Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
File: zfDoJMYqWSimUCFO8z6Md-fB_40.mft (raw, json)
Hash identifier: F5Wu9MNkNjpsLCbEYKI+aNBoxzhPrfk6L5Xs8aiJJtE=
Subject key identifier: B0:20:7C:6B:0F:62:DD:A9:B4:28:2F:C4:69:D8:23:07:F3:20:10:6F
Authority key identifier: CD:F0:E8:24:C6:2A:59:28:A6:50:21:4E:F3:3E:8C:77:E7:C1:FF:8D
Certificate issuer: /CN=cdf0e824c62a5928a650214ef33e8c77e7c1ff8d
Certificate serial: 0197B6A1403FE6214B653F3F07B8A0115728
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
Manifest number: 0F56
Signing time: Sat 28 Jun 2025 13:01:50 +0000
Manifest this update: Sat 28 Jun 2025 13:01:50 +0000
Manifest next update: Sun 29 Jun 2025 13:01:50 +0000
Files and hashes: 1: zfDoJMYqWSimUCFO8z6Md-fB_40.crl (hash: LMUSQC1wxhCz3yEm/GdW/OM0ptDuyC6l1XtlWBFMZyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:40:3f:e6:21:4b:65:3f:3f:07:b8:a0:11:57:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdf0e824c62a5928a650214ef33e8c77e7c1ff8d
Validity
Not Before: Jun 28 13:01:50 2025 GMT
Not After : Jun 29 13:01:50 2025 GMT
Subject: CN=b0207c6b0f62dda9b4282fc469d82307f320106f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ef:5b:0f:60:c4:69:ec:75:62:1d:d3:64:8a:
72:0f:95:f6:d0:8e:ff:7c:f1:1e:82:f9:fc:8a:07:
19:41:b1:f1:37:88:9e:88:6d:eb:94:72:d9:e7:ce:
72:a6:eb:b0:4c:3d:48:fd:7d:b3:64:9b:e9:c3:b5:
07:14:3d:ad:ac:3f:df:f8:64:0d:0d:f6:fb:02:6b:
3d:2d:bc:de:e4:fe:0f:43:ba:c0:e8:e1:fa:69:29:
c9:c4:58:8b:a1:95:42:31:23:a8:d4:eb:3f:18:c6:
fa:6c:b3:d6:39:47:c7:8f:29:1e:e4:e3:54:af:fb:
62:ac:33:f3:57:56:a2:94:e2:3c:73:70:f3:de:d5:
cb:a3:95:dd:1c:46:e5:01:bb:85:3e:d2:56:29:41:
0a:aa:16:bd:dd:51:c1:41:f3:96:eb:ae:32:66:56:
65:84:b7:58:4b:fa:f6:23:d9:5d:e7:7e:d2:b2:82:
9f:e8:2c:ef:fa:9f:ca:90:df:2f:28:59:ab:9f:75:
a2:32:ce:a3:2c:5c:6e:b5:71:11:7e:c7:b5:0d:f2:
16:b4:57:c8:93:d3:61:c8:1b:32:f6:3c:76:d1:ba:
d7:1a:e3:ac:99:ba:51:2f:91:8a:91:11:9c:35:a5:
df:3c:aa:60:0f:4e:ee:6b:d8:2c:07:12:a2:b7:29:
48:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:20:7C:6B:0F:62:DD:A9:B4:28:2F:C4:69:D8:23:07:F3:20:10:6F
X509v3 Authority Key Identifier:
keyid:CD:F0:E8:24:C6:2A:59:28:A6:50:21:4E:F3:3E:8C:77:E7:C1:FF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:ea:fc:ea:ac:3a:81:9f:a9:34:46:48:e0:42:c2:f4:4d:2d:
a4:02:7e:2f:10:f5:aa:b2:ac:13:a2:e8:69:e5:20:ca:1c:7f:
a2:c9:74:99:e1:92:26:eb:ed:8d:02:dd:29:52:5c:99:0c:79:
8b:c8:4e:97:7d:0a:9b:2d:88:39:f1:17:00:7b:cf:70:34:83:
2b:a9:b3:a0:a4:5c:0f:13:c7:15:f4:7f:73:39:bb:05:36:08:
08:b4:a4:df:87:43:ff:15:ff:ed:dd:fa:d6:d0:cf:6c:c8:23:
ba:43:e9:af:9f:cc:9a:87:00:7e:4c:8c:5f:79:52:d9:dd:a7:
18:c5:de:04:ac:d4:b5:f6:e8:3b:8d:63:e8:71:30:52:45:fc:
50:46:c1:77:c6:a4:d2:a0:eb:11:a1:3c:e3:92:ab:18:63:3c:
bf:fd:70:a9:57:ef:00:bf:0d:c3:4a:87:9e:55:b6:a0:c5:06:
08:42:d9:d4:fd:79:e6:70:24:e1:b6:4a:fc:aa:ac:47:86:c1:
f2:fd:b7:cc:0d:f3:ed:13:46:51:3a:c5:e3:ca:80:4d:48:0e:
cc:4a:6c:ea:e4:11:f6:39:b8:ef:40:72:d6:63:ca:4f:cc:99:
ec:33:15:b6:c5:00:7c:68:e1:43:bd:dd:65:be:c0:7e:8c:57:
83:03:ad:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oUA/5iFLZT8/B7igEVcoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkZjBlODI0YzYyYTU5MjhhNjUwMjE0ZWYzM2U4Yzc3ZTdj
MWZmOGQwHhcNMjUwNjI4MTMwMTUwWhcNMjUwNjI5MTMwMTUwWjAzMTEwLwYDVQQD
EyhiMDIwN2M2YjBmNjJkZGE5YjQyODJmYzQ2OWQ4MjMwN2YzMjAxMDZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4e9bD2DEaex1Yh3TZIpyD5X20I7/
fPEegvn8igcZQbHxN4ieiG3rlHLZ585ypuuwTD1I/X2zZJvpw7UHFD2trD/f+GQN
Dfb7Ams9Lbze5P4PQ7rA6OH6aSnJxFiLoZVCMSOo1Os/GMb6bLPWOUfHjyke5ONU
r/tirDPzV1ailOI8c3Dz3tXLo5XdHEblAbuFPtJWKUEKqha93VHBQfOW664yZlZl
hLdYS/r2I9ld537SsoKf6Czv+p/KkN8vKFmrn3WiMs6jLFxutXERfse1DfIWtFfI
k9NhyBsy9jx20brXGuOsmbpRL5GKkRGcNaXfPKpgD07ua9gsBxKitylIbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLAgfGsPYt2ptCgvxGnYIwfzIBBvMB8GA1UdIwQY
MBaAFM3w6CTGKlkoplAhTvM+jHfnwf+NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemZEb0pNWXFXU2ltVUNGTzh6Nk1kLWZCXzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8yMjQ5NjctY2QxYi00NmY5LWE0NmUt
MjU4M2FmMjM3ZTJjLzEvemZEb0pNWXFXU2ltVUNGTzh6Nk1kLWZCXzQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi8yMjQ5NjctY2QxYi00NmY5LWE0NmUtMjU4M2FmMjM3ZTJj
LzEvemZEb0pNWXFXU2ltVUNGTzh6Nk1kLWZCXzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiur86qw6
gZ+pNEZI4ELC9E0tpAJ+LxD1qrKsE6LoaeUgyhx/osl0meGSJuvtjQLdKVJcmQx5
i8hOl30Kmy2IOfEXAHvPcDSDK6mzoKRcDxPHFfR/czm7BTYICLSk34dD/xX/7d36
1tDPbMgjukPpr5/MmocAfkyMX3lS2d2nGMXeBKzUtfboO41j6HEwUkX8UEbBd8ak
0qDrEaE845KrGGM8v/1wqVfvAL8Nw0qHnlW2oMUGCELZ1P155nAk4bZK/KqsR4bB
8v23zA3z7RNGUTrF48qATUgOzEps6uQR9jm470By1mPKT8yZ7DMVtsUAfGjhQ73d
Zb7AfoxXgwOtBg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:01:55 2025 by rpki-client