Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
File: tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft (raw, json)
Hash identifier: o66lfkbZzlBUWu3LawmBajZNSj1gMiOWxqAiCXYal+Q=
Subject key identifier: 89:1B:40:4B:E6:63:D6:D8:BE:5C:40:D3:B4:54:FA:B7:22:F9:BA:33
Authority key identifier: B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
Certificate issuer: /CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Certificate serial: 0197B70E89F0DB85EC79C165EB4241E59526
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
Manifest number: 0BE6
Signing time: Sat 28 Jun 2025 15:01:12 +0000
Manifest this update: Sat 28 Jun 2025 15:01:12 +0000
Manifest next update: Sun 29 Jun 2025 15:01:12 +0000
Files and hashes: 1: 6mSAzptlMtavroiRBEbzErufO08.roa (hash: lJ5Bp/WretmXqwZLM24/DP1Oy5iyysz4o7F+olg5yZQ=)
2: tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl (hash: HVqL21KDW24DyGIFYXvgdN3fXrgCIhNY/Pq58Ktiuuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:89:f0:db:85:ec:79:c1:65:eb:42:41:e5:95:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Validity
Not Before: Jun 28 15:01:12 2025 GMT
Not After : Jun 29 15:01:12 2025 GMT
Subject: CN=891b404be663d6d8be5c40d3b454fab722f9ba33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:fb:31:f2:ad:58:59:cc:3c:72:31:63:02:93:
b7:5a:96:cc:5c:ed:4b:d6:03:75:7a:3d:c3:5c:c1:
61:50:48:f1:0e:d1:86:4a:3b:e6:f8:83:94:a3:59:
c3:58:5f:3d:37:7e:b4:2a:76:58:29:1f:a0:cc:26:
70:17:56:1c:44:d4:47:d4:57:fc:5a:66:48:74:a2:
4c:c6:60:d1:54:5d:9d:94:26:8f:33:ff:56:e2:a3:
d6:37:f7:65:68:4d:d9:c6:c6:09:7b:bb:c1:f9:53:
fa:30:c5:8a:e1:0b:9e:5f:1f:65:ce:33:3c:16:be:
79:4b:f2:c2:1e:17:e0:27:c6:28:d2:cb:52:51:08:
df:17:9e:5e:74:59:10:de:ae:09:08:19:67:21:1b:
e0:74:05:83:ae:9a:fb:da:45:7e:86:a4:5e:33:5c:
6e:93:f6:4a:af:d7:d4:f3:bc:42:63:c2:e1:44:94:
5d:1e:29:7d:b7:7c:16:ca:d2:79:dc:8c:0b:9d:75:
99:80:ad:19:bc:66:60:47:c3:7f:45:38:74:28:36:
ae:0c:9a:2a:54:48:7d:0f:4d:c0:70:29:d0:bc:2e:
7c:b6:cb:50:e3:6f:01:01:59:c7:6b:96:49:b8:d2:
22:da:0d:2d:ec:56:0d:b7:c2:3b:ce:57:75:e9:9d:
73:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:1B:40:4B:E6:63:D6:D8:BE:5C:40:D3:B4:54:FA:B7:22:F9:BA:33
X509v3 Authority Key Identifier:
keyid:B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:9c:3a:67:75:1f:b9:26:ea:36:c7:f4:a7:21:78:05:08:95:
14:30:09:a0:bb:2e:54:9e:3f:a0:1b:f4:6d:57:29:e4:1f:82:
35:14:95:fc:48:ba:1c:1c:df:39:d9:af:5f:63:ba:d4:85:df:
49:a3:d5:09:8b:0a:cf:1f:81:57:16:29:12:53:a9:2d:7a:d7:
2c:75:44:4e:40:82:aa:1f:79:3b:c0:f7:e3:44:7d:f3:d2:e0:
90:ee:c7:2d:8a:a0:c5:fd:56:c5:f9:8b:a5:97:f6:d4:f0:82:
a8:ca:5f:28:e8:46:d8:20:ff:30:1a:53:c1:8e:6c:74:c3:b3:
68:5d:45:39:02:1b:3f:1d:1e:b7:ad:db:fe:4e:01:57:07:fe:
73:7d:b9:60:03:4f:d1:f3:9b:d5:1b:55:ba:b5:79:43:59:f3:
de:82:b8:ac:d3:2b:d7:c1:f2:4c:63:5b:10:2d:19:9a:7d:e7:
51:b6:53:60:70:53:86:ff:ef:8d:c4:9c:d0:41:90:c3:c7:c9:
6b:45:05:0a:91:a1:d0:de:a9:ea:bf:0d:4d:cb:1f:29:78:a6:
83:e2:de:ff:16:71:b7:54:a3:d8:5f:75:01:9b:1a:0f:fa:57:
3a:aa:cc:30:7f:8b:e7:e2:21:2f:3f:cc:26:e3:17:bc:c4:e7:
ab:47:29:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3Donw24XsecFl60JB5ZUmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1Y2NkZDg4M2Y2ZGQxMTRlY2Y2ZjcyNzE2YTg0NjM0ZjY3
YWM5NzcwHhcNMjUwNjI4MTUwMTEyWhcNMjUwNjI5MTUwMTEyWjAzMTEwLwYDVQQD
Eyg4OTFiNDA0YmU2NjNkNmQ4YmU1YzQwZDNiNDU0ZmFiNzIyZjliYTMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Psx8q1YWcw8cjFjApO3WpbMXO1L
1gN1ej3DXMFhUEjxDtGGSjvm+IOUo1nDWF89N360KnZYKR+gzCZwF1YcRNRH1Ff8
WmZIdKJMxmDRVF2dlCaPM/9W4qPWN/dlaE3ZxsYJe7vB+VP6MMWK4QueXx9lzjM8
Fr55S/LCHhfgJ8Yo0stSUQjfF55edFkQ3q4JCBlnIRvgdAWDrpr72kV+hqReM1xu
k/ZKr9fU87xCY8LhRJRdHil9t3wWytJ53IwLnXWZgK0ZvGZgR8N/RTh0KDauDJoq
VEh9D03AcCnQvC58tstQ428BAVnHa5ZJuNIi2g0t7FYNt8I7zld16Z1z/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIkbQEvmY9bYvlxA07RU+rci+bozMB8GA1UdIwQY
MBaAFLXM3Yg/bdEU7Pb3JxaoRjT2esl3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGN6ZGlEOXQwUlRzOXZjbkZxaEdOUFo2eVhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9iYTc4NGQtNzQ2ZS00OWU3LWE0MDgt
NGFiYWY1M2E1MGFmLzEvdGN6ZGlEOXQwUlRzOXZjbkZxaEdOUFo2eVhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS9iYTc4NGQtNzQ2ZS00OWU3LWE0MDgtNGFiYWY1M2E1MGFm
LzEvdGN6ZGlEOXQwUlRzOXZjbkZxaEdOUFo2eVhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiZw6Z3Uf
uSbqNsf0pyF4BQiVFDAJoLsuVJ4/oBv0bVcp5B+CNRSV/Ei6HBzfOdmvX2O61IXf
SaPVCYsKzx+BVxYpElOpLXrXLHVETkCCqh95O8D340R989LgkO7HLYqgxf1WxfmL
pZf21PCCqMpfKOhG2CD/MBpTwY5sdMOzaF1FOQIbPx0et63b/k4BVwf+c325YANP
0fOb1RtVurV5Q1nz3oK4rNMr18HyTGNbEC0Zmn3nUbZTYHBThv/vjcSc0EGQw8fJ
a0UFCpGh0N6p6r8NTcsfKXimg+Le/xZxt1Sj2F91AZsaD/pXOqrMMH+L5+IhLz/M
JuMXvMTnq0cpgQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:07:09 2025 by rpki-client