Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
File: tyDzzrDmtZejgUXFp0M2nH9JZuA.mft (raw, json)
Hash identifier: /81muIIGdXZET0j/coO1NTqzFlE+4l2bxkoN3YMPACc=
Subject key identifier: 76:64:5A:A7:1A:F2:34:EF:32:98:50:42:E5:C4:33:31:AF:CD:7F:1A
Authority key identifier: B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0
Certificate issuer: /CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0
Certificate serial: 0196B8C7BDBA546CFF957A82DBDBDE15E202
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
Manifest number: 0F6D
Signing time: Sat 10 May 2025 06:00:20 +0000
Manifest this update: Sat 10 May 2025 06:00:20 +0000
Manifest next update: Sun 11 May 2025 06:00:20 +0000
Files and hashes: 1: ggC5V29BMdNUn59EruOGoGZJaaQ.roa (hash: ttIpUsiJ4qeM8pCSgboK+Vkbkx0DrAYP7DxfAZL+EN4=)
2: tyDzzrDmtZejgUXFp0M2nH9JZuA.crl (hash: PtnXVGjuHkNxWfd9v2FLIZRFAwQOPnNIbHDb2wUJ2KE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:c7:bd:ba:54:6c:ff:95:7a:82:db:db:de:15:e2:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0
Validity
Not Before: May 10 06:00:20 2025 GMT
Not After : May 11 06:00:20 2025 GMT
Subject: CN=76645aa71af234ef32985042e5c43331afcd7f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:41:2d:cf:43:05:3d:b4:93:5a:13:d4:6d:6b:
ae:48:bb:46:a1:f9:99:4f:df:f8:e2:ef:ec:78:f7:
1c:e1:ef:47:01:32:ec:fc:23:a8:61:19:3c:53:c2:
ed:be:f8:fb:f1:2b:fb:30:c0:43:c7:c3:35:7a:b7:
e6:c1:ea:6a:85:c5:a4:b5:a4:1c:53:40:a4:01:21:
9f:3d:9c:a2:91:fe:b6:55:19:c8:ce:30:91:dc:67:
92:d0:43:9f:fb:25:b3:82:52:18:66:24:a1:f8:bd:
72:25:47:95:cb:0c:5a:c5:e2:37:68:63:9c:98:b1:
c5:08:e4:13:26:3d:d9:9a:c1:04:d0:de:85:3a:28:
ec:bd:3b:1e:82:5e:b0:be:8f:a5:66:ca:77:b7:f5:
55:83:5e:e8:e8:ff:46:f1:dc:72:dd:0c:c1:84:8a:
75:20:57:ca:2e:da:48:e2:24:ff:31:fa:11:4e:3f:
0f:39:f6:68:2c:b3:47:92:02:04:e3:ed:00:9c:1f:
b5:19:b9:3d:2e:a8:fc:da:20:e9:a8:3d:13:0a:1d:
9e:1c:2a:38:f0:ea:bd:47:a7:47:75:c0:09:5e:23:
19:f9:cd:6b:7c:ba:19:cf:f5:08:64:1b:e5:19:43:
76:66:39:b2:70:bd:ea:ad:c9:66:5b:7b:82:ca:b9:
e4:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:64:5A:A7:1A:F2:34:EF:32:98:50:42:E5:C4:33:31:AF:CD:7F:1A
X509v3 Authority Key Identifier:
keyid:B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:54:72:2a:31:02:5d:9b:3b:9e:8d:42:79:6c:ab:0d:4d:75:
6a:62:76:cf:c1:57:6a:45:b1:38:9f:a6:b7:73:4d:ab:0d:67:
1a:ed:60:c7:58:dd:d7:2e:25:aa:f5:22:c8:2a:e4:93:f5:69:
ef:6b:14:9b:98:ad:56:d0:a1:60:cf:56:db:22:59:9c:42:bd:
89:6a:3d:6e:e4:e6:a1:79:72:4b:fc:3e:3c:a6:cd:0a:22:50:
02:48:b1:9c:92:1f:d8:e4:4d:ff:c4:67:53:19:7a:37:2e:fd:
2a:a4:81:d8:7d:ec:16:f5:48:07:68:18:95:8e:2b:23:be:8f:
6a:19:ca:e1:54:13:ec:99:4a:7c:3d:81:f4:ce:c7:4b:ef:96:
99:c5:68:03:c9:c7:de:13:5b:f6:e4:4e:08:a3:ec:2d:d2:b3:
c3:04:18:6e:54:2d:90:76:dc:0a:f0:37:20:e3:f9:b1:e4:d5:
71:8c:bd:5d:14:05:f7:5d:54:f2:e7:6f:3a:e6:23:d9:1a:89:
a1:e2:07:77:1f:80:06:4b:ef:a9:56:90:33:b3:e4:7d:90:22:
f3:ff:b6:6c:9e:99:13:ec:a0:1a:1e:ca:d8:9b:83:a7:01:12:
81:7b:dc:7d:02:07:9e:7a:d0:3d:5d:53:39:a3:34:ce:32:ca:
eb:75:3d:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 09:25:24 2025 by rpki-client