Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
File: mzYg1nmOfrGGY5xFSKBpavbjBYk.mft (raw, json)
Hash identifier: TWs8GDAKhK47oy8q73Leg8YSgazy+6FtMRgeXESykrU=
Subject key identifier: E0:92:52:54:17:D8:AC:BB:01:92:AE:34:BD:5E:56:A4:0C:9A:70:A0
Authority key identifier: 9B:36:20:D6:79:8E:7E:B1:86:63:9C:45:48:A0:69:6A:F6:E3:05:89
Certificate issuer: /CN=9b3620d6798e7eb186639c4548a0696af6e30589
Certificate serial: 0197782F39EDE304ECCADCCA0455C15B5FC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
Manifest number: 053A
Signing time: Mon 16 Jun 2025 10:00:50 +0000
Manifest this update: Mon 16 Jun 2025 10:00:50 +0000
Manifest next update: Tue 17 Jun 2025 10:00:50 +0000
Files and hashes: 1: Q41X_j-X6MEBsrlAhkOF1wVzhbk.roa (hash: YBskpCx6COz+43ChHeDsLz5PAi6tPK0b2nqeQTQNIwI=)
2: mzYg1nmOfrGGY5xFSKBpavbjBYk.crl (hash: JuWw1ZshPOMyBATXKR4J7WoTz0cKdhPMHwzdEx3VYPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:2f:39:ed:e3:04:ec:ca:dc:ca:04:55:c1:5b:5f:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b3620d6798e7eb186639c4548a0696af6e30589
Validity
Not Before: Jun 16 10:00:50 2025 GMT
Not After : Jun 17 10:00:50 2025 GMT
Subject: CN=e092525417d8acbb0192ae34bd5e56a40c9a70a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fb:68:b1:9d:15:50:2f:29:ea:23:e7:ba:85:
00:f5:e3:61:85:60:ff:b0:86:6d:c2:70:03:2c:44:
c1:58:19:da:63:0b:50:ba:ca:cc:41:2e:02:c1:19:
9e:18:ac:7a:f7:ec:53:30:52:96:7c:77:d4:b0:49:
47:a3:1e:a1:49:5a:c3:0f:b5:a9:34:5a:8d:42:e0:
57:66:1d:78:3f:65:e4:4d:cb:52:4c:ef:78:f0:d6:
13:56:3b:69:00:a4:db:94:6c:46:16:3b:99:03:1b:
e3:8f:89:42:36:21:35:df:6f:05:54:80:01:6c:5d:
5d:8a:01:5c:0d:2a:d3:33:37:c5:fb:31:e6:59:69:
38:39:56:92:9b:36:8b:51:ea:23:88:d1:1b:2f:79:
39:36:7a:8c:dd:74:0c:f5:3f:89:28:dd:50:17:f0:
db:8c:3c:60:d5:e6:e4:c0:5d:73:76:08:87:ec:8d:
8f:74:fc:5f:0e:c0:64:b0:bd:4a:1e:db:c8:cc:57:
77:84:0e:e5:0f:e0:d5:33:6d:86:d9:4f:e9:1c:e7:
7a:27:d9:94:95:c5:18:c5:2e:da:f9:51:24:95:50:
c1:0f:a4:ec:93:c4:64:75:63:ef:4a:87:67:61:c1:
48:be:1a:71:88:c9:31:c9:ab:57:97:bb:5d:7b:4f:
c4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:92:52:54:17:D8:AC:BB:01:92:AE:34:BD:5E:56:A4:0C:9A:70:A0
X509v3 Authority Key Identifier:
keyid:9B:36:20:D6:79:8E:7E:B1:86:63:9C:45:48:A0:69:6A:F6:E3:05:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:07:fd:17:f0:79:73:14:6f:39:fa:84:17:50:99:ef:62:b4:
74:5e:1f:78:7e:85:92:5d:be:17:a9:99:2d:af:17:78:00:a4:
4e:45:37:e4:e3:06:5a:a4:51:23:bc:1d:de:8e:2a:08:aa:9f:
21:3e:d0:ad:ca:34:d2:5e:3c:77:d7:af:3a:a1:eb:f3:2f:0d:
68:ff:dc:49:1a:c3:a7:b7:9b:72:df:32:6f:b8:bf:7b:b5:c5:
73:d1:e3:4d:45:f9:82:cb:4e:98:6a:bd:54:ce:88:0e:15:4a:
c9:ab:17:c7:fc:31:f3:a0:6a:bf:da:4c:9a:5f:d1:ad:3d:6c:
72:d5:f5:51:b8:e9:8e:c0:49:6e:e8:bd:91:64:78:c3:c7:02:
a5:38:29:01:3d:45:f4:01:33:59:f5:be:34:be:49:c3:77:81:
7c:7b:89:17:1f:d6:08:0a:ae:d7:39:af:09:5f:6e:18:c3:8f:
b8:58:9a:ad:a4:90:40:94:f5:6f:68:4d:ab:80:fe:e4:f3:3b:
34:22:04:7a:de:d1:c9:6d:ad:6a:57:0b:5d:2f:22:14:75:ee:
4f:9b:ce:26:ba:a0:23:b6:7d:ea:6a:81:67:ba:b9:f5:1d:f2:
05:72:3c:ad:d4:6f:6c:39:17:6c:89:8b:1b:0c:5c:83:05:19:
47:91:88:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd4Lznt4wTsytzKBFXBW1/HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliMzYyMGQ2Nzk4ZTdlYjE4NjYzOWM0NTQ4YTA2OTZhZjZl
MzA1ODkwHhcNMjUwNjE2MTAwMDUwWhcNMjUwNjE3MTAwMDUwWjAzMTEwLwYDVQQD
EyhlMDkyNTI1NDE3ZDhhY2JiMDE5MmFlMzRiZDVlNTZhNDBjOWE3MGEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/tosZ0VUC8p6iPnuoUA9eNhhWD/
sIZtwnADLETBWBnaYwtQusrMQS4CwRmeGKx69+xTMFKWfHfUsElHox6hSVrDD7Wp
NFqNQuBXZh14P2XkTctSTO948NYTVjtpAKTblGxGFjuZAxvjj4lCNiE1328FVIAB
bF1digFcDSrTMzfF+zHmWWk4OVaSmzaLUeojiNEbL3k5NnqM3XQM9T+JKN1QF/Db
jDxg1ebkwF1zdgiH7I2PdPxfDsBksL1KHtvIzFd3hA7lD+DVM22G2U/pHOd6J9mU
lcUYxS7a+VEklVDBD6Tsk8RkdWPvSodnYcFIvhpxiMkxyatXl7tde0/EkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOCSUlQX2Ky7AZKuNL1eVqQMmnCgMB8GA1UdIwQY
MBaAFJs2INZ5jn6xhmOcRUigaWr24wWJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXpZZzFubU9mckdHWTV4RlNLQnBhdmJqQllrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS82YjYwNGItNGVlZC00MzkzLThlOGMt
Y2JhMDYzMWYyOTNmLzEvbXpZZzFubU9mckdHWTV4RlNLQnBhdmJqQllrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS82YjYwNGItNGVlZC00MzkzLThlOGMtY2JhMDYzMWYyOTNm
LzEvbXpZZzFubU9mckdHWTV4RlNLQnBhdmJqQllrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlAf9F/B5
cxRvOfqEF1CZ72K0dF4feH6Fkl2+F6mZLa8XeACkTkU35OMGWqRRI7wd3o4qCKqf
IT7Qrco00l48d9evOqHr8y8NaP/cSRrDp7ebct8yb7i/e7XFc9HjTUX5gstOmGq9
VM6IDhVKyasXx/wx86Bqv9pMml/RrT1sctX1UbjpjsBJbui9kWR4w8cCpTgpAT1F
9AEzWfW+NL5Jw3eBfHuJFx/WCAqu1zmvCV9uGMOPuFiaraSQQJT1b2hNq4D+5PM7
NCIEet7RyW2talcLXS8iFHXuT5vOJrqgI7Z96mqBZ7q59R3yBXI8rdRvbDkXbImL
GwxcgwUZR5GI8A==
-----END CERTIFICATE-----
Generated at Mon Jun 16 14:43:24 2025 by rpki-client