Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
File: Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft (raw, json)
Hash identifier: 4ksiaeoT0vdtgSUV4S3ObgbEFzTSlqqZ0FDPbfEYxxQ=
Subject key identifier: 7A:CD:83:34:16:51:45:AA:C7:F9:D1:37:D4:08:F6:5E:A1:01:DB:26
Authority key identifier: 67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27
Certificate issuer: /CN=6777a62846df4edbe5666b89e8420e919ab08627
Certificate serial: 01976DABC2FDBDA4E1F1ED8CACA951CA016C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
Manifest number: 14EA
Signing time: Sat 14 Jun 2025 09:01:02 +0000
Manifest this update: Sat 14 Jun 2025 09:01:02 +0000
Manifest next update: Sun 15 Jun 2025 09:01:02 +0000
Files and hashes: 1: Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl (hash: anxmmKQsNzVVGARvN4ulkhso0SB8MP7dE0LXfRY80o4=)
2: ZBPuASXAJcjpb4z2Gk47z8Bokws.roa (hash: xXQRbhIxvcjZLo2Nk1OZPyhXjwNTzt2gl2oGbinvPSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:c2:fd:bd:a4:e1:f1:ed:8c:ac:a9:51:ca:01:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6777a62846df4edbe5666b89e8420e919ab08627
Validity
Not Before: Jun 14 09:01:02 2025 GMT
Not After : Jun 15 09:01:02 2025 GMT
Subject: CN=7acd8334165145aac7f9d137d408f65ea101db26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:90:5f:74:d5:c1:bd:35:17:68:8e:31:4e:74:
fc:de:31:39:4d:dd:b8:05:5b:6c:64:57:59:e2:7f:
2c:b7:16:e7:6d:69:57:8c:dc:62:81:27:ce:9d:8a:
78:cd:d6:53:d9:84:8e:a9:eb:5d:b2:24:71:96:4b:
fe:fa:c7:92:a4:9c:6e:e4:1d:0b:f2:41:8b:b6:d1:
86:60:5a:e3:99:0b:65:00:1b:e1:c8:4c:28:a0:7c:
6e:2f:57:9c:1b:11:1d:92:6d:5c:b6:c2:86:78:0f:
e2:72:16:1a:7f:cc:f2:f6:d5:d8:3e:76:de:8a:f3:
31:6f:d0:02:79:1f:64:47:04:35:78:9f:5a:41:ef:
c8:ce:c3:ac:41:78:c8:30:e9:c0:a6:ca:06:fd:7a:
6f:97:1e:59:e8:72:ce:76:c8:69:11:1e:60:39:77:
cc:eb:a8:1d:fb:15:2d:af:ae:17:38:d6:e9:54:9c:
f8:1f:f4:a6:a1:ef:a9:f9:fb:ca:d8:92:c4:a1:a8:
89:7e:20:2c:2d:54:40:3b:96:d8:8d:c7:9e:80:49:
e1:b6:27:cf:12:3f:7b:9e:88:88:83:48:07:06:18:
24:11:6a:37:c5:55:d0:09:68:33:cf:a0:c8:44:20:
91:dd:ae:4c:e1:36:e4:c4:86:5f:54:03:80:ba:9a:
2d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:CD:83:34:16:51:45:AA:C7:F9:D1:37:D4:08:F6:5E:A1:01:DB:26
X509v3 Authority Key Identifier:
keyid:67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:ad:50:4c:18:6e:bf:66:19:fe:8f:80:da:65:da:58:70:29:
06:7e:ce:89:88:54:b8:45:2b:d7:7c:dd:42:1f:61:d9:53:8a:
c5:7c:53:f3:8b:a2:d1:e1:1c:ea:c9:cc:9a:d4:6a:77:8c:c1:
a3:90:f5:0d:0c:12:3d:e6:e3:dd:9c:1f:fa:c2:a9:af:57:26:
2f:18:86:0f:0a:61:cd:c1:63:1e:e1:5e:28:10:b6:36:e6:bd:
f4:c0:2a:25:55:cc:9d:41:c5:bd:34:a2:3f:5e:73:67:2d:c2:
32:e4:43:86:ea:e3:ee:80:da:d4:7f:8e:5b:c0:fc:d7:fe:4d:
4e:fe:01:3e:c6:dc:43:af:3a:df:1b:04:ce:4f:c4:d2:47:f8:
84:07:fc:d2:dc:18:17:45:8a:0a:82:88:f8:51:9b:dd:b8:32:
8f:04:d3:bd:f7:66:f8:71:8e:54:fa:4f:07:c0:49:06:d7:a0:
fb:08:be:07:9f:d0:59:b5:c3:8e:f3:45:6f:60:dd:70:c5:93:
be:8b:60:12:63:fa:f5:db:7f:b3:69:11:a5:35:47:3f:5c:ed:
7a:9f:7f:ab:ac:80:45:a2:3b:ab:0a:dc:af:81:db:e2:31:5d:
9c:d1:39:cd:1a:8e:06:65:01:1a:9e:bf:19:13:38:5d:ed:f7:
e3:7a:ef:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtq8L9vaTh8e2MrKlRygFsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3NzdhNjI4NDZkZjRlZGJlNTY2NmI4OWU4NDIwZTkxOWFi
MDg2MjcwHhcNMjUwNjE0MDkwMTAyWhcNMjUwNjE1MDkwMTAyWjAzMTEwLwYDVQQD
Eyg3YWNkODMzNDE2NTE0NWFhYzdmOWQxMzdkNDA4ZjY1ZWExMDFkYjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5BfdNXBvTUXaI4xTnT83jE5Td24
BVtsZFdZ4n8stxbnbWlXjNxigSfOnYp4zdZT2YSOqetdsiRxlkv++seSpJxu5B0L
8kGLttGGYFrjmQtlABvhyEwooHxuL1ecGxEdkm1ctsKGeA/ichYaf8zy9tXYPnbe
ivMxb9ACeR9kRwQ1eJ9aQe/IzsOsQXjIMOnApsoG/Xpvlx5Z6HLOdshpER5gOXfM
66gd+xUtr64XONbpVJz4H/Smoe+p+fvK2JLEoaiJfiAsLVRAO5bYjceegEnhtifP
Ej97noiIg0gHBhgkEWo3xVXQCWgzz6DIRCCR3a5M4TbkxIZfVAOAupotfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHrNgzQWUUWqx/nRN9QI9l6hAdsmMB8GA1UdIwQY
MBaAFGd3pihG307b5WZriehCDpGasIYnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjNlbUtFYmZUdHZsWm11SjZFSU9rWnF3aGljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9jYjM3M2YtNzY0ZC00NTMyLTgzMzMt
NjJkOTRhZjgwMWI1LzEvWjNlbUtFYmZUdHZsWm11SjZFSU9rWnF3aGljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9jYjM3M2YtNzY0ZC00NTMyLTgzMzMtNjJkOTRhZjgwMWI1
LzEvWjNlbUtFYmZUdHZsWm11SjZFSU9rWnF3aGljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMK1QTBhu
v2YZ/o+A2mXaWHApBn7OiYhUuEUr13zdQh9h2VOKxXxT84ui0eEc6snMmtRqd4zB
o5D1DQwSPebj3Zwf+sKpr1cmLxiGDwphzcFjHuFeKBC2Nua99MAqJVXMnUHFvTSi
P15zZy3CMuRDhurj7oDa1H+OW8D81/5NTv4BPsbcQ6863xsEzk/E0kf4hAf80twY
F0WKCoKI+FGb3bgyjwTTvfdm+HGOVPpPB8BJBteg+wi+B5/QWbXDjvNFb2DdcMWT
votgEmP69dt/s2kRpTVHP1ztep9/q6yARaI7qwrcr4Hb4jFdnNE5zRqOBmUBGp6/
GRM4Xe3343rvdg==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:44:17 2025 by rpki-client