Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
File: 0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft (raw, json)
Hash identifier: 4EAUFsPjZ6zUdKyMBPppKlkKitKNs9j5EoxRtMDfL00=
Subject key identifier: 20:CC:04:5A:CC:B6:AB:FD:07:34:07:01:1A:F3:3B:CC:42:FA:22:7F
Authority key identifier: D1:99:3F:78:CA:E4:45:9A:9B:9E:26:89:AD:30:F0:BC:44:CC:67:24
Certificate issuer: /CN=d1993f78cae4459a9b9e2689ad30f0bc44cc6724
Certificate serial: 0196C34C6E96E6C87882EE1113E7776F1B0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
Manifest number: 0289
Signing time: Mon 12 May 2025 07:01:28 +0000
Manifest this update: Mon 12 May 2025 07:01:28 +0000
Manifest next update: Tue 13 May 2025 07:01:28 +0000
Files and hashes: 1: 0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl (hash: 9ye9ozwjPPUgbrmXK+caCitFmAg7sZjtN4OgdvylwkQ=)
2: 3P6wXNJcDC3b35lAwjjqX-1dpME.roa (hash: u7hgo1u27j1RyUhAH8Or7hL0YQ+vaU+na5DgQVVElfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 07:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4c:6e:96:e6:c8:78:82:ee:11:13:e7:77:6f:1b:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1993f78cae4459a9b9e2689ad30f0bc44cc6724
Validity
Not Before: May 12 07:01:28 2025 GMT
Not After : May 13 07:01:28 2025 GMT
Subject: CN=20cc045accb6abfd073407011af33bcc42fa227f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:3a:14:d7:77:51:61:63:d4:72:81:28:cf:0f:
bb:c7:11:ea:36:cf:08:0f:20:c8:5e:7f:f2:dc:99:
c5:cf:9f:4a:e3:57:26:68:84:28:40:9a:dd:dd:f5:
bf:c0:44:1a:ea:02:c7:ec:dc:4b:56:0d:d6:8b:66:
19:49:4c:eb:f0:9c:78:51:f1:f4:a3:bf:ef:d3:06:
dc:0e:88:2e:65:11:7f:41:74:21:5d:8a:96:ee:d8:
e1:74:15:f7:30:45:50:7e:5f:9b:4f:17:3d:4f:31:
af:14:ed:7d:e2:61:29:43:cc:37:19:d2:5b:54:01:
12:b3:84:5f:6f:44:1e:e4:e8:53:2a:17:4b:64:f5:
43:72:be:41:a6:20:01:c7:6f:46:ec:fd:5d:7e:7d:
82:d9:9f:e9:56:82:62:3a:5e:37:61:f4:a0:05:c6:
c2:aa:c9:05:f6:28:b1:af:5f:f8:d8:43:50:a5:61:
92:f1:2b:62:d5:31:1e:7e:b1:cc:e2:fd:37:d3:3f:
c4:3f:62:25:b6:be:a7:02:dc:1e:e3:73:71:f1:bf:
71:ab:24:d2:22:b7:ae:b3:4c:cc:88:47:5b:77:20:
b0:20:57:81:63:c5:59:89:58:37:25:ff:68:2a:d8:
3b:d3:e9:9d:55:03:7c:46:69:4a:be:60:6b:f2:e8:
e3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:CC:04:5A:CC:B6:AB:FD:07:34:07:01:1A:F3:3B:CC:42:FA:22:7F
X509v3 Authority Key Identifier:
keyid:D1:99:3F:78:CA:E4:45:9A:9B:9E:26:89:AD:30:F0:BC:44:CC:67:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:19:f0:b3:8a:76:25:4b:a1:77:1a:68:9c:b4:dc:f5:3c:3b:
4f:fd:a3:73:12:fa:a3:0f:13:3c:29:a7:46:0c:68:20:f9:92:
61:84:a5:37:65:2f:0e:86:14:72:90:ee:90:94:42:57:70:b4:
1b:64:4f:2f:2d:4d:d3:2b:2c:57:0d:e7:14:30:ba:fc:93:6a:
44:35:be:08:bc:51:6f:fa:43:71:1a:ef:40:cf:20:f8:0a:d6:
5f:7b:59:6b:b9:22:35:97:fd:85:ae:88:6b:02:c7:87:c2:c8:
73:a4:ba:26:b8:97:bd:cd:dd:0d:90:97:f9:41:d8:91:70:62:
c7:1c:66:fc:d2:33:cb:e7:14:04:91:48:be:7f:d4:52:da:d1:
8a:79:99:ef:ad:ae:45:ef:c4:27:d3:f4:15:16:d5:e6:be:5a:
35:3c:17:04:fa:82:e7:55:fa:de:b8:e3:0d:ef:9a:22:79:a1:
50:d7:25:06:e3:1e:08:c8:58:59:e0:89:0c:1e:fc:52:23:5a:
60:a4:55:b1:a5:f3:c0:d9:a9:d9:1d:36:e0:4b:f9:84:fe:32:
10:3e:bd:8a:eb:71:fc:23:f7:8d:c7:db:03:ae:25:f5:f8:2d:
f6:7e:0f:d8:be:7e:12:fe:d8:c7:a9:be:cf:93:05:74:2c:9d:
ed:d6:d4:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbDTG6W5sh4gu4RE+d3bxsOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxOTkzZjc4Y2FlNDQ1OWE5YjllMjY4OWFkMzBmMGJjNDRj
YzY3MjQwHhcNMjUwNTEyMDcwMTI4WhcNMjUwNTEzMDcwMTI4WjAzMTEwLwYDVQQD
EygyMGNjMDQ1YWNjYjZhYmZkMDczNDA3MDExYWYzM2JjYzQyZmEyMjdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1zoU13dRYWPUcoEozw+7xxHqNs8I
DyDIXn/y3JnFz59K41cmaIQoQJrd3fW/wEQa6gLH7NxLVg3Wi2YZSUzr8Jx4UfH0
o7/v0wbcDoguZRF/QXQhXYqW7tjhdBX3MEVQfl+bTxc9TzGvFO194mEpQ8w3GdJb
VAESs4Rfb0Qe5OhTKhdLZPVDcr5BpiABx29G7P1dfn2C2Z/pVoJiOl43YfSgBcbC
qskF9iixr1/42ENQpWGS8Sti1TEefrHM4v030z/EP2Iltr6nAtwe43Nx8b9xqyTS
Ireus0zMiEdbdyCwIFeBY8VZiVg3Jf9oKtg70+mdVQN8RmlKvmBr8ujjeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCDMBFrMtqv9BzQHARrzO8xC+iJ/MB8GA1UdIwQY
MBaAFNGZP3jK5EWam54mia0w8LxEzGckMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFprX2VNcmtSWnFibmlhSnJURHd2RVRNWnlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC8yZWJjNzktN2I5NC00YmY4LTkxMzMt
NGIwNTc3NGRlMzcxLzEvMFprX2VNcmtSWnFibmlhSnJURHd2RVRNWnlRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC8yZWJjNzktN2I5NC00YmY4LTkxMzMtNGIwNTc3NGRlMzcx
LzEvMFprX2VNcmtSWnFibmlhSnJURHd2RVRNWnlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZhnws4p2
JUuhdxponLTc9Tw7T/2jcxL6ow8TPCmnRgxoIPmSYYSlN2UvDoYUcpDukJRCV3C0
G2RPLy1N0yssVw3nFDC6/JNqRDW+CLxRb/pDcRrvQM8g+ArWX3tZa7kiNZf9ha6I
awLHh8LIc6S6JriXvc3dDZCX+UHYkXBixxxm/NIzy+cUBJFIvn/UUtrRinmZ762u
Re/EJ9P0FRbV5r5aNTwXBPqC51X63rjjDe+aInmhUNclBuMeCMhYWeCJDB78UiNa
YKRVsaXzwNmp2R024Ev5hP4yED69iutx/CP3jcfbA64l9fgt9n4P2L5+Ev7Yx6m+
z5MFdCyd7dbUng==
-----END CERTIFICATE-----
Generated at Mon May 12 16:02:47 2025 by rpki-client