Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
File: z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft (raw, json)
Hash identifier: xc0spYuQ+5Yt/hFt7OHRoUkzKwHy3ivPzPsMrnVvJso=
Subject key identifier: 4A:BC:1E:EE:FB:28:AD:FF:35:9C:12:8B:FD:98:8E:E4:86:C3:84:90
Authority key identifier: CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
Certificate issuer: /CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Certificate serial: 01969F763C115010ABD11B7408059FC6CF78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
Manifest number: 1525
Signing time: Mon 05 May 2025 08:00:47 +0000
Manifest this update: Mon 05 May 2025 08:00:47 +0000
Manifest next update: Tue 06 May 2025 08:00:47 +0000
Files and hashes: 1: hPBXvKQdaqlVU4nQ-2Te7vaa8Bo.roa (hash: c9xr2QPdOJHBS76dYaN+BTyMMmlA60SbcteFKaCmJMA=)
2: z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl (hash: lxKz2y4MiXSbJiwKadJBJ8DkNZwEpzwkxBassxMV/GE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 08:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:76:3c:11:50:10:ab:d1:1b:74:08:05:9f:c6:cf:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Validity
Not Before: May 5 08:00:47 2025 GMT
Not After : May 6 08:00:47 2025 GMT
Subject: CN=4abc1eeefb28adff359c128bfd988ee486c38490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ea:14:29:99:ea:0d:2c:c7:89:b0:1f:61:d1:
fe:18:5b:54:9e:58:99:80:93:5d:61:57:fc:87:03:
22:1a:6b:99:4e:5a:db:22:44:f6:a3:52:ca:36:b7:
67:3e:4d:cd:c3:48:38:f9:c9:19:b2:5f:d6:01:02:
4e:7f:37:25:14:8e:c6:88:9b:b5:be:c6:a5:13:bf:
a3:77:04:cb:9e:70:cf:c2:52:26:8f:4a:65:8e:5b:
57:d5:5b:f8:b3:0b:87:91:88:3f:1e:65:e9:c7:15:
7c:76:5c:5f:a3:da:ed:21:88:65:06:e1:08:bf:e2:
a9:60:30:90:4b:9c:43:c0:02:d9:22:f8:12:db:41:
32:f5:92:2c:7a:02:20:f4:4f:8e:e4:cf:01:c0:18:
30:c8:03:3a:de:58:3a:1a:ed:68:fe:9b:12:2d:d8:
e2:10:7e:b9:e3:f1:c3:90:ee:d9:37:7c:69:bc:1c:
c4:57:ff:4f:64:6a:d9:7a:1e:f2:c6:e2:b4:25:30:
1e:22:99:f1:02:1a:e9:1b:e5:b5:50:d7:7b:91:00:
13:b6:4e:e0:1b:e7:42:c5:50:f4:85:f9:dd:9f:ce:
bf:37:62:86:26:73:95:b5:6b:30:9d:c2:94:8b:f6:
55:64:84:3c:24:ae:1d:c3:28:f7:34:ae:4a:cb:9f:
59:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:BC:1E:EE:FB:28:AD:FF:35:9C:12:8B:FD:98:8E:E4:86:C3:84:90
X509v3 Authority Key Identifier:
keyid:CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:d5:14:ef:c7:d4:91:25:33:98:b1:46:4b:7d:49:1b:a6:1f:
6e:6d:83:2c:10:f2:67:a2:00:5a:c5:ef:a2:d2:05:8d:34:5e:
8c:87:61:3e:0c:70:8f:28:30:20:2c:99:42:06:11:6c:fc:da:
f7:2a:f8:71:59:dc:d1:8f:f3:ed:c6:9c:1a:5a:12:4c:5c:14:
a0:14:78:6d:e1:8f:75:44:ae:c1:dd:26:de:c6:08:26:03:e4:
e2:91:e6:81:43:cc:84:46:c8:8e:07:c0:bf:71:8a:6d:94:73:
05:49:00:95:a6:20:1c:e7:52:1a:5a:e9:67:8a:47:30:61:4c:
d9:95:da:90:f2:65:b7:9e:a5:92:96:58:97:41:93:ca:a6:a5:
00:c0:d9:28:b3:61:be:bb:c9:f3:84:d1:91:db:fa:dc:58:61:
61:ac:b0:e5:36:fd:5b:b5:96:b4:e8:84:65:1e:63:01:72:6f:
ac:ea:df:53:89:9b:f1:9a:1c:a4:32:71:9e:69:9a:ce:57:5c:
40:57:7e:12:3c:6b:c1:2c:e9:4f:d2:7c:de:fb:40:9a:09:19:
9d:58:4c:ed:d1:a8:4a:1e:91:2f:2d:39:3c:d5:b1:36:57:0e:
45:10:1f:45:59:bb:f9:ed:22:a0:f8:85:93:3f:00:6d:59:51:
9d:bb:94:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZafdjwRUBCr0Rt0CAWfxs94MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmNjYyMjRiY2ZiOGI4MmRlYWFiYWM4YzRjYTI1MDM3MWI5
NzQ2MTEwHhcNMjUwNTA1MDgwMDQ3WhcNMjUwNTA2MDgwMDQ3WjAzMTEwLwYDVQQD
Eyg0YWJjMWVlZWZiMjhhZGZmMzU5YzEyOGJmZDk4OGVlNDg2YzM4NDkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1uoUKZnqDSzHibAfYdH+GFtUnliZ
gJNdYVf8hwMiGmuZTlrbIkT2o1LKNrdnPk3Nw0g4+ckZsl/WAQJOfzclFI7GiJu1
vsalE7+jdwTLnnDPwlImj0pljltX1Vv4swuHkYg/HmXpxxV8dlxfo9rtIYhlBuEI
v+KpYDCQS5xDwALZIvgS20Ey9ZIsegIg9E+O5M8BwBgwyAM63lg6Gu1o/psSLdji
EH654/HDkO7ZN3xpvBzEV/9PZGrZeh7yxuK0JTAeIpnxAhrpG+W1UNd7kQATtk7g
G+dCxVD0hfndn86/N2KGJnOVtWswncKUi/ZVZIQ8JK4dwyj3NK5Ky59ZTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEq8Hu77KK3/NZwSi/2YjuSGw4SQMB8GA1UdIwQY
MBaAFM9mIkvPuLgt6qusjEyiUDcbl0YRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejJZaVM4LTR1QzNxcTZ5TVRLSlFOeHVYUmhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xOTZiNzEtNTg3ZS00MDk5LWJkYjIt
Yjk1NGM1MGZkYmIwLzEvejJZaVM4LTR1QzNxcTZ5TVRLSlFOeHVYUmhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC8xOTZiNzEtNTg3ZS00MDk5LWJkYjItYjk1NGM1MGZkYmIw
LzEvejJZaVM4LTR1QzNxcTZ5TVRLSlFOeHVYUmhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQtUU78fU
kSUzmLFGS31JG6Yfbm2DLBDyZ6IAWsXvotIFjTRejIdhPgxwjygwICyZQgYRbPza
9yr4cVnc0Y/z7cacGloSTFwUoBR4beGPdUSuwd0m3sYIJgPk4pHmgUPMhEbIjgfA
v3GKbZRzBUkAlaYgHOdSGlrpZ4pHMGFM2ZXakPJlt56lkpZYl0GTyqalAMDZKLNh
vrvJ84TRkdv63FhhYayw5Tb9W7WWtOiEZR5jAXJvrOrfU4mb8ZocpDJxnmmazldc
QFd+EjxrwSzpT9J83vtAmgkZnVhM7dGoSh6RLy05PNWxNlcORRAfRVm7+e0ioPiF
kz8AbVlRnbuU2w==
-----END CERTIFICATE-----
Generated at Mon May 5 17:40:23 2025 by rpki-client