Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
File: _tdzOdk4vvCHWZKTwgGzufgiNiM.mft (raw, json)
Hash identifier: aXFUQkq3dyM8ADd//V9PHkGIBfXG7WvRdvZ6GiuMsMA=
Subject key identifier: AE:26:B4:5D:30:5B:BD:7F:5A:5F:EA:78:37:B7:80:2A:EA:67:10:42
Authority key identifier: FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
Certificate issuer: /CN=fed77339d938bef087599293c201b3b9f8223623
Certificate serial: 019690712BA4497EB65D801F5AEA712A1E1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
Manifest number: 14AE
Signing time: Fri 02 May 2025 10:00:57 +0000
Manifest this update: Fri 02 May 2025 10:00:57 +0000
Manifest next update: Sat 03 May 2025 10:00:57 +0000
Files and hashes: 1: JiqQ-b59vNl0MF5eVXzf0TfeO3c.roa (hash: OKAd29RpT9wnjVFO/8cLOZm/b/ev+jNX/rx5kLKiews=)
2: _tdzOdk4vvCHWZKTwgGzufgiNiM.crl (hash: 351lxb1EkGjadkJW2InEUSUkYSVM4QxyP6ORnL9NVQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:90:71:2b:a4:49:7e:b6:5d:80:1f:5a:ea:71:2a:1e:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fed77339d938bef087599293c201b3b9f8223623
Validity
Not Before: May 2 10:00:57 2025 GMT
Not After : May 3 10:00:57 2025 GMT
Subject: CN=ae26b45d305bbd7f5a5fea7837b7802aea671042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:eb:5d:80:0c:9f:1f:be:a0:45:ca:33:f5:96:
8b:80:42:cf:40:dd:02:54:fe:f5:05:cb:73:7f:4b:
c8:2c:b5:80:e5:9f:df:c7:f5:65:40:78:cd:f3:77:
53:a5:82:89:c0:4f:60:f1:72:73:ab:4f:20:3b:bd:
cf:08:2b:6f:4c:7f:ea:cf:b6:c1:d7:ad:04:ef:92:
49:78:a5:e8:89:d4:60:11:2b:d4:53:80:a1:e1:06:
b7:48:51:84:d7:39:ce:b2:0a:b0:40:fb:54:4f:a2:
03:59:66:84:95:de:6f:d0:21:53:f0:b1:50:cf:f0:
33:0b:18:31:c0:3f:af:7e:11:fa:f6:48:a2:4c:c8:
2b:da:41:e8:fb:73:14:31:34:84:36:93:8f:70:98:
6c:1f:6d:00:c6:f5:8d:e9:61:ce:ef:c4:ef:ac:eb:
10:b9:26:7d:87:d3:f4:13:01:b7:02:34:28:a6:f8:
23:cb:a8:8d:62:55:7c:b2:80:4e:31:88:00:d5:e6:
25:18:50:e5:04:a5:c9:c5:4b:bd:e8:5c:c1:ec:bf:
21:0a:e7:6a:92:a0:5b:1f:a8:1f:76:1f:7b:2a:8a:
22:78:da:e6:85:1b:f0:95:ee:44:d5:dd:44:40:55:
db:cb:3e:2a:15:34:f4:e1:a5:7e:2b:ba:df:77:63:
c3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:26:B4:5D:30:5B:BD:7F:5A:5F:EA:78:37:B7:80:2A:EA:67:10:42
X509v3 Authority Key Identifier:
keyid:FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:15:a0:9f:e3:ab:53:7a:6c:ef:ce:fe:2d:1a:11:35:4e:b7:
3c:61:c3:8e:b8:0b:b1:b5:53:0b:20:2f:d9:94:e1:97:cc:f2:
79:6a:04:7a:a1:42:b6:5d:a3:c0:11:ed:3c:5f:4c:4e:c1:c9:
af:f8:35:67:c4:73:03:67:bb:a3:25:9b:1a:7f:5a:14:e1:3a:
41:77:f1:b4:2e:04:6a:7c:92:e5:9b:55:36:5f:c8:86:0f:36:
eb:1b:b7:2a:75:70:ca:7a:d2:5f:6f:4d:84:b7:79:e0:4a:50:
3f:19:25:af:c2:95:7c:81:8a:0c:95:8a:93:73:09:63:71:b4:
02:6c:f3:1b:29:5d:cb:14:02:6b:08:12:a2:70:25:77:28:a9:
c6:ee:63:a0:bc:a9:59:0c:36:cd:9e:1f:e3:10:93:0b:5f:10:
01:f0:99:c6:af:58:2e:8d:fc:f9:22:9a:e2:bb:d1:c2:14:87:
98:79:88:05:9e:c4:82:93:54:b0:28:4d:65:79:58:4c:0e:20:
d3:75:2c:4a:b9:d4:7c:5a:e1:67:7a:06:db:93:a3:bd:38:0c:
de:45:75:48:4e:bd:da:d1:d4:2a:25:c5:34:c0:5a:eb:51:05:
57:0a:40:e4:ab:b3:62:aa:15:88:f1:39:3b:75:b8:31:8b:c3:
3a:0b:1c:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaQcSukSX62XYAfWupxKh4bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlZDc3MzM5ZDkzOGJlZjA4NzU5OTI5M2MyMDFiM2I5Zjgy
MjM2MjMwHhcNMjUwNTAyMTAwMDU3WhcNMjUwNTAzMTAwMDU3WjAzMTEwLwYDVQQD
EyhhZTI2YjQ1ZDMwNWJiZDdmNWE1ZmVhNzgzN2I3ODAyYWVhNjcxMDQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2OtdgAyfH76gRcoz9ZaLgELPQN0C
VP71Bctzf0vILLWA5Z/fx/VlQHjN83dTpYKJwE9g8XJzq08gO73PCCtvTH/qz7bB
160E75JJeKXoidRgESvUU4Ch4Qa3SFGE1znOsgqwQPtUT6IDWWaEld5v0CFT8LFQ
z/AzCxgxwD+vfhH69kiiTMgr2kHo+3MUMTSENpOPcJhsH20AxvWN6WHO78TvrOsQ
uSZ9h9P0EwG3AjQopvgjy6iNYlV8soBOMYgA1eYlGFDlBKXJxUu96FzB7L8hCudq
kqBbH6gfdh97KooieNrmhRvwle5E1d1EQFXbyz4qFTT04aV+K7rfd2PDhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK4mtF0wW71/Wl/qeDe3gCrqZxBCMB8GA1UdIwQY
MBaAFP7XcznZOL7wh1mSk8IBs7n4IjYjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3Rkek9kazR2dkNIV1pLVHdnR3p1ZmdpTmlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iZmI4MTctN2UyZC00NDU4LWJhYjEt
ZDE3NTAwMjBjYWY1LzEvX3Rkek9kazR2dkNIV1pLVHdnR3p1ZmdpTmlNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iZmI4MTctN2UyZC00NDU4LWJhYjEtZDE3NTAwMjBjYWY1
LzEvX3Rkek9kazR2dkNIV1pLVHdnR3p1ZmdpTmlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhxWgn+Or
U3ps787+LRoRNU63PGHDjrgLsbVTCyAv2ZThl8zyeWoEeqFCtl2jwBHtPF9MTsHJ
r/g1Z8RzA2e7oyWbGn9aFOE6QXfxtC4EanyS5ZtVNl/Ihg826xu3KnVwynrSX29N
hLd54EpQPxklr8KVfIGKDJWKk3MJY3G0AmzzGyldyxQCawgSonAldyipxu5joLyp
WQw2zZ4f4xCTC18QAfCZxq9YLo38+SKa4rvRwhSHmHmIBZ7EgpNUsChNZXlYTA4g
03UsSrnUfFrhZ3oG25OjvTgM3kV1SE692tHUKiXFNMBa61EFVwpA5KuzYqoViPE5
O3W4MYvDOgsctQ==
-----END CERTIFICATE-----
Generated at Fri May 2 15:36:22 2025 by rpki-client