Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
File: 1zCimUHvvHp5J_ApSB4scloaZxE.mft (raw, json)
Hash identifier: ZfOBdaAzptQuYJq0fd1GnwM70da+mE2GKZfALI/51Co=
Subject key identifier: 9A:FF:B6:C8:F8:71:7F:F1:31:0B:24:66:AD:90:AF:88:78:B7:88:9E
Authority key identifier: D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
Certificate issuer: /CN=d730a29941efbc7a7927f029481e2c725a1a6711
Certificate serial: 01976997D5574097BDE95FABA5FA171AC403
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
Manifest number: 158C
Signing time: Fri 13 Jun 2025 14:00:47 +0000
Manifest this update: Fri 13 Jun 2025 14:00:47 +0000
Manifest next update: Sat 14 Jun 2025 14:00:47 +0000
Files and hashes: 1: 1zCimUHvvHp5J_ApSB4scloaZxE.crl (hash: wnc5x6eckg3P8RerLKVhU456GqtlQKVZ2E45+4AG7MY=)
2: v5B9bil7tlbUN50h6GDN8m6sKFE.roa (hash: 47YbpbDGbrGPtLvV/Gf30olGqwG6mqrNB3XSB3G5VQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:97:d5:57:40:97:bd:e9:5f:ab:a5:fa:17:1a:c4:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d730a29941efbc7a7927f029481e2c725a1a6711
Validity
Not Before: Jun 13 14:00:47 2025 GMT
Not After : Jun 14 14:00:47 2025 GMT
Subject: CN=9affb6c8f8717ff1310b2466ad90af8878b7889e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0e:d0:13:e6:28:b8:a6:e6:bd:8c:f5:a4:5b:
08:97:48:1d:32:f3:72:59:69:64:de:02:dd:b7:e7:
43:ae:3b:f1:6e:1d:88:30:f7:8f:26:d8:a3:08:4e:
08:46:97:6d:e7:ee:0c:46:e1:3f:20:7a:12:6c:52:
f6:02:16:6b:63:96:38:5b:54:2e:94:a8:0b:cc:eb:
f2:c6:ab:f4:93:8c:af:78:66:a4:d9:91:b9:5a:ba:
d9:16:7c:02:86:42:47:a6:3a:79:e0:af:03:94:cc:
30:60:3e:cb:bc:5f:ee:c9:0b:63:b3:7d:fc:33:ec:
88:dc:44:15:8d:b6:50:af:58:9f:f6:34:c2:50:86:
14:b7:3c:f5:8e:aa:a6:17:8e:b5:e8:d8:cb:5f:2f:
49:e1:5f:f3:b0:54:c3:85:0a:c0:d1:8b:e7:74:0a:
9c:b8:4c:50:e7:e0:53:bd:c6:69:7f:32:d9:79:a6:
0f:08:c8:3b:6e:cc:39:21:07:8e:0a:93:c7:03:84:
21:79:53:d4:f7:5e:d4:a1:5c:73:87:78:94:a5:f1:
8d:56:9d:32:53:cd:bb:46:31:4d:f7:05:8a:bb:7f:
77:f0:7c:0c:f3:3f:7e:ef:16:67:0f:15:05:29:0b:
a9:30:91:87:1b:5d:a7:04:ca:f0:4e:3a:c7:30:c5:
4f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:FF:B6:C8:F8:71:7F:F1:31:0B:24:66:AD:90:AF:88:78:B7:88:9E
X509v3 Authority Key Identifier:
keyid:D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:b4:f1:33:be:fd:da:5e:d5:88:40:49:d1:09:3b:0b:0a:0d:
81:7d:2e:10:29:22:66:86:3d:9a:c2:0d:b2:b0:f1:f1:92:8f:
0e:7d:bc:05:b8:7b:8e:05:59:b9:85:e4:20:4b:18:96:a1:32:
8a:47:fb:e1:6e:b3:35:b4:ab:c7:9d:aa:31:4a:38:d0:16:a5:
de:ba:59:7f:56:a7:95:66:8c:bc:f5:9d:61:26:ec:fe:0b:83:
25:b3:e8:b9:7e:be:b1:21:bf:f9:1c:ad:91:59:e1:b6:8c:fb:
f0:f0:71:db:80:49:6b:4c:c7:a5:81:f2:ce:4d:27:0d:a6:06:
67:0f:a2:e5:f5:3b:43:fb:2c:6c:fe:11:89:f0:a2:15:ea:03:
5e:3f:5b:03:5a:3e:8e:a0:e9:25:b0:fe:03:e3:91:66:e7:73:
82:6a:a0:51:a0:25:8d:3c:92:ab:95:69:a4:45:29:40:a2:34:
d0:70:67:59:92:95:7b:d3:f2:35:20:e8:c6:ec:0d:86:b1:e9:
60:61:c1:5a:a3:18:5b:05:4f:ac:9c:d3:5a:7e:49:2f:08:5f:
51:44:66:f7:85:9e:26:24:cd:04:83:6d:db:80:f5:a6:4b:16:
9f:bd:fc:5a:7e:93:ba:a9:67:b6:35:0e:76:56:54:28:3a:5d:
67:1b:a2:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpl9VXQJe96V+rpfoXGsQDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3MzBhMjk5NDFlZmJjN2E3OTI3ZjAyOTQ4MWUyYzcyNWEx
YTY3MTEwHhcNMjUwNjEzMTQwMDQ3WhcNMjUwNjE0MTQwMDQ3WjAzMTEwLwYDVQQD
Eyg5YWZmYjZjOGY4NzE3ZmYxMzEwYjI0NjZhZDkwYWY4ODc4Yjc4ODllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyA7QE+YouKbmvYz1pFsIl0gdMvNy
WWlk3gLdt+dDrjvxbh2IMPePJtijCE4IRpdt5+4MRuE/IHoSbFL2AhZrY5Y4W1Qu
lKgLzOvyxqv0k4yveGak2ZG5WrrZFnwChkJHpjp54K8DlMwwYD7LvF/uyQtjs338
M+yI3EQVjbZQr1if9jTCUIYUtzz1jqqmF4616NjLXy9J4V/zsFTDhQrA0YvndAqc
uExQ5+BTvcZpfzLZeaYPCMg7bsw5IQeOCpPHA4QheVPU917UoVxzh3iUpfGNVp0y
U827RjFN9wWKu3938HwM8z9+7xZnDxUFKQupMJGHG12nBMrwTjrHMMVPRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJr/tsj4cX/xMQskZq2Qr4h4t4ieMB8GA1UdIwQY
MBaAFNcwoplB77x6eSfwKUgeLHJaGmcRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXpDaW1VSHZ2SHA1Sl9BcFNCNHNjbG9hWnhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi82NGM1YTktYjM3OS00OTk5LWFmN2Et
M2MwZmExOGM1OGNiLzEvMXpDaW1VSHZ2SHA1Sl9BcFNCNHNjbG9hWnhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi82NGM1YTktYjM3OS00OTk5LWFmN2EtM2MwZmExOGM1OGNi
LzEvMXpDaW1VSHZ2SHA1Sl9BcFNCNHNjbG9hWnhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnbTxM779
2l7ViEBJ0Qk7CwoNgX0uECkiZoY9msINsrDx8ZKPDn28Bbh7jgVZuYXkIEsYlqEy
ikf74W6zNbSrx52qMUo40Bal3rpZf1anlWaMvPWdYSbs/guDJbPouX6+sSG/+Ryt
kVnhtoz78PBx24BJa0zHpYHyzk0nDaYGZw+i5fU7Q/ssbP4RifCiFeoDXj9bA1o+
jqDpJbD+A+ORZudzgmqgUaAljTySq5VppEUpQKI00HBnWZKVe9PyNSDoxuwNhrHp
YGHBWqMYWwVPrJzTWn5JLwhfUURm94WeJiTNBINt24D1pksWn738Wn6TuqlntjUO
dlZUKDpdZxuiLg==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:33:31 2025 by rpki-client