Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
File: RETHw600tpd_oYoiN8owa5vuCOA.mft (raw, json)
Hash identifier: Z8z0CTqoAe25yxYREdwJ1FBj4tzVcEQJAdnP5aX9ZuE=
Subject key identifier: 13:1B:3A:15:F9:85:C2:1E:13:05:EF:28:F2:E0:91:DB:9D:40:6C:18
Authority key identifier: 44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
Certificate issuer: /CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Certificate serial: 0197B6A0E4833388E329037133F38A7E35D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
Manifest number: 10B4
Signing time: Sat 28 Jun 2025 13:01:26 +0000
Manifest this update: Sat 28 Jun 2025 13:01:26 +0000
Manifest next update: Sun 29 Jun 2025 13:01:26 +0000
Files and hashes: 1: 2V9yE_-2gPzUwYdccQgBOoOM18I.roa (hash: eOCHHWhfMlB35sI0btwTirM6dsTLjT95v8bNNnNalmA=)
2: NEq6MArjlQuQ-WIB1VyRrErjAd0.roa (hash: MidMhTk3ASBcuW3/c0/stqSyljlKyQu+afJNZt4dhek=)
3: RETHw600tpd_oYoiN8owa5vuCOA.crl (hash: 6YrBE5frKNhiSEleVpH8rhr6ezz3dzBvfcIP5wCNlXA=)
4: T9enhqzdG5yQEOgWkABkrQAk6M8.roa (hash: SxiuxM/I8FF8zreMQuHoAzLYfdJRNYC8zGUE4C2+MUg=)
5: TpBonKzdgVHgS_Gy-DCcGH-ISN4.roa (hash: fc1S9Y933e/VnBvBlMJ607HkBmXbxqMq3az/lWDVmME=)
6: YIWnRcAakVGioTGRMmr97QBMxt8.roa (hash: 0pAd524EgOV9gt8eDHTEF8KH00KSBimBO4oKROwsaA0=)
7: kaShJaLkR3B81NHQpcp6VAc_nlg.roa (hash: pqDRdBas3v1MNi9715+npvAM7Hsxyhh7JGLBbksQ+7E=)
8: tLpYmjiy2-hs1MM_Lyatf45ocKg.roa (hash: /IX/rjwA4xnIpYI7Xf4mBV5PcdOdUpUQwLhk+QGjMLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:e4:83:33:88:e3:29:03:71:33:f3:8a:7e:35:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Validity
Not Before: Jun 28 13:01:26 2025 GMT
Not After : Jun 29 13:01:26 2025 GMT
Subject: CN=131b3a15f985c21e1305ef28f2e091db9d406c18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9c:75:e3:1b:0d:9a:1e:7f:84:85:76:2e:6c:
29:dc:ff:34:03:6c:1b:52:39:32:d6:62:31:fc:3c:
31:12:e6:72:e4:7f:c3:de:17:e7:37:25:56:7c:11:
cb:da:0d:f0:0f:f3:7d:76:0a:5a:19:a9:b6:5a:c8:
83:e9:30:57:66:f8:f0:6b:66:5b:f7:22:5d:9d:4d:
fd:37:17:7e:ed:da:2f:03:f7:c6:d5:57:1c:82:91:
7e:52:5f:30:bf:11:b5:58:51:a5:ae:75:23:25:d1:
68:fb:31:c2:ff:2c:44:06:5b:ce:a1:1e:37:4c:60:
b3:8b:88:05:08:55:c1:7b:0d:20:79:c1:ce:11:88:
92:70:a2:8c:57:f1:f5:68:d9:13:9c:4a:2f:da:f8:
8c:36:3b:bf:b3:b5:61:9e:78:4c:75:38:67:26:c1:
8f:41:0b:90:7c:62:f9:cd:eb:99:1f:65:df:dd:4e:
2f:5e:0a:01:43:11:68:a6:47:09:02:12:55:0c:9a:
d3:b3:35:0d:dc:23:1e:b7:61:d0:ac:6b:d7:f1:57:
a6:8e:8a:6f:c4:e2:45:fa:64:d6:de:35:53:0f:3a:
68:60:a6:da:49:c3:96:b6:ca:0b:4f:1a:a9:8f:d9:
67:4a:8d:09:51:6b:26:1c:1b:ba:d6:68:3b:c5:e1:
2c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:1B:3A:15:F9:85:C2:1E:13:05:EF:28:F2:E0:91:DB:9D:40:6C:18
X509v3 Authority Key Identifier:
keyid:44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:3c:01:3b:52:16:6d:21:5a:08:14:dc:74:da:66:20:23:3c:
bc:41:d7:78:4a:bb:69:a2:0e:93:b8:13:8c:c8:ce:a3:25:ca:
0d:8a:89:79:49:ea:9e:fd:7b:80:96:c3:8a:40:76:99:8e:0c:
48:3f:2d:77:d8:81:f5:28:4a:7c:f3:86:cd:c7:7c:7f:40:fa:
51:2e:5a:06:6b:3b:b9:de:ba:8f:35:3e:e1:24:d1:52:a6:af:
de:c8:89:7e:b4:db:1c:46:36:ce:b5:7a:ab:3a:c1:7b:a8:e7:
55:00:b5:0c:d4:43:09:6d:a1:89:69:11:eb:e3:27:2e:fc:de:
e3:64:f8:3a:82:b9:4b:f3:2e:2f:50:c7:45:1b:a7:a5:14:79:
0d:c9:76:11:95:23:b7:0d:e3:d8:3c:d7:14:c0:d1:f5:b1:19:
a5:35:0c:02:8b:82:1e:9a:50:af:a2:d9:43:2c:04:37:8b:78:
dc:90:32:40:f8:31:fb:c3:e3:b1:86:98:ea:7b:12:28:00:41:
b8:23:96:6d:aa:b6:d5:41:e7:3a:7a:85:ff:52:b6:5b:72:69:
1a:c1:07:19:71:7a:c8:82:15:81:fe:59:dc:2b:90:3d:62:b0:
1e:f7:66:61:87:17:47:bb:43:e8:3d:c0:a3:4a:08:47:bc:64:
03:2d:b0:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oOSDM4jjKQNxM/OKfjXUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NDRjN2MzYWQzNGI2OTc3ZmExOGEyMjM3Y2EzMDZiOWJl
ZTA4ZTAwHhcNMjUwNjI4MTMwMTI2WhcNMjUwNjI5MTMwMTI2WjAzMTEwLwYDVQQD
EygxMzFiM2ExNWY5ODVjMjFlMTMwNWVmMjhmMmUwOTFkYjlkNDA2YzE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJx14xsNmh5/hIV2Lmwp3P80A2wb
Ujky1mIx/DwxEuZy5H/D3hfnNyVWfBHL2g3wD/N9dgpaGam2WsiD6TBXZvjwa2Zb
9yJdnU39Nxd+7dovA/fG1VccgpF+Ul8wvxG1WFGlrnUjJdFo+zHC/yxEBlvOoR43
TGCzi4gFCFXBew0gecHOEYiScKKMV/H1aNkTnEov2viMNju/s7VhnnhMdThnJsGP
QQuQfGL5zeuZH2Xf3U4vXgoBQxFopkcJAhJVDJrTszUN3CMet2HQrGvX8Vemjopv
xOJF+mTW3jVTDzpoYKbaScOWtsoLTxqpj9lnSo0JUWsmHBu61mg7xeEsTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBMbOhX5hcIeEwXvKPLgkdudQGwYMB8GA1UdIwQY
MBaAFEREx8OtNLaXf6GKIjfKMGub7gjgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkVUSHc2MDB0cGRfb1lvaU44b3dhNXZ1Q09BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9jOWM5ZmMtNTg2NC00MTRlLWFlMmEt
ODYzYzliM2QzMmIwLzEvUkVUSHc2MDB0cGRfb1lvaU44b3dhNXZ1Q09BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9jOWM5ZmMtNTg2NC00MTRlLWFlMmEtODYzYzliM2QzMmIw
LzEvUkVUSHc2MDB0cGRfb1lvaU44b3dhNXZ1Q09BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcDwBO1IW
bSFaCBTcdNpmICM8vEHXeEq7aaIOk7gTjMjOoyXKDYqJeUnqnv17gJbDikB2mY4M
SD8td9iB9ShKfPOGzcd8f0D6US5aBms7ud66jzU+4STRUqav3siJfrTbHEY2zrV6
qzrBe6jnVQC1DNRDCW2hiWkR6+MnLvze42T4OoK5S/MuL1DHRRunpRR5Dcl2EZUj
tw3j2DzXFMDR9bEZpTUMAouCHppQr6LZQywEN4t43JAyQPgx+8PjsYaY6nsSKABB
uCOWbaq21UHnOnqF/1K2W3JpGsEHGXF6yIIVgf5Z3CuQPWKwHvdmYYcXR7tD6D3A
o0oIR7xkAy2wQA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:01:50 2025 by rpki-client