Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
File: zf9bPNry6tG8MwlBG_lJLNmHr7o.mft (raw, json)
Hash identifier: MwbySyFnPs+zdZItLSaq9kA/jADEiT9kN3ysv7dIrhk=
Subject key identifier: F6:4B:92:25:CB:96:11:91:0C:04:27:16:FB:2A:FC:A7:9C:50:42:E8
Authority key identifier: CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
Certificate issuer: /CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Certificate serial: 019675675F0B43FCB7954CC23FF1CD655FCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
Manifest number: 0369
Signing time: Sun 27 Apr 2025 04:00:30 +0000
Manifest this update: Sun 27 Apr 2025 04:00:30 +0000
Manifest next update: Mon 28 Apr 2025 04:00:30 +0000
Files and hashes: 1: k3TRYEDrQBrO6eEJRbpRNKXsKDY.roa (hash: 4LCjfvPAnVknZ+aHhkSXzNTjWeSMT085uGaEj2C566Q=)
2: zf9bPNry6tG8MwlBG_lJLNmHr7o.crl (hash: Tnpr26BmF8xNoAzbOyBi5hFmAJ6+I08wHESLY4XwmAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:67:5f:0b:43:fc:b7:95:4c:c2:3f:f1:cd:65:5f:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Validity
Not Before: Apr 27 04:00:30 2025 GMT
Not After : Apr 28 04:00:30 2025 GMT
Subject: CN=f64b9225cb9611910c042716fb2afca79c5042e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:57:45:da:31:72:e5:0b:db:cb:87:1d:59:4d:
3e:5d:d6:16:ce:7d:8b:b3:e3:94:08:e1:18:aa:38:
52:e1:16:66:17:97:c7:44:8b:35:0c:bd:6e:ff:72:
5c:be:d0:0e:7a:32:00:48:7f:01:0f:7d:0d:63:10:
5b:20:96:45:05:ca:7f:95:87:99:9b:a1:0f:a8:b6:
88:e6:a8:ca:2a:bf:cd:79:7f:86:50:54:40:f6:f4:
f3:59:ed:c1:eb:e8:68:fc:18:37:b7:22:cd:19:b8:
ed:72:17:f1:07:c0:7a:05:76:c6:f2:93:22:20:aa:
68:83:07:ae:84:c8:50:f6:02:76:fa:e4:8a:59:25:
f6:c6:e8:98:d9:bb:55:d3:ef:01:a2:a2:5f:eb:38:
1f:bc:04:42:26:ec:ef:19:3f:a4:08:26:0b:e8:81:
0f:76:59:60:b5:1b:78:9a:ae:5a:53:38:57:37:de:
ce:2f:2d:6c:a5:61:42:df:5f:98:d6:3f:f3:cd:9a:
63:d0:8f:9c:99:4d:24:0f:3e:1b:0b:9a:b6:16:e6:
1b:f1:e6:48:bc:44:c1:b5:ca:8b:11:8a:e8:a5:c6:
44:e9:8d:1d:fa:63:49:6a:9d:c3:f8:59:48:3f:3a:
4f:1e:03:c1:2d:76:dd:84:71:cc:b2:15:52:3b:44:
b3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:4B:92:25:CB:96:11:91:0C:04:27:16:FB:2A:FC:A7:9C:50:42:E8
X509v3 Authority Key Identifier:
keyid:CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:03:d6:15:c3:11:09:54:46:5c:10:5a:3e:77:2d:66:26:34:
18:28:62:40:c4:73:9d:51:87:8a:8c:a6:ff:ed:ba:20:03:71:
f0:ce:9f:77:02:23:40:e7:e2:3a:d3:44:d1:50:65:08:f9:95:
ce:31:d4:90:a0:4a:b9:09:39:36:92:29:88:b9:3a:f5:04:76:
01:8f:34:1e:8e:e6:6e:dd:e3:b4:ad:72:4c:1b:f2:2a:f1:32:
44:d9:f4:da:f0:1b:24:c1:2a:92:e8:5b:d9:60:88:27:ed:b1:
1a:1a:70:8b:74:b6:6b:35:a4:83:1d:91:88:11:17:ea:81:25:
ae:33:ff:04:a8:e6:4d:0e:30:a0:78:42:49:cf:ac:e9:39:74:
3a:51:0d:23:df:a6:42:aa:a9:da:47:e2:62:99:da:63:ff:91:
5a:fa:f7:9e:d9:47:f6:6d:18:06:15:6d:79:73:24:19:e7:1c:
e0:13:f4:f8:55:40:05:3f:8f:93:c6:c4:1a:08:fc:3f:10:c0:
04:58:38:dc:ca:8f:c9:32:95:ba:db:53:0a:e9:48:52:25:20:
07:56:21:c4:99:9b:4d:6b:3f:a4:3f:20:ee:20:6e:16:21:fd:
61:bf:2e:e9:9d:a3:75:ff:53:b4:25:3b:63:1d:b9:b2:71:9a:
f4:02:fe:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ1Z18LQ/y3lUzCP/HNZV/KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkZmY1YjNjZGFmMmVhZDFiYzMzMDk0MTFiZjk0OTJjZDk4
N2FmYmEwHhcNMjUwNDI3MDQwMDMwWhcNMjUwNDI4MDQwMDMwWjAzMTEwLwYDVQQD
EyhmNjRiOTIyNWNiOTYxMTkxMGMwNDI3MTZmYjJhZmNhNzljNTA0MmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy1dF2jFy5Qvby4cdWU0+XdYWzn2L
s+OUCOEYqjhS4RZmF5fHRIs1DL1u/3JcvtAOejIASH8BD30NYxBbIJZFBcp/lYeZ
m6EPqLaI5qjKKr/NeX+GUFRA9vTzWe3B6+ho/Bg3tyLNGbjtchfxB8B6BXbG8pMi
IKpogweuhMhQ9gJ2+uSKWSX2xuiY2btV0+8BoqJf6zgfvARCJuzvGT+kCCYL6IEP
dllgtRt4mq5aUzhXN97OLy1spWFC31+Y1j/zzZpj0I+cmU0kDz4bC5q2FuYb8eZI
vETBtcqLEYropcZE6Y0d+mNJap3D+FlIPzpPHgPBLXbdhHHMshVSO0SzdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPZLkiXLlhGRDAQnFvsq/KecUELoMB8GA1UdIwQY
MBaAFM3/Wzza8urRvDMJQRv5SSzZh6+6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemY5YlBOcnk2dEc4TXdsQkdfbEpMTm1IcjdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9iNzZkMzQtNWYwNy00MmQ4LWExMzEt
YTg3ODFhZGQyNDIzLzEvemY5YlBOcnk2dEc4TXdsQkdfbEpMTm1IcjdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9iNzZkMzQtNWYwNy00MmQ4LWExMzEtYTg3ODFhZGQyNDIz
LzEvemY5YlBOcnk2dEc4TXdsQkdfbEpMTm1IcjdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABQPWFcMR
CVRGXBBaPnctZiY0GChiQMRznVGHioym/+26IANx8M6fdwIjQOfiOtNE0VBlCPmV
zjHUkKBKuQk5NpIpiLk69QR2AY80Ho7mbt3jtK1yTBvyKvEyRNn02vAbJMEqkuhb
2WCIJ+2xGhpwi3S2azWkgx2RiBEX6oElrjP/BKjmTQ4woHhCSc+s6Tl0OlENI9+m
Qqqp2kfiYpnaY/+RWvr3ntlH9m0YBhVteXMkGecc4BP0+FVABT+Pk8bEGgj8PxDA
BFg43MqPyTKVuttTCulIUiUgB1YhxJmbTWs/pD8g7iBuFiH9Yb8u6Z2jdf9TtCU7
Yx25snGa9AL+wg==
-----END CERTIFICATE-----
Generated at Sun Apr 27 08:06:36 2025 by rpki-client