1Q09BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASNG4q6qx
aN6wL8Y40ShnJNi4zeGz/pjfoDM7gEkn4CIq9IQRPLwUw/SYCbySdyE3edd3wj5g
ZJZQboiigOfw1h+Nag+4sKGSuGCVaGElNgZoKFMFuSXqAMojzNpYEZroow/PNq1G
cK2osGSmeuTHMVsc74UF6Tjt0NjKkDWzapKshRt0Q2uGKTe7azqQlhz6v+p5MepG
9geT0MwdVvUBaE1Oj6Xr7gzfZlInUrUe+w6R9E4sxI7U4S8KMZf7rWkkIXK0A7c3
oGLKt0ZqNYUyP9ImBrLwDkBO3saB2ATKSuKn2tb2/mn7VfUBpl++cLjaj3v30LQ9
ocMkXjTriV9grA==
-----END CERTIFICATE-----
Generated at Sat May 10 03:08:52 2025 by rpki-client