Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.mft
File: MTZAKhRELms6FTnWQlASjc3R7Ns.mft (raw, json)
Hash identifier: VGEdM86MfBQkpO8n1tFaQH+/cM4IwfxzfVCuzht48dw=
Subject key identifier: B7:0F:DC:EC:AA:72:20:8D:A8:F5:43:8C:CC:D4:E7:E2:88:2B:F3:5B
Authority key identifier: 31:36:40:2A:14:44:2E:6B:3A:15:39:D6:42:50:12:8D:CD:D1:EC:DB
Certificate issuer: /CN=3136402a14442e6b3a1539d64250128dcdd1ecdb
Certificate serial: 0197B6A0D529D96ED1A17825BB38CC8E9832
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTZAKhRELms6FTnWQlASjc3R7Ns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.mft
Manifest number: 0146
Signing time: Sat 28 Jun 2025 13:01:22 +0000
Manifest this update: Sat 28 Jun 2025 13:01:22 +0000
Manifest next update: Sun 29 Jun 2025 13:01:22 +0000
Files and hashes: 1: MTZAKhRELms6FTnWQlASjc3R7Ns.crl (hash: o2aBpdj+gqjoDlGysvXmMgWFs/pah2MYHQx4A6mypAA=)
2: gk7tvvpNQKzq016DYIQrQnI1zIg.roa (hash: GqU+/Xvx9R7K2mDYSrVU8YpXujBinhqdZQ6UcdPTRQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.mft
rsync://rpki.ripe.net/repository/DEFAULT/MTZAKhRELms6FTnWQlASjc3R7Ns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:d5:29:d9:6e:d1:a1:78:25:bb:38:cc:8e:98:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3136402a14442e6b3a1539d64250128dcdd1ecdb
Validity
Not Before: Jun 28 13:01:22 2025 GMT
Not After : Jun 29 13:01:22 2025 GMT
Subject: CN=b70fdcecaa72208da8f5438cccd4e7e2882bf35b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:62:a7:b9:83:f4:32:dc:a3:4c:9d:e4:fa:f6:
f6:c2:5a:2e:fb:e8:12:0a:ba:82:c7:c9:92:69:59:
09:b7:b2:48:a7:37:76:9a:e0:76:9f:22:16:07:c0:
c7:eb:da:69:e4:9c:cd:7c:61:73:89:17:d1:41:ef:
d7:21:c0:c6:d5:c7:d6:4f:f4:bf:84:73:d2:ba:d5:
97:a0:67:b3:ea:71:01:f3:dc:1c:86:34:07:bd:d8:
24:03:0f:d5:dd:22:f5:88:25:ef:67:3b:93:f4:11:
b1:64:f7:a5:24:8d:27:ef:24:7e:33:56:4e:6c:77:
44:bf:c2:c8:d5:d7:ed:1f:b4:86:b8:eb:38:d9:70:
8f:ad:be:79:fd:fb:1e:75:0e:d1:2a:34:7f:32:8f:
1d:51:39:c1:83:1a:c7:fa:b2:f0:9e:48:78:7a:8b:
a1:c2:e0:da:b1:28:ed:ac:c8:4b:07:ae:7f:36:0b:
92:da:50:7d:34:a3:93:d9:f6:de:d4:56:7e:60:c0:
6c:cd:3f:a5:5a:8c:1f:81:ea:48:06:fa:ce:77:2e:
a9:e5:3b:67:1c:fd:eb:2e:33:18:7d:b8:90:e5:4e:
63:f8:e3:29:86:e0:26:9d:84:d7:7b:07:63:b9:68:
d8:95:07:72:e8:ce:eb:75:cd:bc:9f:16:f5:6b:25:
90:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0F:DC:EC:AA:72:20:8D:A8:F5:43:8C:CC:D4:E7:E2:88:2B:F3:5B
X509v3 Authority Key Identifier:
keyid:31:36:40:2A:14:44:2E:6B:3A:15:39:D6:42:50:12:8D:CD:D1:EC:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTZAKhRELms6FTnWQlASjc3R7Ns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:fb:9b:01:5b:b6:8b:0c:39:e0:c5:bc:85:7d:46:fb:8a:27:
c4:35:21:fa:32:fb:c5:51:83:95:a9:39:81:5d:a1:69:5b:a1:
35:ad:cc:59:29:0d:cb:c4:08:64:5b:0f:99:38:cb:1b:55:37:
6d:7d:eb:c7:cc:65:e9:4b:6d:71:76:5c:bf:c5:cb:b3:42:d9:
71:f1:f5:df:8a:49:c8:b8:5f:56:53:3e:ff:07:5b:4c:1b:52:
d6:8b:30:12:e2:dc:24:4e:47:5f:5d:57:a5:b6:f4:c3:40:81:
0e:07:3b:b4:4d:e3:72:57:9a:64:1f:c6:f2:22:fc:5b:7b:d0:
18:63:11:85:2f:48:fa:b9:8f:5b:78:7c:72:1f:f9:91:fa:41:
77:a9:f8:8c:9c:a2:15:52:45:ab:66:e5:1d:9c:af:24:58:19:
a3:8e:37:cf:9d:13:69:27:2e:8d:47:e6:c8:e7:0a:1f:7d:cb:
d6:61:a7:c4:2b:08:5e:38:62:40:11:bd:23:c1:1c:90:75:b2:
5f:a0:89:0e:99:c8:dd:c5:07:8f:27:06:69:65:17:66:4c:b0:
64:85:ca:00:f3:10:c9:97:2c:d3:1c:2c:ef:62:3f:c1:79:fe:
67:62:23:e2:21:6c:8c:23:6e:96:89:a5:e5:4d:dd:63:de:3c:
3b:37:da:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oNUp2W7RoXgluzjMjpgyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxMzY0MDJhMTQ0NDJlNmIzYTE1MzlkNjQyNTAxMjhkY2Rk
MWVjZGIwHhcNMjUwNjI4MTMwMTIyWhcNMjUwNjI5MTMwMTIyWjAzMTEwLwYDVQQD
EyhiNzBmZGNlY2FhNzIyMDhkYThmNTQzOGNjY2Q0ZTdlMjg4MmJmMzViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGKnuYP0MtyjTJ3k+vb2wlou++gS
CrqCx8mSaVkJt7JIpzd2muB2nyIWB8DH69pp5JzNfGFziRfRQe/XIcDG1cfWT/S/
hHPSutWXoGez6nEB89wchjQHvdgkAw/V3SL1iCXvZzuT9BGxZPelJI0n7yR+M1ZO
bHdEv8LI1dftH7SGuOs42XCPrb55/fsedQ7RKjR/Mo8dUTnBgxrH+rLwnkh4eouh
wuDasSjtrMhLB65/NguS2lB9NKOT2fbe1FZ+YMBszT+lWowfgepIBvrOdy6p5Ttn
HP3rLjMYfbiQ5U5j+OMphuAmnYTXewdjuWjYlQdy6M7rdc28nxb1ayWQzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLcP3OyqciCNqPVDjMzU5+KIK/NbMB8GA1UdIwQY
MBaAFDE2QCoURC5rOhU51kJQEo3N0ezbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVRaQUtoUkVMbXM2RlRuV1FsQVNqYzNSN05zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9iMDA5Y2YtNTljYS00M2JjLWJkNTEt
YzBhNDI0ZTY1OTczLzEvTVRaQUtoUkVMbXM2RlRuV1FsQVNqYzNSN05zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9iMDA5Y2YtNTljYS00M2JjLWJkNTEtYzBhNDI0ZTY1OTcz
LzEvTVRaQUtoUkVMbXM2RlRuV1FsQVNqYzNSN05zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvPubAVu2
iww54MW8hX1G+4onxDUh+jL7xVGDlak5gV2haVuhNa3MWSkNy8QIZFsPmTjLG1U3
bX3rx8xl6UttcXZcv8XLs0LZcfH134pJyLhfVlM+/wdbTBtS1oswEuLcJE5HX11X
pbb0w0CBDgc7tE3jcleaZB/G8iL8W3vQGGMRhS9I+rmPW3h8ch/5kfpBd6n4jJyi
FVJFq2blHZyvJFgZo443z50TaScujUfmyOcKH33L1mGnxCsIXjhiQBG9I8EckHWy
X6CJDpnI3cUHjycGaWUXZkywZIXKAPMQyZcs0xws72I/wXn+Z2Ij4iFsjCNuloml
5U3dY948OzfaDg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:02:17 2025 by rpki-client