Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/k-zngN_aQ6tKhBcn6yDXH8dlKLw.mft
File: k-zngN_aQ6tKhBcn6yDXH8dlKLw.mft (raw, json)
Hash identifier: x8tGCdrmRjXEoGkLAp9fzUhdUYF2m7RcH5/Tc9RvBuU=
Subject key identifier: 0C:BB:F9:43:53:02:5D:73:9E:F3:1D:7C:5F:55:2B:73:4C:0F:B8:F3
Authority key identifier: 93:EC:E7:80:DF:DA:43:AB:4A:84:17:27:EB:20:D7:1F:C7:65:28:BC
Certificate issuer: /CN=93ece780dfda43ab4a841727eb20d71fc76528bc
Certificate serial: 0197B70E64A7A901E3DB1B5B353B2E234AA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-zngN_aQ6tKhBcn6yDXH8dlKLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/k-zngN_aQ6tKhBcn6yDXH8dlKLw.mft
Manifest number: 03ED
Signing time: Sat 28 Jun 2025 15:01:03 +0000
Manifest this update: Sat 28 Jun 2025 15:01:03 +0000
Manifest next update: Sun 29 Jun 2025 15:01:03 +0000
Files and hashes: 1: TP9gFKgxBg6Q0nRcWGidlz7qFCE.roa (hash: jhQI7t+AgP6hvPj91hzIOl0xoOYJULkePtGE660/ydE=)
2: V4JFeDwnCAqThlIryfbjYJ96jqI.roa (hash: kiCqOYzNhXEMGFGlKAItyp8yURJWNGMcGMSiUikSSU4=)
3: dJ3sMClT1nzY6ah-C08c4xayKh4.roa (hash: y9dD6eZbJdUtirxnu+MfTeTv9qcRoIhNkzIpNqVLlDg=)
4: k-zngN_aQ6tKhBcn6yDXH8dlKLw.crl (hash: 8UlcW5aC6o/YzbVcO035ELtnW6ULol9ihMcvDMSV9jY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/k-zngN_aQ6tKhBcn6yDXH8dlKLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/k-zngN_aQ6tKhBcn6yDXH8dlKLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/k-zngN_aQ6tKhBcn6yDXH8dlKLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:64:a7:a9:01:e3:db:1b:5b:35:3b:2e:23:4a:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93ece780dfda43ab4a841727eb20d71fc76528bc
Validity
Not Before: Jun 28 15:01:03 2025 GMT
Not After : Jun 29 15:01:03 2025 GMT
Subject: CN=0cbbf94353025d739ef31d7c5f552b734c0fb8f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:53:55:b6:e2:89:48:1b:21:1a:e5:da:bf:62:
e3:9a:a2:1b:dc:94:16:ee:22:22:ba:ee:06:c9:2a:
09:66:70:ec:00:4b:4c:bc:be:f1:6d:95:e6:94:22:
91:83:71:d9:16:8e:1d:76:8c:39:c1:06:d7:23:1b:
c4:89:6f:72:2b:50:db:95:43:ba:0c:6c:7b:eb:9a:
5e:0e:8e:f9:0f:4e:f8:59:54:f0:5b:e2:42:a2:f4:
f2:39:5f:7e:09:d5:21:c4:dc:7d:d8:b1:b7:0c:fa:
08:dc:9b:07:10:f5:a0:ba:b4:80:90:3a:aa:db:14:
a8:ae:71:b6:eb:ae:1c:65:3f:21:c4:ba:11:38:6b:
b5:68:6f:eb:30:46:71:68:59:bf:18:c4:1f:fd:58:
d8:00:c0:2e:d4:79:59:26:99:54:57:d4:7e:57:21:
4a:32:c3:d1:4c:29:a7:21:35:81:58:7d:80:46:36:
48:f5:82:c9:ec:89:99:c4:a5:df:09:b5:8c:fd:ba:
c6:59:dc:0f:d6:91:98:47:df:df:46:8a:da:11:6b:
3a:49:1f:78:ac:d1:68:e9:64:d7:bb:57:26:f7:af:
58:a2:5b:02:f8:b3:78:43:70:fc:f7:aa:b7:3a:9e:
98:75:8e:93:ed:32:b8:a3:e0:f3:fb:89:91:44:67:
c0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:BB:F9:43:53:02:5D:73:9E:F3:1D:7C:5F:55:2B:73:4C:0F:B8:F3
X509v3 Authority Key Identifier:
keyid:93:EC:E7:80:DF:DA:43:AB:4A:84:17:27:EB:20:D7:1F:C7:65:28:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-zngN_aQ6tKhBcn6yDXH8dlKLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/k-zngN_aQ6tKhBcn6yDXH8dlKLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7fa943-9ea6-4068-b6ae-a4d413d7f89c/1/k-zngN_aQ6tKhBcn6yDXH8dlKLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:2a:5f:61:8f:f5:ff:7b:90:d2:16:09:02:f3:fb:e6:55:f2:
c8:13:13:6d:35:b1:19:3b:9c:73:6f:9b:af:0f:fc:81:64:46:
33:e5:6b:c5:38:de:2a:d1:f2:f9:b3:87:43:f7:68:a1:b0:69:
26:fe:6f:03:66:cf:cb:8b:dd:86:2f:ac:15:9f:9d:71:3f:dd:
b1:4a:b7:77:04:26:57:d7:0d:ef:92:ff:ca:56:84:27:12:db:
c3:4f:d3:f8:dd:2b:cb:e3:c0:53:1a:38:db:a1:ac:66:04:e0:
8d:07:13:97:0c:e7:75:f4:5d:68:3a:4f:a6:97:bf:00:da:7c:
21:61:a2:01:1a:f1:e8:04:4e:db:fc:47:68:7b:76:35:db:ad:
83:ad:1b:0e:00:d3:eb:d9:ec:92:cd:97:ec:2e:2e:81:e4:4a:
e5:48:58:20:7d:99:0f:5c:9e:0e:a3:8a:d6:d8:d7:a5:a8:3f:
67:7e:72:3b:7b:85:ce:18:cb:53:fe:82:cd:c1:b7:e8:92:fb:
5e:69:73:ce:35:70:2f:7d:26:39:29:bc:2e:e7:9b:b7:6d:35:
34:4d:7a:f4:89:1c:05:2a:0f:61:4b:d8:e1:e9:86:8a:85:1c:
1a:7a:20:27:e1:34:be:2e:72:79:1c:59:cc:ba:71:04:72:ba:
5c:2d:7d:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DmSnqQHj2xtbNTsuI0qiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzZWNlNzgwZGZkYTQzYWI0YTg0MTcyN2ViMjBkNzFmYzc2
NTI4YmMwHhcNMjUwNjI4MTUwMTAzWhcNMjUwNjI5MTUwMTAzWjAzMTEwLwYDVQQD
EygwY2JiZjk0MzUzMDI1ZDczOWVmMzFkN2M1ZjU1MmI3MzRjMGZiOGYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVNVtuKJSBshGuXav2LjmqIb3JQW
7iIiuu4GySoJZnDsAEtMvL7xbZXmlCKRg3HZFo4ddow5wQbXIxvEiW9yK1DblUO6
DGx765peDo75D074WVTwW+JCovTyOV9+CdUhxNx92LG3DPoI3JsHEPWgurSAkDqq
2xSornG2664cZT8hxLoROGu1aG/rMEZxaFm/GMQf/VjYAMAu1HlZJplUV9R+VyFK
MsPRTCmnITWBWH2ARjZI9YLJ7ImZxKXfCbWM/brGWdwP1pGYR9/fRoraEWs6SR94
rNFo6WTXu1cm969YolsC+LN4Q3D896q3Op6YdY6T7TK4o+Dz+4mRRGfAwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAy7+UNTAl1znvMdfF9VK3NMD7jzMB8GA1UdIwQY
MBaAFJPs54Df2kOrSoQXJ+sg1x/HZSi8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvay16bmdOX2FRNnRLaEJjbjZ5RFhIOGRsS0x3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy83ZmE5NDMtOWVhNi00MDY4LWI2YWUt
YTRkNDEzZDdmODljLzEvay16bmdOX2FRNnRLaEJjbjZ5RFhIOGRsS0x3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy83ZmE5NDMtOWVhNi00MDY4LWI2YWUtYTRkNDEzZDdmODlj
LzEvay16bmdOX2FRNnRLaEJjbjZ5RFhIOGRsS0x3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZipfYY/1
/3uQ0hYJAvP75lXyyBMTbTWxGTucc2+brw/8gWRGM+VrxTjeKtHy+bOHQ/doobBp
Jv5vA2bPy4vdhi+sFZ+dcT/dsUq3dwQmV9cN75L/ylaEJxLbw0/T+N0ry+PAUxo4
26GsZgTgjQcTlwzndfRdaDpPppe/ANp8IWGiARrx6ARO2/xHaHt2Ndutg60bDgDT
69nsks2X7C4ugeRK5UhYIH2ZD1yeDqOK1tjXpag/Z35yO3uFzhjLU/6CzcG36JL7
XmlzzjVwL30mOSm8Luebt201NE169IkcBSoPYUvY4emGioUcGnogJ+E0vi5yeRxZ
zLpxBHK6XC19YQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:41:37 2025 by rpki-client