Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
File: pZyqKnNoBpiyyeGmyWQadPPOdug.mft (raw, json)
Hash identifier: nB4+7PJ/ZsKF2yPKVHFDSRIgqdOIBfc+S2QxomK5V8o=
Subject key identifier: E6:4D:22:4F:87:55:DF:77:3D:1C:BD:C6:49:E1:D6:B8:D2:AC:77:E5
Authority key identifier: A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
Certificate issuer: /CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Certificate serial: 0196BD4945525AB9590E9F7F3724080B6A00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
Manifest number: 09C9
Signing time: Sun 11 May 2025 03:00:17 +0000
Manifest this update: Sun 11 May 2025 03:00:17 +0000
Manifest next update: Mon 12 May 2025 03:00:17 +0000
Files and hashes: 1: _c_c0M25UwpZ7eHBk4pzeagMlVQ.roa (hash: 8jqy4hlWYt18GsvMo6F88//T4bDxnnNcBAAfWfrvPK8=)
2: pZyqKnNoBpiyyeGmyWQadPPOdug.crl (hash: ix0bb1HoONk2tfE/XeP9JOSB9wF0tQ7IBTrz/zPqrVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:49:45:52:5a:b9:59:0e:9f:7f:37:24:08:0b:6a:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Validity
Not Before: May 11 03:00:17 2025 GMT
Not After : May 12 03:00:17 2025 GMT
Subject: CN=e64d224f8755df773d1cbdc649e1d6b8d2ac77e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d7:75:07:5c:12:98:44:7b:a9:4b:db:94:de:
dc:a3:b0:45:fc:55:13:5f:da:5c:92:47:83:7b:da:
84:59:68:13:a1:aa:3d:2a:c5:23:0d:50:ba:0e:fa:
34:9f:92:d8:83:cd:8d:e4:45:8a:97:b9:68:6d:17:
cd:f5:af:0c:90:6d:3e:7f:c3:21:f3:65:b5:61:bb:
19:77:b2:e8:b3:65:9e:9a:c2:c4:e2:67:9f:c3:44:
3c:c8:73:e1:f6:a1:9d:06:62:cb:96:9d:93:a5:82:
6d:b4:1d:13:cd:c1:67:03:04:f8:c4:30:4f:24:2f:
18:1d:9a:17:57:d3:e0:2f:38:76:70:34:66:89:8a:
d5:22:96:51:3a:ea:79:44:12:6a:14:11:58:9c:e8:
2f:4c:e4:5e:0b:c3:dc:87:31:6b:a1:cf:23:d1:de:
cc:ef:21:67:f4:9b:c1:1c:05:1a:c4:ad:1e:da:f1:
79:b2:0a:0e:43:68:b0:26:9b:b3:9c:5a:ab:f5:99:
bf:e7:0b:35:cb:df:1e:de:2d:2a:fd:6d:c4:58:67:
03:4b:2d:2f:c6:06:98:f8:62:a2:ec:89:1c:c9:6c:
b4:3c:d2:82:fe:0b:b8:ea:c4:75:47:f5:ee:74:90:
38:98:b8:d9:3d:65:bd:a3:48:9b:e4:ba:00:a4:4c:
c6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:4D:22:4F:87:55:DF:77:3D:1C:BD:C6:49:E1:D6:B8:D2:AC:77:E5
X509v3 Authority Key Identifier:
keyid:A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:e9:82:ad:1f:5a:a9:f4:e0:b6:28:ab:62:4c:4f:a5:a0:58:
80:06:82:b5:a4:13:a2:20:fd:9f:3b:66:59:ce:c9:27:95:e4:
e7:20:69:67:c2:fd:f3:55:77:a7:2b:92:f5:b4:41:f7:ff:ed:
ee:e3:c2:17:e9:41:dd:88:7d:6c:f4:82:4b:27:37:60:a7:8f:
d6:74:04:cb:e2:b4:45:0a:e6:27:09:0e:25:08:96:e6:8e:cf:
9d:be:49:67:9b:c2:24:73:a9:3b:be:6b:b3:98:ea:49:67:8a:
02:d3:5d:3e:37:b8:34:35:89:85:99:5d:fa:90:7c:4f:66:e3:
60:b6:5e:96:8a:2d:3b:f9:f9:29:48:c3:47:9f:8a:ef:7c:5c:
4f:d5:7b:d9:82:c4:17:08:8d:c1:02:37:26:87:df:98:90:d9:
f2:70:ea:e8:a2:46:6f:f3:93:ef:cd:da:31:8f:4e:1a:6b:84:
ab:4d:dc:af:56:3f:d4:a8:d1:c4:a9:23:7c:15:63:cd:15:47:
09:77:c9:9e:a2:93:86:19:5d:bc:0a:f4:c6:6a:1d:0b:0e:f5:
f3:f6:ac:80:d8:9e:bb:bf:7e:f0:25:fe:c4:8d:d5:46:8c:b0:
3e:c8:94:bc:f4:30:af:16:ea:86:1f:06:9f:81:b4:23:a6:b3:
97:4a:89:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa9SUVSWrlZDp9/NyQIC2oAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1OWNhYTJhNzM2ODA2OThiMmM5ZTFhNmM5NjQxYTc0ZjNj
ZTc2ZTgwHhcNMjUwNTExMDMwMDE3WhcNMjUwNTEyMDMwMDE3WjAzMTEwLwYDVQQD
EyhlNjRkMjI0Zjg3NTVkZjc3M2QxY2JkYzY0OWUxZDZiOGQyYWM3N2U1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy9d1B1wSmER7qUvblN7co7BF/FUT
X9pckkeDe9qEWWgToao9KsUjDVC6Dvo0n5LYg82N5EWKl7lobRfN9a8MkG0+f8Mh
82W1YbsZd7Los2WemsLE4mefw0Q8yHPh9qGdBmLLlp2TpYJttB0TzcFnAwT4xDBP
JC8YHZoXV9PgLzh2cDRmiYrVIpZROup5RBJqFBFYnOgvTOReC8PchzFroc8j0d7M
7yFn9JvBHAUaxK0e2vF5sgoOQ2iwJpuznFqr9Zm/5ws1y98e3i0q/W3EWGcDSy0v
xgaY+GKi7IkcyWy0PNKC/gu46sR1R/XudJA4mLjZPWW9o0ib5LoApEzG1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOZNIk+HVd93PRy9xknh1rjSrHflMB8GA1UdIwQY
MBaAFKWcqipzaAaYssnhpslkGnTzznboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9kZDY3MmYtNTMzNi00ZjM1LWIzZWYt
YWU5MWFiMzQyYmUxLzEvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9kZDY3MmYtNTMzNi00ZjM1LWIzZWYtYWU5MWFiMzQyYmUx
LzEvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZemCrR9a
qfTgtiirYkxPpaBYgAaCtaQToiD9nztmWc7JJ5Xk5yBpZ8L981V3pyuS9bRB9//t
7uPCF+lB3Yh9bPSCSyc3YKeP1nQEy+K0RQrmJwkOJQiW5o7Pnb5JZ5vCJHOpO75r
s5jqSWeKAtNdPje4NDWJhZld+pB8T2bjYLZelootO/n5KUjDR5+K73xcT9V72YLE
FwiNwQI3JoffmJDZ8nDq6KJGb/OT783aMY9OGmuEq03cr1Y/1KjRxKkjfBVjzRVH
CXfJnqKThhldvAr0xmodCw718/asgNieu79+8CX+xI3VRoywPsiUvPQwrxbqhh8G
n4G0I6azl0qJsw==
-----END CERTIFICATE-----
Generated at Sun May 11 06:31:53 2025 by rpki-client