Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
File: ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft (raw, json)
Hash identifier: +VJgFzriFRyEiX2CPvBmATDElEMH3YDHXnyFu16axo4=
Subject key identifier: 4E:4D:31:F9:03:E5:C3:97:38:C6:A0:9C:5D:2C:B3:F9:81:6D:38:E2
Authority key identifier: 64:EF:98:AD:BF:42:D5:BA:CD:24:CA:DB:0A:DF:09:2C:45:76:DA:F3
Certificate issuer: /CN=64ef98adbf42d5bacd24cadb0adf092c4576daf3
Certificate serial: 0197B7451DFF1CE673BCAE00EB88D36B17DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZO-Yrb9C1brNJMrbCt8JLEV22vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
Manifest number: 15BC
Signing time: Sat 28 Jun 2025 16:00:49 +0000
Manifest this update: Sat 28 Jun 2025 16:00:49 +0000
Manifest next update: Sun 29 Jun 2025 16:00:49 +0000
Files and hashes: 1: 77Lxszm6b67-RSjepR0C23JG5dI.roa (hash: 9Xm4YAYAAgADPugT2wEGkyXGaEUt/FjBjGPJ5p3nqlw=)
2: ZO-Yrb9C1brNJMrbCt8JLEV22vM.crl (hash: T21e68RN9HFucQT7FPHIi4Ej8+G+kBxwCJrN8DpbnPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZO-Yrb9C1brNJMrbCt8JLEV22vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:1d:ff:1c:e6:73:bc:ae:00:eb:88:d3:6b:17:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64ef98adbf42d5bacd24cadb0adf092c4576daf3
Validity
Not Before: Jun 28 16:00:49 2025 GMT
Not After : Jun 29 16:00:49 2025 GMT
Subject: CN=4e4d31f903e5c39738c6a09c5d2cb3f9816d38e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:28:cb:43:5f:5c:22:7a:cd:ba:1d:13:84:7f:
d6:52:d5:eb:48:17:74:d0:02:97:1d:a4:93:f3:6e:
55:ba:a4:1e:57:7e:6b:c7:0c:be:03:27:f2:be:07:
6a:59:3d:77:04:c6:5a:93:4b:8a:57:1b:1f:4e:7f:
00:dd:60:6e:7a:9c:26:d5:2b:cd:23:e2:49:51:3e:
6b:84:91:9c:b1:ed:15:d8:55:fc:ec:23:a5:b2:04:
dc:b9:04:f8:08:3e:35:2f:90:d9:e9:4d:83:bb:0b:
dc:e9:0e:38:49:49:c0:20:b0:1b:c4:21:19:ae:16:
9a:b8:6e:19:72:4d:b1:6a:d8:64:d9:3d:5c:ec:03:
7c:76:0c:47:b4:c3:ea:4c:79:ea:ac:8d:cb:06:c5:
b4:db:25:e2:02:70:8b:75:c2:5f:7e:23:ec:60:c4:
19:9f:be:c4:76:be:e6:23:12:20:30:e3:84:7d:db:
b1:fd:05:69:f8:f6:6b:48:4f:cd:75:19:5e:ba:8a:
19:7d:3e:00:c2:19:14:e7:25:db:0c:d1:90:e9:71:
d4:6b:83:07:0c:4b:ba:a3:c7:9a:8e:3d:99:b9:77:
2e:e6:6a:ed:6b:f8:16:81:01:d5:90:fe:00:f2:7f:
ed:a3:f9:65:f7:1d:57:da:ca:d3:41:d8:73:07:c2:
9d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:4D:31:F9:03:E5:C3:97:38:C6:A0:9C:5D:2C:B3:F9:81:6D:38:E2
X509v3 Authority Key Identifier:
keyid:64:EF:98:AD:BF:42:D5:BA:CD:24:CA:DB:0A:DF:09:2C:45:76:DA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZO-Yrb9C1brNJMrbCt8JLEV22vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:e7:35:c2:b2:c9:1c:31:b9:5a:53:22:0e:b5:ec:ef:47:78:
cc:07:16:45:f0:d9:2a:35:ea:06:1d:4f:2c:55:cb:67:f6:c3:
cf:a2:75:c5:96:11:43:b1:04:57:6b:d8:a7:07:cf:2d:91:d7:
64:1f:ff:da:0e:bf:ef:0b:f1:d7:ab:a9:8c:5b:62:0e:9e:4b:
0d:ee:77:66:f0:e2:3d:1d:59:19:fd:dc:d0:79:c4:a8:b1:64:
4b:9b:08:f1:30:41:55:09:b3:35:42:55:ab:93:94:d8:93:44:
e0:f8:3b:90:0c:05:64:74:91:ae:22:7c:56:fe:4c:98:aa:fc:
18:1d:58:ca:45:6c:89:71:1c:52:eb:33:16:73:c1:e8:33:7f:
c8:fe:08:ba:5d:6b:27:c3:eb:1d:02:51:ec:01:c4:82:95:d9:
f5:b8:9d:68:0e:69:33:ed:58:26:12:9a:e7:65:6a:b9:26:85:
2e:4a:a3:9e:03:ed:bb:03:17:e6:86:11:77:14:77:26:d5:a0:
d6:95:50:1e:b7:98:47:8d:85:cf:e1:19:d7:fd:f2:54:35:8e:
1e:51:d5:84:76:b5:9c:f4:5d:10:aa:62:a3:a1:56:ff:32:72:
d0:f8:f0:a6:a2:83:4f:94:4e:a7:bd:f8:97:82:10:9c:76:bc:
ba:05:ae:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RR3/HOZzvK4A64jTaxfbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0ZWY5OGFkYmY0MmQ1YmFjZDI0Y2FkYjBhZGYwOTJjNDU3
NmRhZjMwHhcNMjUwNjI4MTYwMDQ5WhcNMjUwNjI5MTYwMDQ5WjAzMTEwLwYDVQQD
Eyg0ZTRkMzFmOTAzZTVjMzk3MzhjNmEwOWM1ZDJjYjNmOTgxNmQzOGUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCjLQ19cInrNuh0ThH/WUtXrSBd0
0AKXHaST825VuqQeV35rxwy+AyfyvgdqWT13BMZak0uKVxsfTn8A3WBuepwm1SvN
I+JJUT5rhJGcse0V2FX87COlsgTcuQT4CD41L5DZ6U2Duwvc6Q44SUnAILAbxCEZ
rhaauG4Zck2xathk2T1c7AN8dgxHtMPqTHnqrI3LBsW02yXiAnCLdcJffiPsYMQZ
n77Edr7mIxIgMOOEfdux/QVp+PZrSE/NdRleuooZfT4AwhkU5yXbDNGQ6XHUa4MH
DEu6o8eajj2ZuXcu5mrta/gWgQHVkP4A8n/to/ll9x1X2srTQdhzB8Kd8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE5NMfkD5cOXOMagnF0ss/mBbTjiMB8GA1UdIwQY
MBaAFGTvmK2/QtW6zSTK2wrfCSxFdtrzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWk8tWXJiOUMxYnJOSk1yYkN0OEpMRVYyMnZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9lNDliYzUtNjhjNS00Y2UyLWE5Yjkt
MDNjNmZlYWYxZDlmLzEvWk8tWXJiOUMxYnJOSk1yYkN0OEpMRVYyMnZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9lNDliYzUtNjhjNS00Y2UyLWE5YjktMDNjNmZlYWYxZDlm
LzEvWk8tWXJiOUMxYnJOSk1yYkN0OEpMRVYyMnZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg+c1wrLJ
HDG5WlMiDrXs70d4zAcWRfDZKjXqBh1PLFXLZ/bDz6J1xZYRQ7EEV2vYpwfPLZHX
ZB//2g6/7wvx16upjFtiDp5LDe53ZvDiPR1ZGf3c0HnEqLFkS5sI8TBBVQmzNUJV
q5OU2JNE4Pg7kAwFZHSRriJ8Vv5MmKr8GB1YykVsiXEcUuszFnPB6DN/yP4Iul1r
J8PrHQJR7AHEgpXZ9bidaA5pM+1YJhKa52VquSaFLkqjngPtuwMX5oYRdxR3JtWg
1pVQHreYR42Fz+EZ1/3yVDWOHlHVhHa1nPRdEKpio6FW/zJy0PjwpqKDT5ROp734
l4IQnHa8ugWupA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:48:48 2025 by rpki-client