Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
File: zE4rrFHZy3KbGnVijua0ycHp_8g.mft (raw, json)
Hash identifier: wNGKsgxAzSRRoR6RGOqE8diwzFS6TYKmuDPnSLs20gg=
Subject key identifier: B5:87:3D:9F:DD:D8:28:06:55:61:3F:92:5B:0D:D0:7B:D1:E4:98:97
Authority key identifier: CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8
Certificate issuer: /CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8
Certificate serial: 0197BEFF4D8B6EFD1AF1F73B61FC3B3CFD33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
Manifest number: 0164
Signing time: Mon 30 Jun 2025 04:01:31 +0000
Manifest this update: Mon 30 Jun 2025 04:01:31 +0000
Manifest next update: Tue 01 Jul 2025 04:01:31 +0000
Files and hashes: 1: O_wHUsAPrNDflBZDUMtdY6xsx-Y.roa (hash: ARirtfJZlvrV6Gh7ZW/gDyQsG60JpK7a/eIqEIlcaSo=)
2: zE4rrFHZy3KbGnVijua0ycHp_8g.crl (hash: 8thDMlD42yJNaMQBITXVix/Nn1T9YjvgY7tFGDwfWFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 04:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:be:ff:4d:8b:6e:fd:1a:f1:f7:3b:61:fc:3b:3c:fd:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8
Validity
Not Before: Jun 30 04:01:31 2025 GMT
Not After : Jul 1 04:01:31 2025 GMT
Subject: CN=b5873d9fddd8280655613f925b0dd07bd1e49897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:19:0a:27:22:38:58:c5:66:fc:b3:bc:31:7d:
be:f1:f4:2e:e5:1b:a6:a2:b0:11:da:7d:c0:56:fe:
8d:42:ae:81:0d:3b:00:ea:df:07:52:db:9c:84:5d:
4c:ed:89:f4:2e:00:10:a8:87:98:aa:42:f9:12:91:
24:43:85:a6:d7:b4:3a:74:dc:5d:c9:43:f7:13:2d:
6d:4b:aa:25:c8:3c:8f:d1:41:7d:4d:46:05:73:5c:
60:c8:50:c5:66:c7:02:34:ea:fe:09:b1:f6:58:48:
32:fd:5d:d1:8d:15:8c:91:22:c0:b7:05:e9:11:f2:
0b:44:33:b5:a1:19:14:d6:34:f9:f1:b9:02:ed:c4:
9c:04:35:a4:4b:85:b4:59:af:44:4f:e9:8f:4d:53:
55:e4:86:24:d7:74:5e:13:25:d6:88:79:82:8d:c7:
95:da:02:f9:75:7e:0e:71:6c:c4:5b:ac:cd:28:f6:
2a:40:80:56:92:94:ee:78:b8:2f:d7:82:c3:e8:d2:
6b:59:4a:7f:fb:93:1c:38:ec:06:7f:36:a4:3d:0b:
77:09:0a:81:f1:58:a0:e7:cc:a3:fc:bc:db:b7:c0:
7f:7a:81:3e:26:58:21:49:f7:38:e7:ef:db:4f:58:
26:73:45:da:f1:19:95:d7:da:78:ff:a1:6c:c9:ab:
5f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:87:3D:9F:DD:D8:28:06:55:61:3F:92:5B:0D:D0:7B:D1:E4:98:97
X509v3 Authority Key Identifier:
keyid:CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:49:c0:f5:60:83:a5:16:95:7b:ef:1c:d6:f1:c2:9d:36:92:
df:ce:b1:ff:65:3a:d7:9a:71:f1:ab:ba:9a:37:79:3f:36:6a:
5a:4c:30:73:05:f9:5b:9d:f5:a7:28:9d:25:e6:b4:04:eb:05:
c5:df:5b:c2:f3:de:9f:51:a1:77:14:f2:41:e2:c0:0f:ee:cb:
25:e5:74:98:ba:33:d3:8e:a8:d9:d3:bc:85:20:51:b1:3d:20:
4d:c8:c8:58:04:d1:cf:4b:a7:76:e6:fd:1d:e7:69:50:b1:d4:
1f:37:9a:f3:b1:fa:87:8e:93:2a:cf:c0:cc:20:56:73:cd:3e:
85:7b:a6:92:42:b0:30:24:7b:d6:33:fd:16:74:25:54:f8:be:
ff:e3:61:3f:ba:68:78:1b:21:d4:da:a7:d3:bc:3f:54:09:89:
5b:3c:35:86:90:37:47:d6:5f:36:f6:50:aa:0a:18:55:0b:79:
9b:7d:13:1c:4c:9b:f6:ad:f5:d7:cf:80:b7:78:32:11:6b:56:
6e:ee:9a:e8:6b:1f:9c:7e:5d:cb:f9:f8:db:d9:c4:13:0f:a7:
de:07:f7:2c:c5:5c:1e:35:25:6c:30:ed:33:b3:e0:75:2c:d2:
18:e6:f2:5a:db:1b:9d:e1:91:08:28:ea:b2:5b:49:d1:80:5b:
03:ba:c1:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe+/02Lbv0a8fc7Yfw7PP0zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjNGUyYmFjNTFkOWNiNzI5YjFhNzU2MjhlZTZiNGM5YzFl
OWZmYzgwHhcNMjUwNjMwMDQwMTMxWhcNMjUwNzAxMDQwMTMxWjAzMTEwLwYDVQQD
EyhiNTg3M2Q5ZmRkZDgyODA2NTU2MTNmOTI1YjBkZDA3YmQxZTQ5ODk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3RkKJyI4WMVm/LO8MX2+8fQu5Rum
orAR2n3AVv6NQq6BDTsA6t8HUtuchF1M7Yn0LgAQqIeYqkL5EpEkQ4Wm17Q6dNxd
yUP3Ey1tS6olyDyP0UF9TUYFc1xgyFDFZscCNOr+CbH2WEgy/V3RjRWMkSLAtwXp
EfILRDO1oRkU1jT58bkC7cScBDWkS4W0Wa9ET+mPTVNV5IYk13ReEyXWiHmCjceV
2gL5dX4OcWzEW6zNKPYqQIBWkpTueLgv14LD6NJrWUp/+5McOOwGfzakPQt3CQqB
8Vig58yj/Lzbt8B/eoE+JlghSfc45+/bT1gmc0Xa8RmV19p4/6Fsyatf8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLWHPZ/d2CgGVWE/klsN0HvR5JiXMB8GA1UdIwQY
MBaAFMxOK6xR2ctymxp1Yo7mtMnB6f/IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9hNTg4MDMtMjRlNy00NmNmLWIyNDQt
OWRhNzg4N2Y2YTJmLzEvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9hNTg4MDMtMjRlNy00NmNmLWIyNDQtOWRhNzg4N2Y2YTJm
LzEvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVEnA9WCD
pRaVe+8c1vHCnTaS386x/2U615px8au6mjd5PzZqWkwwcwX5W531pyidJea0BOsF
xd9bwvPen1GhdxTyQeLAD+7LJeV0mLoz046o2dO8hSBRsT0gTcjIWATRz0undub9
HedpULHUHzea87H6h46TKs/AzCBWc80+hXumkkKwMCR71jP9FnQlVPi+/+NhP7po
eBsh1Nqn07w/VAmJWzw1hpA3R9ZfNvZQqgoYVQt5m30THEyb9q3118+At3gyEWtW
bu6a6GsfnH5dy/n429nEEw+n3gf3LMVcHjUlbDDtM7PgdSzSGObyWtsbneGRCCjq
sltJ0YBbA7rBqQ==
-----END CERTIFICATE-----
Generated at Mon Jun 30 15:08:26 2025 by rpki-client