Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
File: tyDzzrDmtZejgUXFp0M2nH9JZuA.mft (raw, json)
Hash identifier: 7KQUjlQ7/h3HGoH8w3RFr3AvcLYx0NHyy2u70cCY/x0=
Subject key identifier: AB:F4:7C:C7:95:94:05:3A:BD:C1:01:FE:78:67:9C:0D:3A:2F:42:07
Authority key identifier: B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0
Certificate issuer: /CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0
Certificate serial: 0197B7B349FE4425FF2BD91A85C202F8A8F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
Manifest number: 0FF1
Signing time: Sat 28 Jun 2025 18:01:09 +0000
Manifest this update: Sat 28 Jun 2025 18:01:09 +0000
Manifest next update: Sun 29 Jun 2025 18:01:09 +0000
Files and hashes: 1: ggC5V29BMdNUn59EruOGoGZJaaQ.roa (hash: ttIpUsiJ4qeM8pCSgboK+Vkbkx0DrAYP7DxfAZL+EN4=)
2: tyDzzrDmtZejgUXFp0M2nH9JZuA.crl (hash: j10Iz+ph3nG7bcY93PWLtcqd9i4TZHii0iqOwMOb7Sg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:49:fe:44:25:ff:2b:d9:1a:85:c2:02:f8:a8:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0
Validity
Not Before: Jun 28 18:01:09 2025 GMT
Not After : Jun 29 18:01:09 2025 GMT
Subject: CN=abf47cc79594053abdc101fe78679c0d3a2f4207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d4:18:f7:d1:4a:78:f7:54:07:07:9a:c2:02:
14:33:2b:93:73:51:54:53:8f:c7:f2:a5:28:2d:7d:
bd:4c:f1:2c:37:9a:08:37:8e:c5:a4:e7:79:79:43:
dc:e6:48:ca:10:ed:60:c1:0a:54:4c:99:61:f3:b8:
63:71:e5:d5:f8:83:ef:21:c1:8d:47:f1:b6:59:ac:
01:48:b5:f5:e4:be:35:51:4a:22:84:b4:aa:d9:56:
50:0f:d3:9f:ee:f2:a5:71:f4:4f:d7:fd:4d:fc:a9:
86:33:92:bb:51:38:a9:8e:5e:30:20:0b:a8:84:a6:
67:32:67:36:8d:49:25:66:f3:4b:aa:97:74:9b:2d:
3d:e2:4c:5d:3f:a9:a0:9b:6f:76:ac:92:8f:80:d6:
70:0e:cf:3d:e2:c1:16:21:6b:93:8f:84:a6:4c:a1:
3d:cd:34:57:13:d5:9c:45:e7:b1:5d:e4:c6:86:f6:
ac:c0:66:39:a5:d8:03:eb:d2:bb:7e:72:ca:be:ab:
a7:41:13:d3:37:bf:34:ed:88:7d:31:e7:a4:cb:d0:
70:55:89:d8:b1:c2:61:fb:cd:33:99:80:d9:84:65:
e9:cd:cf:6a:2e:c4:b4:4f:3c:f2:51:ba:e9:80:31:
75:39:bd:91:39:be:22:c0:f2:30:6b:b4:c6:f5:aa:
a1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F4:7C:C7:95:94:05:3A:BD:C1:01:FE:78:67:9C:0D:3A:2F:42:07
X509v3 Authority Key Identifier:
keyid:B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:76:e7:f3:cb:29:30:90:9a:69:2c:bd:f3:4b:36:5d:60:e3:
d5:b2:cf:9b:56:ad:bc:f6:42:25:c2:d4:79:d5:8e:28:ed:21:
91:23:dc:56:9a:3f:1b:af:c8:a1:a3:00:2c:8f:38:3c:9a:cf:
d6:43:e8:9c:8a:79:03:a6:d4:2b:6a:88:ba:39:d1:cf:65:c6:
d5:77:fe:8c:cd:20:5f:bd:6c:e3:d5:be:f8:85:74:33:d9:34:
ae:c0:81:48:4e:24:a4:e9:e1:10:e9:d8:98:01:6e:3c:63:65:
20:2f:6e:4d:44:02:0c:cb:ef:ae:1b:13:4f:0b:3d:83:16:af:
4f:f5:5c:48:4d:4e:52:e6:d0:68:ac:af:64:80:31:d4:58:25:
0f:31:5f:e5:94:24:f0:cf:01:81:e9:7b:1a:e5:a5:01:e6:9f:
f8:db:e3:41:f5:e0:94:82:e4:09:ff:e8:0a:77:78:7a:9f:08:
c7:96:d2:b7:6d:2b:4f:bb:5e:71:25:47:a9:2f:28:b9:33:85:
d5:9d:d9:ed:39:d0:b5:ae:31:05:b8:1f:a4:26:3c:86:0a:4b:
39:f1:67:ea:12:dc:5a:fc:34:e0:10:5b:01:88:b2:c4:e9:d7:
04:cc:99:fa:6a:98:a4:94:79:fa:d8:e4:ec:60:a0:56:b1:6b:
7c:d3:96:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:55:45 2025 by rpki-client