Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
File: TKha1Dt7R-dSh4MHGEeU1woCdmw.mft (raw, json)
Hash identifier: K36l9Wx0tODHxLRH3wGl2bEzOUbyQJe+LP2NiefS0AA=
Subject key identifier: F1:F3:DD:E4:2F:D4:3F:71:F6:4C:58:4A:CE:FE:75:AD:83:60:4E:6D
Authority key identifier: 4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
Certificate issuer: /CN=4ca85ad43b7b47e752878307184794d70a02766c
Certificate serial: 0196D62DAC359BB7D1045172F8EF1966BC93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
Manifest number: C6
Signing time: Thu 15 May 2025 23:00:39 +0000
Manifest this update: Thu 15 May 2025 23:00:39 +0000
Manifest next update: Fri 16 May 2025 23:00:39 +0000
Files and hashes: 1: TKha1Dt7R-dSh4MHGEeU1woCdmw.crl (hash: b5/JVzevgfGsAHrWn52MPEYeenoW9wFU3PJugQtOmn8=)
2: cpRFayTuWEzodEO-QznXVMR-alE.roa (hash: wcJbOFjwwy8ZnD5yiXe5CzeprbHM7YA3HHhv8zEs++s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d6:2d:ac:35:9b:b7:d1:04:51:72:f8:ef:19:66:bc:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca85ad43b7b47e752878307184794d70a02766c
Validity
Not Before: May 15 23:00:39 2025 GMT
Not After : May 16 23:00:39 2025 GMT
Subject: CN=f1f3dde42fd43f71f64c584acefe75ad83604e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e7:a5:5f:c2:f4:96:35:18:d2:19:bc:8b:c8:
b5:7b:f8:5e:ce:01:0b:57:71:1b:da:18:3c:7d:68:
be:ae:82:69:1b:9a:e1:b2:4f:6b:e9:82:af:3a:b3:
74:3b:bf:d0:63:10:ea:7f:10:58:80:c7:ba:4c:2a:
98:85:c2:5b:28:0f:f6:fe:10:78:08:f8:a3:9c:db:
63:2d:5b:05:4b:7d:d9:33:2a:7b:4e:5b:66:41:a5:
fc:8b:7f:65:b1:20:1a:98:6e:fb:45:c4:ae:a7:9e:
af:f2:a2:3e:aa:d6:e0:b7:26:01:a8:27:c4:e3:5c:
df:4a:e7:b2:0a:ec:11:8a:ab:48:cb:6d:db:0b:59:
2c:01:f5:b4:ad:5c:8e:c7:37:2c:a3:96:39:1a:d7:
72:b9:3b:21:e3:eb:e3:cb:a7:86:03:61:b2:34:1a:
f9:80:5a:3e:64:e2:8c:46:9d:e4:97:67:78:b1:d9:
02:8e:08:70:6b:7f:6e:43:85:67:c6:5d:8a:96:54:
fb:bb:64:c3:bd:46:8f:83:9f:6e:30:d2:e1:32:aa:
eb:cc:43:9a:41:3c:cc:92:e1:93:9f:44:db:c8:12:
11:98:2b:23:e9:98:1e:fd:7d:3e:03:b0:5b:52:4e:
21:c3:f7:9b:3b:7e:03:5e:85:c5:4e:3a:c0:f8:65:
ec:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F3:DD:E4:2F:D4:3F:71:F6:4C:58:4A:CE:FE:75:AD:83:60:4E:6D
X509v3 Authority Key Identifier:
keyid:4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:c3:c0:30:7b:1b:fd:d4:25:3f:24:08:ba:01:61:82:cb:6d:
47:fd:23:55:cd:c5:46:9e:35:73:ee:ce:b3:dd:35:28:92:6f:
56:d3:99:02:cc:53:21:5e:3d:86:a0:5f:46:d5:63:68:25:cd:
a4:e5:40:83:b6:ce:20:da:13:1e:73:89:e4:72:e1:b2:01:b1:
13:e5:0a:15:b1:07:7c:73:99:12:7f:b5:5f:3b:06:17:8c:21:
69:66:98:a9:b6:2a:73:37:c1:8e:a9:0a:49:19:ed:8c:2c:a8:
18:28:ce:8f:40:c4:82:e9:b8:a2:6d:d0:ec:c7:1e:4a:37:38:
1f:3e:f8:92:87:87:c8:3e:36:c0:f3:c1:45:e2:8d:32:78:48:
db:70:1e:24:8c:ba:88:f0:c5:6e:a0:8d:ac:15:7e:79:d6:e8:
e0:d0:b1:da:57:93:df:36:a1:56:22:65:93:7d:1e:5c:71:f7:
5d:77:c2:40:c8:a2:14:5b:d8:0d:73:32:3c:6a:e2:77:91:b3:
b7:b6:56:e8:28:3a:26:3d:ea:98:ac:8a:72:5a:b6:16:36:dc:
b9:e4:e0:fc:b8:53:4c:d2:6b:b4:57:38:c6:72:a3:dd:32:5a:
bd:88:12:9f:7e:d9:48:ac:44:dd:93:9b:9c:03:84:6f:a2:23:
47:73:56:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbWLaw1m7fRBFFy+O8ZZryTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYTg1YWQ0M2I3YjQ3ZTc1Mjg3ODMwNzE4NDc5NGQ3MGEw
Mjc2NmMwHhcNMjUwNTE1MjMwMDM5WhcNMjUwNTE2MjMwMDM5WjAzMTEwLwYDVQQD
EyhmMWYzZGRlNDJmZDQzZjcxZjY0YzU4NGFjZWZlNzVhZDgzNjA0ZTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzeelX8L0ljUY0hm8i8i1e/hezgEL
V3Eb2hg8fWi+roJpG5rhsk9r6YKvOrN0O7/QYxDqfxBYgMe6TCqYhcJbKA/2/hB4
CPijnNtjLVsFS33ZMyp7TltmQaX8i39lsSAamG77RcSup56v8qI+qtbgtyYBqCfE
41zfSueyCuwRiqtIy23bC1ksAfW0rVyOxzcso5Y5GtdyuTsh4+vjy6eGA2GyNBr5
gFo+ZOKMRp3kl2d4sdkCjghwa39uQ4Vnxl2KllT7u2TDvUaPg59uMNLhMqrrzEOa
QTzMkuGTn0TbyBIRmCsj6Zge/X0+A7BbUk4hw/ebO34DXoXFTjrA+GXsnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPHz3eQv1D9x9kxYSs7+da2DYE5tMB8GA1UdIwQY
MBaAFEyoWtQ7e0fnUoeDBxhHlNcKAnZsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yYmVhOGYtOWZiYy00NzY1LTkzYmMt
MjIyMjUyOTI5ODczLzEvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC8yYmVhOGYtOWZiYy00NzY1LTkzYmMtMjIyMjUyOTI5ODcz
LzEvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa8PAMHsb
/dQlPyQIugFhgsttR/0jVc3FRp41c+7Os901KJJvVtOZAsxTIV49hqBfRtVjaCXN
pOVAg7bOINoTHnOJ5HLhsgGxE+UKFbEHfHOZEn+1XzsGF4whaWaYqbYqczfBjqkK
SRntjCyoGCjOj0DEgum4om3Q7MceSjc4Hz74koeHyD42wPPBReKNMnhI23AeJIy6
iPDFbqCNrBV+edbo4NCx2leT3zahViJlk30eXHH3XXfCQMiiFFvYDXMyPGrid5Gz
t7ZW6Cg6Jj3qmKyKclq2FjbcueTg/LhTTNJrtFc4xnKj3TJavYgSn37ZSKxE3ZOb
nAOEb6IjR3NWmg==
-----END CERTIFICATE-----
Generated at Fri May 16 05:06:31 2025 by rpki-client