Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
File: z2hDzhUimoAj2X-iejflkniyv9c.mft (raw, json)
Hash identifier: Y80fKrgHnCWZpGN1SzwE2OPcg05bicZEjekqZpi05Jw=
Subject key identifier: 6F:1B:B1:EE:8E:5C:D0:27:CA:BD:9D:8D:63:F7:1F:72:3B:2B:61:B7
Authority key identifier: CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
Certificate issuer: /CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Certificate serial: 0196A20917FAB6602B706780F5AC8DEA7650
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
Manifest number: 0B13
Signing time: Mon 05 May 2025 20:00:26 +0000
Manifest this update: Mon 05 May 2025 20:00:26 +0000
Manifest next update: Tue 06 May 2025 20:00:26 +0000
Files and hashes: 1: pZ2-rl1wvNOlZXWq6r9tiMcpCLE.roa (hash: UTgRZg+3/3Y1WSaSgU/Ax1MIkqu5a18zaZd2IsaahgY=)
2: z2hDzhUimoAj2X-iejflkniyv9c.crl (hash: KY90nCMGxtxOKPnM/u9aQGFc+03GZhL6qMhsRGWrir4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:09:17:fa:b6:60:2b:70:67:80:f5:ac:8d:ea:76:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Validity
Not Before: May 5 20:00:26 2025 GMT
Not After : May 6 20:00:26 2025 GMT
Subject: CN=6f1bb1ee8e5cd027cabd9d8d63f71f723b2b61b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c5:6a:74:05:81:5a:69:51:ee:58:b0:7d:48:
00:e1:22:0f:be:79:fa:45:bd:22:0b:49:1d:47:27:
c5:ef:a2:f5:62:1d:52:f5:7d:5f:1f:48:9f:7d:a7:
e9:38:fa:9d:96:ed:af:2a:d3:39:00:27:42:1a:07:
32:7c:96:5b:88:0d:7a:e7:a4:c2:d7:34:f1:b7:b0:
38:f7:d6:53:52:70:5f:01:5b:a8:44:95:82:f2:5e:
d1:d0:85:48:6f:78:3f:f0:ed:ae:c3:6b:3c:ea:53:
b7:d4:ad:37:0c:9d:0e:8d:ab:d4:2d:44:8c:ed:db:
9f:dd:4d:a4:84:f5:b4:8e:3e:28:e9:3c:08:42:aa:
16:e2:ba:19:b5:1d:cf:1f:10:ad:44:dd:a3:b2:65:
ed:c0:67:5a:f0:cf:56:55:4d:b5:10:2f:76:9f:c5:
0d:69:a6:79:2a:ea:e1:ae:72:4f:86:48:cf:a4:4a:
94:3d:42:aa:cb:fa:f4:37:68:69:97:70:f0:1e:28:
f5:86:ce:aa:61:66:5b:ea:3b:38:09:d3:0e:6e:26:
ba:2b:96:93:8c:85:35:b7:c5:82:8e:30:96:01:54:
e4:fd:4e:c8:ff:df:36:d2:d0:ba:ce:35:37:97:3a:
ea:cf:2f:5b:0b:9f:4c:a8:40:0e:2c:ae:cb:57:c1:
8b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:1B:B1:EE:8E:5C:D0:27:CA:BD:9D:8D:63:F7:1F:72:3B:2B:61:B7
X509v3 Authority Key Identifier:
keyid:CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:c4:f0:39:85:b4:96:de:46:ed:95:cc:9a:7e:ca:96:e3:d1:
e9:d6:79:55:b7:5f:24:63:20:94:24:0c:17:44:ed:db:0d:f3:
a3:5d:55:44:72:63:c8:17:94:5f:a0:94:42:8d:62:74:90:27:
ed:d7:63:b1:69:f0:3d:57:a6:b3:48:8c:7d:d9:ac:98:27:6d:
26:64:51:40:d8:8c:0e:d8:1d:f9:80:89:63:77:90:da:3d:f7:
e9:8d:0f:af:4d:ec:d8:be:f4:b9:8c:49:3c:72:06:9f:1b:86:
22:2d:b8:98:2e:bc:11:d6:d2:68:1a:5f:1b:3c:c3:9c:31:88:
7c:7f:e7:49:3e:e4:05:07:c7:69:42:84:81:cd:3f:6b:46:f7:
c1:ce:b4:31:5e:0e:f1:1a:39:a6:a4:c1:4d:5b:a5:31:4c:90:
42:e0:46:c5:31:11:1d:33:67:14:23:b9:2e:f5:5e:a3:27:26:
d8:0b:83:5d:7f:c9:7c:da:36:42:34:00:97:fa:53:33:b1:86:
39:32:1d:5e:06:ef:8b:26:94:1a:f0:03:de:dc:c3:5e:cb:34:
42:cc:2b:13:48:b8:06:78:e6:44:75:09:b8:a7:63:80:ce:49:
78:3e:5e:44:da:ce:1f:7e:a3:0d:20:8b:b4:5f:eb:83:08:7d:
80:db:b5:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaiCRf6tmArcGeA9ayN6nZQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmNjg0M2NlMTUyMjlhODAyM2Q5N2ZhMjdhMzdlNTkyNzhi
MmJmZDcwHhcNMjUwNTA1MjAwMDI2WhcNMjUwNTA2MjAwMDI2WjAzMTEwLwYDVQQD
Eyg2ZjFiYjFlZThlNWNkMDI3Y2FiZDlkOGQ2M2Y3MWY3MjNiMmI2MWI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcVqdAWBWmlR7liwfUgA4SIPvnn6
Rb0iC0kdRyfF76L1Yh1S9X1fH0iffafpOPqdlu2vKtM5ACdCGgcyfJZbiA1656TC
1zTxt7A499ZTUnBfAVuoRJWC8l7R0IVIb3g/8O2uw2s86lO31K03DJ0OjavULUSM
7duf3U2khPW0jj4o6TwIQqoW4roZtR3PHxCtRN2jsmXtwGda8M9WVU21EC92n8UN
aaZ5KurhrnJPhkjPpEqUPUKqy/r0N2hpl3DwHij1hs6qYWZb6js4CdMObia6K5aT
jIU1t8WCjjCWAVTk/U7I/9820tC6zjU3lzrqzy9bC59MqEAOLK7LV8GL6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG8bse6OXNAnyr2djWP3H3I7K2G3MB8GA1UdIwQY
MBaAFM9oQ84VIpqAI9l/ono35ZJ4sr/XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejJoRHpoVWltb0FqMlgtaWVqZmxrbml5djljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy83NjFiNDgtNjllYS00MGU0LThkN2Mt
NjRjZDE5NGY3ZjRmLzEvejJoRHpoVWltb0FqMlgtaWVqZmxrbml5djljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy83NjFiNDgtNjllYS00MGU0LThkN2MtNjRjZDE5NGY3ZjRm
LzEvejJoRHpoVWltb0FqMlgtaWVqZmxrbml5djljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjcTwOYW0
lt5G7ZXMmn7KluPR6dZ5VbdfJGMglCQMF0Tt2w3zo11VRHJjyBeUX6CUQo1idJAn
7ddjsWnwPVems0iMfdmsmCdtJmRRQNiMDtgd+YCJY3eQ2j336Y0Pr03s2L70uYxJ
PHIGnxuGIi24mC68EdbSaBpfGzzDnDGIfH/nST7kBQfHaUKEgc0/a0b3wc60MV4O
8Ro5pqTBTVulMUyQQuBGxTERHTNnFCO5LvVeoycm2AuDXX/JfNo2QjQAl/pTM7GG
OTIdXgbviyaUGvAD3tzDXss0QswrE0i4BnjmRHUJuKdjgM5JeD5eRNrOH36jDSCL
tF/rgwh9gNu1vA==
-----END CERTIFICATE-----
Generated at Tue May 6 02:08:21 2025 by rpki-client