Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
File: zkn8E0twZULK8aHvvgNPcBG0lDY.mft (raw, json)
Hash identifier: RKcF7I2VKhxYtaF9jlUpD1IEBFYznepB2tEpuxTUzCA=
Subject key identifier: 57:81:11:B1:CD:92:53:CF:9A:7D:88:75:06:A9:1F:63:0F:13:DB:62
Authority key identifier: CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
Certificate issuer: /CN=ce49fc134b706542caf1a1efbe034f7011b49436
Certificate serial: 0196D1E3139DF2B32BAD1C1D26878FB828FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
Manifest number: 0466
Signing time: Thu 15 May 2025 03:00:41 +0000
Manifest this update: Thu 15 May 2025 03:00:41 +0000
Manifest next update: Fri 16 May 2025 03:00:41 +0000
Files and hashes: 1: SGAPHhpCJa9JFOb_Zf20G8kvkhI.roa (hash: 27D8nmxY/4y8rMryghx5LNMAGS+7aTblTkGND6PBRy0=)
2: zkn8E0twZULK8aHvvgNPcBG0lDY.crl (hash: aOD/Zr02iwm9c43XOXiTaI/fDaTnGuFqVvby0gR1jok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 03:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d1:e3:13:9d:f2:b3:2b:ad:1c:1d:26:87:8f:b8:28:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce49fc134b706542caf1a1efbe034f7011b49436
Validity
Not Before: May 15 03:00:41 2025 GMT
Not After : May 16 03:00:41 2025 GMT
Subject: CN=578111b1cd9253cf9a7d887506a91f630f13db62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1c:e1:48:c3:41:72:6a:e8:f6:62:54:28:7d:
75:51:6b:a4:a1:7d:a9:56:e5:10:84:c4:97:67:c4:
e2:8e:b5:50:28:67:ba:27:0f:90:40:56:5a:56:67:
32:41:32:97:70:62:3f:79:bc:64:16:d0:01:c6:a8:
2a:92:01:16:00:f3:76:fb:19:bd:8c:9b:41:7d:d5:
f5:3a:c0:16:66:be:c9:36:87:31:e8:ba:78:9a:41:
bc:60:34:b8:1a:87:02:4e:b4:61:1e:32:30:34:5c:
c4:fb:4c:b4:3f:9f:88:51:a2:57:e2:2e:18:af:e0:
53:07:2b:d1:2b:f0:ad:1c:ee:37:70:22:8d:d3:47:
b1:d6:c6:ce:04:87:40:ed:37:15:5f:36:cd:75:5b:
1f:32:2c:d1:5c:94:d5:8c:df:d1:77:21:b2:14:01:
79:4a:97:cf:9d:66:bc:40:b8:a6:b3:6f:fc:04:7d:
0a:90:96:82:d3:af:8e:33:35:01:3e:53:d4:79:bd:
9a:ec:f2:9d:a4:36:8a:25:55:f2:56:89:f3:5f:fd:
df:9e:d0:01:16:97:d1:98:72:0e:9e:f1:d9:3d:4f:
4b:8c:e7:da:bf:20:93:bc:a8:03:6e:76:de:88:90:
8f:b6:88:ee:b7:71:80:ae:c4:89:33:1b:b9:6b:26:
05:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:81:11:B1:CD:92:53:CF:9A:7D:88:75:06:A9:1F:63:0F:13:DB:62
X509v3 Authority Key Identifier:
keyid:CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:ad:cb:68:66:f4:4f:f8:41:c1:42:f8:a6:f4:be:9c:98:19:
59:6a:e5:7c:98:91:a6:9e:b1:33:30:17:c1:e0:fa:10:9b:ba:
77:0d:03:c4:ca:85:5e:3a:71:56:da:5b:54:f7:d2:db:06:48:
7d:ee:e3:3c:bf:f6:aa:02:1b:ee:27:09:58:94:73:13:97:29:
d4:d6:6a:f3:6d:34:56:a4:42:64:d3:a9:c7:84:df:49:c1:1d:
54:da:38:43:e7:d1:5d:33:02:6b:c3:5d:46:3e:91:69:6b:cb:
a3:ac:8a:f1:24:61:58:6b:38:38:f4:51:40:bc:42:6d:2c:10:
9c:84:10:b8:71:96:5d:71:f1:53:f6:b4:41:d1:46:9b:95:f5:
57:73:01:98:61:ad:e3:44:fb:9b:7a:23:fa:55:bc:ef:0b:b3:
be:d6:c7:65:56:57:39:a5:de:31:59:53:ca:7f:18:76:8a:85:
9c:02:df:88:14:ec:1e:46:39:12:d4:12:56:c4:97:72:d2:a6:
17:1b:75:4e:55:81:06:76:71:90:27:9d:8d:58:f4:ab:ee:89:
ec:1c:10:c3:21:f5:4e:68:c7:16:61:ce:58:a8:54:6f:76:8c:
49:b4:97:7d:b6:86:ed:b7:82:02:9a:fd:2f:b2:bb:41:39:b2:
58:77:a5:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbR4xOd8rMrrRwdJoePuCj6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlNDlmYzEzNGI3MDY1NDJjYWYxYTFlZmJlMDM0ZjcwMTFi
NDk0MzYwHhcNMjUwNTE1MDMwMDQxWhcNMjUwNTE2MDMwMDQxWjAzMTEwLwYDVQQD
Eyg1NzgxMTFiMWNkOTI1M2NmOWE3ZDg4NzUwNmE5MWY2MzBmMTNkYjYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAixzhSMNBcmro9mJUKH11UWukoX2p
VuUQhMSXZ8TijrVQKGe6Jw+QQFZaVmcyQTKXcGI/ebxkFtABxqgqkgEWAPN2+xm9
jJtBfdX1OsAWZr7JNocx6Lp4mkG8YDS4GocCTrRhHjIwNFzE+0y0P5+IUaJX4i4Y
r+BTByvRK/CtHO43cCKN00ex1sbOBIdA7TcVXzbNdVsfMizRXJTVjN/RdyGyFAF5
SpfPnWa8QLims2/8BH0KkJaC06+OMzUBPlPUeb2a7PKdpDaKJVXyVonzX/3fntAB
FpfRmHIOnvHZPU9LjOfavyCTvKgDbnbeiJCPtojut3GArsSJMxu5ayYFdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFeBEbHNklPPmn2IdQapH2MPE9tiMB8GA1UdIwQY
MBaAFM5J/BNLcGVCyvGh774DT3ARtJQ2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemtuOEUwdHdaVUxLOGFIdnZnTlBjQkcwbERZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS8wMWRiYmMtMmZiYS00ZDk3LTg1ZjYt
NjQxZWRkYTA2Y2NlLzEvemtuOEUwdHdaVUxLOGFIdnZnTlBjQkcwbERZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS8wMWRiYmMtMmZiYS00ZDk3LTg1ZjYtNjQxZWRkYTA2Y2Nl
LzEvemtuOEUwdHdaVUxLOGFIdnZnTlBjQkcwbERZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUq3LaGb0
T/hBwUL4pvS+nJgZWWrlfJiRpp6xMzAXweD6EJu6dw0DxMqFXjpxVtpbVPfS2wZI
fe7jPL/2qgIb7icJWJRzE5cp1NZq8200VqRCZNOpx4TfScEdVNo4Q+fRXTMCa8Nd
Rj6RaWvLo6yK8SRhWGs4OPRRQLxCbSwQnIQQuHGWXXHxU/a0QdFGm5X1V3MBmGGt
40T7m3oj+lW87wuzvtbHZVZXOaXeMVlTyn8YdoqFnALfiBTsHkY5EtQSVsSXctKm
Fxt1TlWBBnZxkCedjVj0q+6J7BwQwyH1TmjHFmHOWKhUb3aMSbSXfbaG7beCApr9
L7K7QTmyWHelRw==
-----END CERTIFICATE-----
Generated at Thu May 15 12:14:30 2025 by rpki-client