Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
File: tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft (raw, json)
Hash identifier: H7lhZfVnDxFpacT/rGSes654f/MyfGlM7r9+gOW2wRk=
Subject key identifier: CB:65:70:58:4F:AA:4C:8B:A1:02:1F:9B:8A:6A:66:94:F8:AB:72:C8
Authority key identifier: B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
Certificate issuer: /CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Certificate serial: 0196BA11404EC5CEBC08E926874FA6DCD7DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
Manifest number: 0B63
Signing time: Sat 10 May 2025 12:00:14 +0000
Manifest this update: Sat 10 May 2025 12:00:14 +0000
Manifest next update: Sun 11 May 2025 12:00:14 +0000
Files and hashes: 1: 6mSAzptlMtavroiRBEbzErufO08.roa (hash: lJ5Bp/WretmXqwZLM24/DP1Oy5iyysz4o7F+olg5yZQ=)
2: tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl (hash: B9CHTDf5MQi+xsHC+1UTLBzS2vljOfbvc0RNBYHfBIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 12:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:11:40:4e:c5:ce:bc:08:e9:26:87:4f:a6:dc:d7:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Validity
Not Before: May 10 12:00:14 2025 GMT
Not After : May 11 12:00:14 2025 GMT
Subject: CN=cb6570584faa4c8ba1021f9b8a6a6694f8ab72c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2f:dc:18:29:dd:0b:2a:6b:75:51:2f:f2:40:
07:e5:78:04:5e:f7:42:89:57:cc:d1:a5:e4:8d:49:
1a:77:1a:7d:79:ee:3a:97:57:9f:70:54:9a:ef:e2:
39:ea:50:a3:c0:04:d7:1f:4e:41:cd:e3:56:9c:05:
6b:2a:ac:9f:0c:2a:4e:ca:c6:a7:91:5d:bb:7b:4d:
db:d8:f2:80:55:02:7f:e9:55:2b:6d:6a:12:8b:83:
3f:f3:fe:71:8a:4c:94:5b:94:1b:62:32:21:d9:25:
85:4d:95:91:53:29:94:5f:eb:a6:8c:99:bc:08:f7:
2e:5a:4f:c3:5f:e1:1e:42:9d:36:9a:f6:5d:6f:c4:
da:9f:34:1c:3c:b9:48:a0:e1:e1:53:86:3d:32:59:
61:73:76:14:1e:5d:72:73:0d:b0:7b:c0:34:65:d9:
0b:b5:84:30:fa:23:80:35:27:31:b6:ee:43:17:f8:
75:28:b0:1e:d8:58:c3:01:1d:ce:4e:1e:8f:6e:fb:
9a:19:5d:87:24:be:aa:98:dd:d0:20:a5:af:2a:c3:
9a:fa:f8:26:2f:6a:c4:6a:9e:17:f4:bc:bc:4d:35:
76:57:7b:4a:3f:5e:2a:17:83:81:4a:59:3a:50:20:
55:69:b1:8e:76:2d:e1:97:7d:c2:b5:84:9d:94:10:
d1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:65:70:58:4F:AA:4C:8B:A1:02:1F:9B:8A:6A:66:94:F8:AB:72:C8
X509v3 Authority Key Identifier:
keyid:B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:60:3b:24:69:3a:b8:3b:e0:ec:d1:69:3d:31:72:e3:b7:2a:
16:8a:7e:3c:aa:3e:6f:68:0f:19:12:53:61:0e:2f:6a:09:bd:
58:f8:0b:a4:b5:b1:a2:b2:7b:23:a3:b1:61:9f:bf:17:ff:c7:
20:36:5f:b6:da:66:bc:f4:a6:c8:26:0d:56:aa:43:18:f9:8e:
68:51:76:05:d4:68:4e:06:a6:a7:59:6f:97:8f:80:5b:92:bc:
55:d0:1e:f7:fc:1c:4f:3f:9c:02:22:f5:cf:93:b9:37:9e:66:
a4:6d:89:1d:7f:2d:15:56:4e:dd:99:96:5d:d8:bb:7c:de:88:
1f:0e:e0:39:9c:0b:5c:0f:0c:9f:01:cf:44:94:5a:4b:b1:0b:
c0:53:ff:f4:11:af:75:27:be:bf:27:c5:fd:97:88:46:9c:38:
50:b0:af:bc:17:af:59:39:03:b8:65:77:57:23:16:62:bc:81:
c7:11:1d:5c:c2:48:fb:7c:4a:97:14:f6:fc:7f:e4:af:b2:a0:
e8:4e:f3:81:6e:f8:f7:13:c5:fb:f4:26:06:40:c0:b2:f5:4f:
e2:dd:cb:2c:84:c7:a1:93:52:eb:bd:6c:9e:08:4f:4f:5f:77:
b1:e0:ed:85:46:56:ef:39:82:6b:b5:36:6b:09:88:b7:e6:2c:
a8:f6:5f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 18:58:05 2025 by rpki-client