Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json)
Hash identifier: P/KEO8k+EifOfPRAnSU8jPZK2wsjRnCO69z/AYNRNDw=
Subject key identifier: F4:23:D4:25:1F:E2:DA:20:FB:76:5A:99:89:23:FC:FC:6F:D8:96:17
Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189
Certificate serial: 0196C6F1828EF11602E60F623F403AA0E6DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
Manifest number: 14CA
Signing time: Tue 13 May 2025 00:00:38 +0000
Manifest this update: Tue 13 May 2025 00:00:38 +0000
Manifest next update: Wed 14 May 2025 00:00:38 +0000
Files and hashes: 1: PF8Dfwpieuc3szZWNlM6zxbOCaw.roa (hash: eEI5JJg+vshmiZesKoh8QcSvz/GrsPF5AtTzxYWQZk4=)
2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: j0mZQvR/Q6QeV9exVdMEsWQqWrsA3AzpE5zW4itVKvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:f1:82:8e:f1:16:02:e6:0f:62:3f:40:3a:a0:e6:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189
Validity
Not Before: May 13 00:00:38 2025 GMT
Not After : May 14 00:00:38 2025 GMT
Subject: CN=f423d4251fe2da20fb765a998923fcfc6fd89617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:49:b2:1c:96:18:d7:43:a5:e6:0a:e8:a6:73:
14:44:67:a1:4e:c1:aa:68:db:4d:99:63:da:61:88:
02:d8:cb:79:11:04:52:7f:93:1d:15:b2:05:1d:4e:
c4:0e:b9:e2:a4:3b:3b:51:ed:1f:d5:87:0c:55:b5:
87:b1:a7:18:0e:0a:65:d3:a5:95:4f:db:ca:31:d0:
25:c4:91:c5:4c:1a:45:3f:65:b5:e9:79:41:90:c5:
46:92:a5:c9:e2:9c:d6:ad:95:2c:69:f1:97:ae:0c:
09:eb:cd:8a:2a:a2:15:5c:6b:60:4e:12:da:07:95:
57:83:55:c6:f2:12:40:a0:12:38:78:3c:2d:77:c3:
f8:b7:a6:d5:d9:00:ba:ba:5d:c2:1c:90:53:90:6b:
17:ae:49:6d:af:30:56:e7:b9:e9:04:86:c8:55:5c:
5b:4f:c2:81:db:11:e6:dc:6c:71:b0:e3:ff:87:5f:
ab:ff:0a:29:64:ed:db:82:8e:a5:3d:6b:31:ae:a2:
79:d1:af:37:d1:80:4d:3b:b5:71:be:96:9c:c8:cf:
66:cb:2f:99:86:db:ba:24:a5:e3:a4:b1:b2:cf:39:
6a:17:98:a2:0d:d4:c8:bd:ea:6e:ed:1c:43:db:c6:
a4:2e:80:c1:b5:cf:1a:32:fd:26:da:17:a7:35:b1:
db:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:23:D4:25:1F:E2:DA:20:FB:76:5A:99:89:23:FC:FC:6F:D8:96:17
X509v3 Authority Key Identifier:
keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:62:2e:92:d3:19:37:01:8f:74:bd:3e:7d:ef:36:ef:81:58:
4d:c8:44:a9:98:85:07:13:96:13:66:4a:3e:68:ce:b2:cf:e6:
b7:4e:c0:83:01:f3:c2:82:b8:30:a7:d0:0f:38:24:32:ba:30:
9e:97:de:cd:13:d4:7e:70:c3:c6:60:e1:88:dc:f8:0e:c7:8a:
ba:43:f7:e0:be:70:9d:65:a0:8b:23:b7:87:c2:ff:29:4a:c1:
53:e8:82:1e:5a:eb:ce:cd:a0:3a:10:2c:08:7a:c8:a9:06:cd:
f8:8c:c6:32:4b:f8:7f:de:8f:b0:0d:bc:83:09:c8:94:bf:6d:
ec:42:ab:99:f6:4a:00:aa:e7:8e:dc:f2:8d:3c:41:28:9b:1a:
5d:77:67:53:73:6a:ed:48:72:81:2d:4f:f5:91:4f:32:92:ae:
0f:77:4b:2e:fd:31:3e:7e:b2:e7:fa:4e:ed:fc:bd:4d:ca:2a:
0d:a8:8a:48:83:9e:65:69:49:c5:b9:6e:85:a6:77:8d:68:fc:
78:0d:82:eb:08:43:5f:f8:91:fe:4a:c8:52:bb:b3:a4:51:25:
f7:54:72:db:2d:96:97:7e:c7:62:f3:bd:a8:60:55:81:15:8c:
bd:07:bc:6e:dd:05:d2:34:cf:3b:f3:59:3e:03:b9:de:b5:98:
df:56:ff:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbG8YKO8RYC5g9iP0A6oObfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5OTI4MWU4N2Q1ZTliODc1OGYyNDBlNzhlZWY3MTAyYzQw
MTIxODkwHhcNMjUwNTEzMDAwMDM4WhcNMjUwNTE0MDAwMDM4WjAzMTEwLwYDVQQD
EyhmNDIzZDQyNTFmZTJkYTIwZmI3NjVhOTk4OTIzZmNmYzZmZDg5NjE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkmyHJYY10Ol5gropnMURGehTsGq
aNtNmWPaYYgC2Mt5EQRSf5MdFbIFHU7EDrnipDs7Ue0f1YcMVbWHsacYDgpl06WV
T9vKMdAlxJHFTBpFP2W16XlBkMVGkqXJ4pzWrZUsafGXrgwJ682KKqIVXGtgThLa
B5VXg1XG8hJAoBI4eDwtd8P4t6bV2QC6ul3CHJBTkGsXrkltrzBW57npBIbIVVxb
T8KB2xHm3GxxsOP/h1+r/wopZO3bgo6lPWsxrqJ50a830YBNO7VxvpacyM9myy+Z
htu6JKXjpLGyzzlqF5iiDdTIvepu7RxD28akLoDBtc8aMv0m2henNbHb4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPQj1CUf4tog+3ZamYkj/Pxv2JYXMB8GA1UdIwQY
MBaAFJmSgeh9XpuHWPJA547vcQLEASGJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9iODM4NjMtNWY0Yi00MmUzLWI4MjIt
YTBmMDBiZTNiY2UxLzEvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny9iODM4NjMtNWY0Yi00MmUzLWI4MjItYTBmMDBiZTNiY2Ux
LzEvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeGIuktMZ
NwGPdL0+fe8274FYTchEqZiFBxOWE2ZKPmjOss/mt07AgwHzwoK4MKfQDzgkMrow
npfezRPUfnDDxmDhiNz4DseKukP34L5wnWWgiyO3h8L/KUrBU+iCHlrrzs2gOhAs
CHrIqQbN+IzGMkv4f96PsA28gwnIlL9t7EKrmfZKAKrnjtzyjTxBKJsaXXdnU3Nq
7UhygS1P9ZFPMpKuD3dLLv0xPn6y5/pO7fy9TcoqDaiKSIOeZWlJxbluhaZ3jWj8
eA2C6whDX/iR/krIUruzpFEl91Ry2y2Wl37HYvO9qGBVgRWMvQe8bt0F0jTPO/NZ
PgO53rWY31b/Bg==
-----END CERTIFICATE-----
Generated at Tue May 13 06:28:45 2025 by rpki-client