Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
File: z2hDzhUimoAj2X-iejflkniyv9c.mft (raw, json)
Hash identifier: rAROk1IfKGslxSpmunisZ7sQ6kFYRgWxDiKsX7Ey/Lo=
Subject key identifier: 06:5B:B4:3C:61:C1:E0:BF:67:C2:18:30:E7:3E:1F:EF:9D:C2:07:C6
Authority key identifier: CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
Certificate issuer: /CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Certificate serial: 0197B820DBC6D876A39AC7118AD243E0F948
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
Manifest number: 0BA3
Signing time: Sat 28 Jun 2025 20:00:50 +0000
Manifest this update: Sat 28 Jun 2025 20:00:50 +0000
Manifest next update: Sun 29 Jun 2025 20:00:50 +0000
Files and hashes: 1: pZ2-rl1wvNOlZXWq6r9tiMcpCLE.roa (hash: UTgRZg+3/3Y1WSaSgU/Ax1MIkqu5a18zaZd2IsaahgY=)
2: z2hDzhUimoAj2X-iejflkniyv9c.crl (hash: QuwBM4XD8jbYCCf1A4G7U6Cih1WBQ04znIiHbI2ZU6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:db:c6:d8:76:a3:9a:c7:11:8a:d2:43:e0:f9:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Validity
Not Before: Jun 28 20:00:50 2025 GMT
Not After : Jun 29 20:00:50 2025 GMT
Subject: CN=065bb43c61c1e0bf67c21830e73e1fef9dc207c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:50:f2:fd:eb:fa:ac:c8:3b:fb:9b:85:f8:31:
fd:6a:fb:14:0c:ed:8e:3b:45:5d:72:72:e6:80:87:
53:47:a1:02:13:76:79:e7:e8:cc:c6:7c:14:13:84:
bc:3c:11:0e:82:a6:82:28:de:22:42:47:8c:67:c5:
1b:6e:c4:08:b0:31:68:32:c7:07:80:2c:7b:21:2c:
8a:b5:96:c5:b1:8c:ab:6f:13:44:28:e3:aa:68:1e:
f7:04:11:2d:87:25:fc:16:2b:d2:54:d4:72:2f:07:
7d:11:8f:08:32:37:ea:4c:54:3e:ce:e7:32:b5:11:
50:50:27:c8:d4:e7:cf:73:f6:56:df:12:c9:f1:10:
56:9e:51:b7:89:8d:c5:eb:0a:ea:09:f3:a7:00:59:
ef:09:1d:f0:f4:3e:ef:45:52:f0:c9:19:84:8d:d5:
d6:7a:d8:71:1c:88:39:75:16:a6:bf:22:4e:08:53:
b7:ed:5f:62:b8:e2:f4:88:79:74:8b:75:b8:2e:8e:
3b:c4:a7:ee:a0:a2:40:5e:f1:22:98:aa:cb:61:5c:
47:ab:2d:57:f6:0d:e9:26:fd:47:2a:01:83:ac:52:
6f:9d:95:c1:bd:49:98:bf:02:85:ce:98:f6:45:66:
c4:76:45:99:5e:b5:b7:f1:d9:38:3b:34:60:7f:a0:
b1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:5B:B4:3C:61:C1:E0:BF:67:C2:18:30:E7:3E:1F:EF:9D:C2:07:C6
X509v3 Authority Key Identifier:
keyid:CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:9e:5e:3c:c9:b7:07:13:77:cc:4e:aa:9d:16:9f:11:87:7c:
c7:8c:59:55:21:c5:80:85:e4:46:ae:4a:5a:40:54:0c:a6:7f:
a3:03:c8:2f:f5:d0:d1:6a:95:32:94:55:87:af:76:48:47:d2:
d5:81:27:2f:3e:47:b0:1a:df:5e:a5:03:27:c6:f6:aa:86:18:
15:a3:f5:2d:d9:e1:69:69:b1:77:42:98:48:53:34:47:19:dc:
aa:16:d7:a9:75:4f:f6:f8:8e:ad:17:53:f3:c5:b2:91:1a:0f:
67:b0:46:00:fb:c5:98:34:e1:fc:19:68:b9:1d:65:48:40:83:
37:55:27:85:59:73:06:64:51:0e:49:05:e3:0a:cd:3c:b4:07:
2b:fd:08:0c:c0:6d:f4:16:13:b0:08:8e:c9:2e:c1:54:53:f9:
af:95:d5:2a:43:ac:f7:f3:01:69:42:91:9f:ef:0f:bb:77:96:
dc:bc:fb:cd:03:8d:ef:75:ee:4e:06:67:04:e0:29:cb:3f:47:
2e:d6:bd:4b:59:89:9f:ca:07:42:aa:0e:16:d5:53:2a:52:6d:
98:28:27:1b:92:9e:98:22:3f:1b:0b:81:02:a7:e9:04:ce:a0:
6b:09:0f:ae:ba:8b:88:fe:c0:1d:80:f4:7f:cb:88:95:7d:d4:
8e:19:a0:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4INvG2HajmscRitJD4PlIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmNjg0M2NlMTUyMjlhODAyM2Q5N2ZhMjdhMzdlNTkyNzhi
MmJmZDcwHhcNMjUwNjI4MjAwMDUwWhcNMjUwNjI5MjAwMDUwWjAzMTEwLwYDVQQD
EygwNjViYjQzYzYxYzFlMGJmNjdjMjE4MzBlNzNlMWZlZjlkYzIwN2M2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVDy/ev6rMg7+5uF+DH9avsUDO2O
O0VdcnLmgIdTR6ECE3Z55+jMxnwUE4S8PBEOgqaCKN4iQkeMZ8UbbsQIsDFoMscH
gCx7ISyKtZbFsYyrbxNEKOOqaB73BBEthyX8FivSVNRyLwd9EY8IMjfqTFQ+zucy
tRFQUCfI1OfPc/ZW3xLJ8RBWnlG3iY3F6wrqCfOnAFnvCR3w9D7vRVLwyRmEjdXW
ethxHIg5dRamvyJOCFO37V9iuOL0iHl0i3W4Lo47xKfuoKJAXvEimKrLYVxHqy1X
9g3pJv1HKgGDrFJvnZXBvUmYvwKFzpj2RWbEdkWZXrW38dk4OzRgf6CxpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAZbtDxhweC/Z8IYMOc+H++dwgfGMB8GA1UdIwQY
MBaAFM9oQ84VIpqAI9l/ono35ZJ4sr/XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejJoRHpoVWltb0FqMlgtaWVqZmxrbml5djljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy83NjFiNDgtNjllYS00MGU0LThkN2Mt
NjRjZDE5NGY3ZjRmLzEvejJoRHpoVWltb0FqMlgtaWVqZmxrbml5djljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy83NjFiNDgtNjllYS00MGU0LThkN2MtNjRjZDE5NGY3ZjRm
LzEvejJoRHpoVWltb0FqMlgtaWVqZmxrbml5djljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsZ5ePMm3
BxN3zE6qnRafEYd8x4xZVSHFgIXkRq5KWkBUDKZ/owPIL/XQ0WqVMpRVh692SEfS
1YEnLz5HsBrfXqUDJ8b2qoYYFaP1LdnhaWmxd0KYSFM0RxncqhbXqXVP9viOrRdT
88WykRoPZ7BGAPvFmDTh/BlouR1lSECDN1UnhVlzBmRRDkkF4wrNPLQHK/0IDMBt
9BYTsAiOyS7BVFP5r5XVKkOs9/MBaUKRn+8Pu3eW3Lz7zQON73XuTgZnBOApyz9H
Lta9S1mJn8oHQqoOFtVTKlJtmCgnG5KemCI/GwuBAqfpBM6gawkPrrqLiP7AHYD0
f8uIlX3UjhmgWA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:28:08 2025 by rpki-client