Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
File: tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft (raw, json)
Hash identifier: OBUxIm3/USRI02JHToArGEWh2cOJHQFR7MN8uDeSpmM=
Subject key identifier: DF:55:3E:E7:3D:BC:12:1C:25:82:F2:C4:86:96:E7:0C:06:B1:FB:0D
Authority key identifier: B5:D8:7F:DC:27:2A:E0:58:61:87:86:E7:41:70:75:57:BF:4E:1A:33
Certificate issuer: /CN=b5d87fdc272ae058618786e741707557bf4e1a33
Certificate serial: 0196778CB24968E0EE4CDE5835F98D200B8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
Manifest number: 02AB
Signing time: Sun 27 Apr 2025 14:00:31 +0000
Manifest this update: Sun 27 Apr 2025 14:00:31 +0000
Manifest next update: Mon 28 Apr 2025 14:00:31 +0000
Files and hashes: 1: qQy9nbutIB840i93Gc6Vw1Yt6lA.roa (hash: 65g5a8+QhFyUXfSxWzLsMCFvk+W/xMxKhOR8kW2aeMw=)
2: tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl (hash: GZQrr+wdyT9bcrgyV2XO+L6XHRhvWD62oUMO+3Cnk9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8c:b2:49:68:e0:ee:4c:de:58:35:f9:8d:20:0b:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5d87fdc272ae058618786e741707557bf4e1a33
Validity
Not Before: Apr 27 14:00:31 2025 GMT
Not After : Apr 28 14:00:31 2025 GMT
Subject: CN=df553ee73dbc121c2582f2c48696e70c06b1fb0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5f:8b:97:83:80:7b:8b:af:eb:79:9f:2b:f7:
49:cf:9b:dd:76:ee:93:6d:6c:f7:c6:76:17:38:79:
56:71:17:0b:bc:13:5f:8d:2c:b7:9a:e4:e4:30:d3:
67:3e:46:ac:b4:a5:ed:b0:b6:0a:df:76:c9:4b:9b:
39:4c:71:7f:39:cc:73:70:cc:0b:7e:48:50:c5:bd:
9d:55:cf:c4:9e:73:08:68:cf:68:85:05:d5:8e:c5:
97:43:d6:a6:7c:55:f3:68:39:77:eb:9b:1a:bc:2c:
b0:86:68:80:bd:19:d4:4d:41:b7:4f:cf:56:5c:e0:
ce:fc:ba:ae:9e:7f:82:37:71:d9:28:f6:e5:d7:f1:
ed:6b:9f:42:35:fb:83:7a:1b:b2:8c:5f:15:08:c7:
1b:2e:e0:9f:7c:80:38:c1:2d:63:9b:2d:78:f6:56:
f9:20:a1:13:65:b4:c7:3e:d9:a4:c4:be:e1:8b:fd:
a0:74:c3:da:42:06:55:34:86:af:89:6e:db:9a:24:
15:07:d2:9e:5f:a0:e2:93:20:5a:d5:1f:a0:4d:17:
33:b4:49:d6:12:09:98:f4:d2:ce:e7:c3:ce:b4:a1:
ef:40:c1:6e:25:59:e3:9b:76:0c:bb:14:0d:f3:70:
1a:0d:8e:80:f3:64:5f:1e:b0:56:5c:d6:c9:8a:b6:
42:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:55:3E:E7:3D:BC:12:1C:25:82:F2:C4:86:96:E7:0C:06:B1:FB:0D
X509v3 Authority Key Identifier:
keyid:B5:D8:7F:DC:27:2A:E0:58:61:87:86:E7:41:70:75:57:BF:4E:1A:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:42:e4:ff:c8:3f:ad:c5:0d:ae:65:da:a4:15:0c:6d:f0:71:
3d:0f:85:59:ff:46:21:92:f0:91:75:93:0c:d0:99:6f:3f:dd:
68:fc:c7:41:72:d1:72:cc:be:d1:e8:b4:0f:18:46:8a:58:8e:
d3:37:6d:de:98:f5:da:09:79:ee:9b:8b:76:b6:ab:e9:48:4a:
c1:ff:b7:be:94:60:5d:0e:5b:92:13:a1:23:6a:e7:b5:57:56:
5f:10:31:08:60:b7:16:d7:fc:c7:e6:07:48:c1:dd:c3:98:25:
ff:33:28:a8:b7:71:1d:09:9a:64:48:7f:29:c4:06:41:fe:16:
5c:7f:bd:7f:a9:f1:ca:b1:85:ad:ef:81:f5:d0:f0:02:f2:42:
c4:63:49:26:8e:51:11:56:ad:6b:f9:3e:46:ef:9e:80:1a:04:
89:5b:cb:45:20:74:26:af:21:b7:f5:23:b1:9c:5b:e2:9d:b2:
4e:30:51:66:cd:0a:0f:52:86:1b:d8:c9:1d:80:a9:42:a8:fd:
d9:fa:35:25:03:40:c6:12:f6:82:79:e7:5b:a1:20:6c:57:ac:
22:15:51:6d:f0:be:30:11:0f:b0:9a:55:18:e3:c3:5c:bc:a5:
5b:30:9a:2a:f3:cd:30:cf:3a:10:26:d8:d9:e4:02:64:d3:4b:
0b:12:bc:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ3jLJJaODuTN5YNfmNIAuOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1ZDg3ZmRjMjcyYWUwNTg2MTg3ODZlNzQxNzA3NTU3YmY0
ZTFhMzMwHhcNMjUwNDI3MTQwMDMxWhcNMjUwNDI4MTQwMDMxWjAzMTEwLwYDVQQD
EyhkZjU1M2VlNzNkYmMxMjFjMjU4MmYyYzQ4Njk2ZTcwYzA2YjFmYjBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwV+Ll4OAe4uv63mfK/dJz5vddu6T
bWz3xnYXOHlWcRcLvBNfjSy3muTkMNNnPkastKXtsLYK33bJS5s5THF/OcxzcMwL
fkhQxb2dVc/EnnMIaM9ohQXVjsWXQ9amfFXzaDl365savCywhmiAvRnUTUG3T89W
XODO/Lqunn+CN3HZKPbl1/Hta59CNfuDehuyjF8VCMcbLuCffIA4wS1jmy149lb5
IKETZbTHPtmkxL7hi/2gdMPaQgZVNIaviW7bmiQVB9KeX6DikyBa1R+gTRcztEnW
EgmY9NLO58POtKHvQMFuJVnjm3YMuxQN83AaDY6A82RfHrBWXNbJirZC4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN9VPuc9vBIcJYLyxIaW5wwGsfsNMB8GA1UdIwQY
MBaAFLXYf9wnKuBYYYeG50FwdVe/ThozMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGRoXzNDY3E0RmhoaDRiblFYQjFWNzlPR2pNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC82NzBiMTAtMTBlYi00NzZmLTg0ZWYt
MTU2ZWRhMmI1NWI2LzEvdGRoXzNDY3E0RmhoaDRiblFYQjFWNzlPR2pNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC82NzBiMTAtMTBlYi00NzZmLTg0ZWYtMTU2ZWRhMmI1NWI2
LzEvdGRoXzNDY3E0RmhoaDRiblFYQjFWNzlPR2pNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt0Lk/8g/
rcUNrmXapBUMbfBxPQ+FWf9GIZLwkXWTDNCZbz/daPzHQXLRcsy+0ei0DxhGiliO
0zdt3pj12gl57puLdrar6UhKwf+3vpRgXQ5bkhOhI2rntVdWXxAxCGC3Ftf8x+YH
SMHdw5gl/zMoqLdxHQmaZEh/KcQGQf4WXH+9f6nxyrGFre+B9dDwAvJCxGNJJo5R
EVata/k+Ru+egBoEiVvLRSB0Jq8ht/UjsZxb4p2yTjBRZs0KD1KGG9jJHYCpQqj9
2fo1JQNAxhL2gnnnW6EgbFesIhVRbfC+MBEPsJpVGOPDXLylWzCaKvPNMM86ECbY
2eQCZNNLCxK8QQ==
-----END CERTIFICATE-----
Generated at Sun Apr 27 18:16:43 2025 by rpki-client