Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
File: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft (raw, json)
Hash identifier: C9f2hDs4hx0dHfox+p1syIpOW6tlCQQbEb5EoD+Qvfg=
Subject key identifier: AE:53:52:D9:42:B2:31:37:14:A2:1B:6A:7E:51:F6:F6:87:D5:6C:78
Authority key identifier: CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
Certificate issuer: /CN=cddd902a1271270027e4577778ea35883b4515f6
Certificate serial: 0197CC4D29C68225A5F42DE2DFDAF942EBCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
Manifest number: 15C6
Signing time: Wed 02 Jul 2025 18:01:38 +0000
Manifest this update: Wed 02 Jul 2025 18:01:38 +0000
Manifest next update: Thu 03 Jul 2025 18:01:38 +0000
Files and hashes: 1: Ylu4oY650LeSLzKfRWZsKd7D6d4.roa (hash: at13Jjp52CyKiekCDznMGprsJGH6Ha6O/Aegpe9S1N0=)
2: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl (hash: U6/IBoctmNH5+6odWJJYtRbN+MndlEkrew52O8EoBPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 18:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:4d:29:c6:82:25:a5:f4:2d:e2:df:da:f9:42:eb:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddd902a1271270027e4577778ea35883b4515f6
Validity
Not Before: Jul 2 18:01:38 2025 GMT
Not After : Jul 3 18:01:38 2025 GMT
Subject: CN=ae5352d942b2313714a21b6a7e51f6f687d56c78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:16:3e:69:b9:b8:19:5b:8d:4f:d9:c0:64:55:
b7:b0:65:92:b1:4c:ad:e5:9d:64:17:f5:14:57:5f:
e6:92:ae:22:ed:16:1e:c4:2d:93:aa:c7:e6:b2:2e:
23:ce:c4:3e:d2:67:0e:76:2f:fb:e2:6d:57:91:f8:
f3:ea:a9:f7:56:c0:76:01:a3:0c:57:97:d5:95:a7:
d6:5e:b1:8f:32:bd:b0:f0:96:f1:64:0e:47:64:85:
7a:ff:f4:4a:9c:bd:da:c8:99:46:e4:15:21:8a:98:
f7:05:3d:b5:fb:66:64:80:fa:a5:a8:c5:39:ef:94:
2a:1f:0c:26:50:e9:08:37:58:38:3f:2a:bc:83:5e:
bd:b0:2d:bb:74:99:04:5c:30:01:2c:d8:0e:f3:3b:
da:ca:ef:75:df:a6:a6:5b:20:85:8d:12:ea:07:e2:
61:e2:2a:2d:20:4d:46:85:0c:f3:ea:2e:94:e0:d8:
6a:e1:44:e9:15:b9:63:fc:4a:d4:c5:58:db:68:a8:
f3:12:2b:ae:c7:13:8c:9a:a5:50:32:eb:6f:61:8f:
07:15:b9:e5:12:b5:1e:da:e1:e8:80:22:e4:b0:02:
aa:06:45:75:a3:34:05:02:a2:bd:f0:2a:c6:9e:76:
14:ad:d5:93:67:8d:39:6e:6a:98:dd:df:d1:da:e4:
6d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:53:52:D9:42:B2:31:37:14:A2:1B:6A:7E:51:F6:F6:87:D5:6C:78
X509v3 Authority Key Identifier:
keyid:CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:aa:8b:71:76:d4:fc:93:5b:a4:29:52:bc:b7:51:25:b4:2a:
b5:4d:26:8b:2e:5f:0c:24:e7:c7:b5:c1:53:88:15:d8:6f:8e:
97:3b:c7:ad:49:4c:f2:87:26:69:a3:32:f4:a0:ea:5b:54:bc:
09:5d:7a:7a:c0:3d:b0:58:e4:d6:12:22:bf:e8:65:92:63:cf:
bf:bd:90:75:9a:80:fd:34:be:95:bb:0b:c3:5e:7c:75:bd:8f:
d4:8c:66:83:51:59:d1:dc:97:e3:65:10:6c:32:fc:2c:bb:05:
97:c9:05:41:3b:a7:21:71:54:6e:82:d6:b9:04:6b:26:a1:b4:
f0:51:6d:ac:88:98:05:ef:d8:70:2d:e0:3b:d8:f6:ac:df:61:
8b:0b:3c:22:64:2e:58:ef:d0:32:de:2a:7f:4e:f4:d0:ef:37:
af:a7:98:62:95:3d:0d:c6:b8:19:32:83:f3:6a:4f:ca:c9:8f:
04:fa:67:1c:43:b8:86:81:66:ee:1d:e5:73:b4:b6:c1:7a:24:
16:a5:d2:d7:f3:5f:a0:27:b0:4a:74:37:f5:48:d6:f8:c6:c5:
a1:f7:05:72:49:17:88:cf:50:4d:63:6b:8b:82:37:3d:7c:66:
97:61:c0:2b:bd:c6:b1:0a:2b:59:49:ac:ef:64:bc:ac:51:b6:
71:05:5d:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfMTSnGgiWl9C3i39r5QuvNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkZGQ5MDJhMTI3MTI3MDAyN2U0NTc3Nzc4ZWEzNTg4M2I0
NTE1ZjYwHhcNMjUwNzAyMTgwMTM4WhcNMjUwNzAzMTgwMTM4WjAzMTEwLwYDVQQD
EyhhZTUzNTJkOTQyYjIzMTM3MTRhMjFiNmE3ZTUxZjZmNjg3ZDU2Yzc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4xY+abm4GVuNT9nAZFW3sGWSsUyt
5Z1kF/UUV1/mkq4i7RYexC2Tqsfmsi4jzsQ+0mcOdi/74m1Xkfjz6qn3VsB2AaMM
V5fVlafWXrGPMr2w8JbxZA5HZIV6//RKnL3ayJlG5BUhipj3BT21+2ZkgPqlqMU5
75QqHwwmUOkIN1g4Pyq8g169sC27dJkEXDABLNgO8zvayu9136amWyCFjRLqB+Jh
4iotIE1GhQzz6i6U4Nhq4UTpFblj/ErUxVjbaKjzEiuuxxOMmqVQMutvYY8HFbnl
ErUe2uHogCLksAKqBkV1ozQFAqK98CrGnnYUrdWTZ405bmqY3d/R2uRtRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK5TUtlCsjE3FKIban5R9vaH1Wx4MB8GA1UdIwQY
MBaAFM3dkCoScScAJ+RXd3jqNYg7RRX2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemQyUUtoSnhKd0FuNUZkM2VPbzFpRHRGRmZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83YTFlYjQtMjkwYS00Njg2LThiYmEt
ZGM3NTQyMTM4OTUyLzEvemQyUUtoSnhKd0FuNUZkM2VPbzFpRHRGRmZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS83YTFlYjQtMjkwYS00Njg2LThiYmEtZGM3NTQyMTM4OTUy
LzEvemQyUUtoSnhKd0FuNUZkM2VPbzFpRHRGRmZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPKqLcXbU
/JNbpClSvLdRJbQqtU0miy5fDCTnx7XBU4gV2G+OlzvHrUlM8ocmaaMy9KDqW1S8
CV16esA9sFjk1hIiv+hlkmPPv72QdZqA/TS+lbsLw158db2P1Ixmg1FZ0dyX42UQ
bDL8LLsFl8kFQTunIXFUboLWuQRrJqG08FFtrIiYBe/YcC3gO9j2rN9hiws8ImQu
WO/QMt4qf0700O83r6eYYpU9Dca4GTKD82pPysmPBPpnHEO4hoFm7h3lc7S2wXok
FqXS1/NfoCewSnQ39UjW+MbFofcFckkXiM9QTWNri4I3PXxml2HAK73GsQorWUms
72S8rFG2cQVdiA==
-----END CERTIFICATE-----
Generated at Wed Jul 2 23:38:07 2025 by rpki-client