Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json)
Hash identifier: wUVq2orI+gcBghAUhzSCsOrGT7kAQ5CGB8kT5B03idw=
Subject key identifier: 61:96:C4:06:92:21:E2:D0:93:69:7B:8A:02:FC:BD:8E:0A:42:25:DB
Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac
Certificate serial: 019673E6D3BB7EC9B7C2C5E7D695A45FCDE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
Manifest number: 0AA7
Signing time: Sat 26 Apr 2025 21:00:29 +0000
Manifest this update: Sat 26 Apr 2025 21:00:29 +0000
Manifest next update: Sun 27 Apr 2025 21:00:29 +0000
Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: VbdvsfoXf2Lo0DqLFdnct9PladStOsQOs1qj4nIDusE=)
2: x6hLDer_XW1q_iEu4GXkzkZyC4s.roa (hash: WqVvea5/LNqbNIIZsdml33Mg9/QcNbUM12u8YdmaIWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 17:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:e6:d3:bb:7e:c9:b7:c2:c5:e7:d6:95:a4:5f:cd:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac
Validity
Not Before: Apr 26 21:00:29 2025 GMT
Not After : Apr 27 21:00:29 2025 GMT
Subject: CN=6196c4069221e2d093697b8a02fcbd8e0a4225db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:5e:9a:5d:74:f1:73:c1:b1:56:33:7e:2b:8a:
75:49:2a:74:dc:46:f8:09:18:c5:d5:6d:16:d8:99:
b5:16:be:03:b1:cd:3b:dc:91:a4:66:f1:46:9f:36:
2c:f5:1d:6c:c6:b5:4a:14:b3:1e:1f:2f:12:48:37:
d2:af:ab:9a:bf:ee:b6:c0:f2:0b:14:ee:55:c7:0a:
df:f2:93:14:77:da:d9:34:6b:7f:4d:7f:0f:60:f1:
6b:4d:9c:87:d0:fc:66:c0:90:c7:a1:0e:91:a8:e6:
c0:aa:78:7a:0e:76:26:65:5e:b3:3f:23:4b:ed:40:
bb:f6:9a:e9:e8:46:f9:ef:73:ab:81:a9:fb:11:9c:
03:1f:c8:32:9f:6c:40:56:ed:27:fe:e4:04:4d:65:
86:5f:7b:c9:9f:10:47:cf:83:7d:7c:cc:87:5a:38:
72:91:1c:07:35:48:b6:99:c4:33:be:10:8b:6d:ba:
19:34:09:ba:3c:1d:2c:f0:fe:b7:a7:bd:c2:ca:f8:
a9:7d:37:80:28:52:44:f2:55:2a:8c:b4:ed:15:80:
2a:85:9a:18:1e:3a:df:c8:b6:49:13:f9:f5:84:44:
17:94:a9:d8:1b:d1:0d:56:f9:d0:2f:b9:d0:a5:f2:
4a:2a:de:40:20:e2:c1:c2:68:56:4b:16:a2:f5:4a:
b8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:96:C4:06:92:21:E2:D0:93:69:7B:8A:02:FC:BD:8E:0A:42:25:DB
X509v3 Authority Key Identifier:
keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:c1:d9:97:96:e4:f1:0b:62:4f:61:1b:fa:5b:b8:f3:ca:5c:
8a:fb:14:d5:85:e7:05:0c:6e:fc:35:4d:a3:31:df:13:1e:2d:
ea:bf:2a:e5:ba:f4:90:e3:ab:ab:d6:cb:9b:ec:16:4d:a0:4d:
6e:e7:d8:54:3d:4b:c5:04:09:af:e0:03:3b:8b:51:90:25:70:
99:91:f2:1b:27:83:ba:80:97:0c:fd:88:dc:fc:c4:fd:78:50:
3f:e7:0d:e3:a7:ea:4a:83:29:cf:af:d9:18:9f:c9:03:45:e8:
89:f1:5e:96:b8:e3:3b:e9:48:69:68:ea:e8:6f:71:ff:79:2a:
88:2a:e2:b4:44:d4:66:da:69:33:19:ba:6f:9e:51:d2:21:d7:
59:fd:e8:fc:2a:e4:6c:73:33:c8:c1:d4:4b:22:54:79:4b:a8:
a9:11:46:a4:13:91:a2:b7:fe:2a:cc:ba:d6:74:60:b6:df:d2:
04:17:4a:fa:04:3e:f9:f9:c3:ce:dc:59:3a:bf:72:f8:d8:81:
81:82:bc:fa:e4:77:ae:33:48:b9:06:24:c2:30:52:18:e1:c8:
ec:23:dc:f8:24:9c:13:1f:6e:b1:20:80:8a:ff:50:fb:ca:3d:
c6:0e:4b:4b:1e:e7:9d:7a:08:f5:cd:b8:aa:16:0d:1b:5b:fc:
79:0b:33:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZz5tO7fsm3wsXn1pWkX83mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMzc1ZTE2YTE5MzY3ZGU5OWJiMjRhYzExNWQyNTlhMmEw
NDgxYWMwHhcNMjUwNDI2MjEwMDI5WhcNMjUwNDI3MjEwMDI5WjAzMTEwLwYDVQQD
Eyg2MTk2YzQwNjkyMjFlMmQwOTM2OTdiOGEwMmZjYmQ4ZTBhNDIyNWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA916aXXTxc8GxVjN+K4p1SSp03Eb4
CRjF1W0W2Jm1Fr4Dsc073JGkZvFGnzYs9R1sxrVKFLMeHy8SSDfSr6uav+62wPIL
FO5Vxwrf8pMUd9rZNGt/TX8PYPFrTZyH0PxmwJDHoQ6RqObAqnh6DnYmZV6zPyNL
7UC79prp6Eb573Organ7EZwDH8gyn2xAVu0n/uQETWWGX3vJnxBHz4N9fMyHWjhy
kRwHNUi2mcQzvhCLbboZNAm6PB0s8P63p73CyvipfTeAKFJE8lUqjLTtFYAqhZoY
HjrfyLZJE/n1hEQXlKnYG9ENVvnQL7nQpfJKKt5AIOLBwmhWSxai9Uq4QwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGGWxAaSIeLQk2l7igL8vY4KQiXbMB8GA1UdIwQY
MBaAFNs3Xhahk2fembskrBFdJZoqBIGsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy85YmM1YmMtOGY5OS00MmVkLWE4Y2Ut
NWI4NmJhNTg1OTIyLzEvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy85YmM1YmMtOGY5OS00MmVkLWE4Y2UtNWI4NmJhNTg1OTIy
LzEvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD8HZl5bk
8QtiT2Eb+lu488pcivsU1YXnBQxu/DVNozHfEx4t6r8q5br0kOOrq9bLm+wWTaBN
bufYVD1LxQQJr+ADO4tRkCVwmZHyGyeDuoCXDP2I3PzE/XhQP+cN46fqSoMpz6/Z
GJ/JA0XoifFelrjjO+lIaWjq6G9x/3kqiCritETUZtppMxm6b55R0iHXWf3o/Crk
bHMzyMHUSyJUeUuoqRFGpBORorf+Ksy61nRgtt/SBBdK+gQ++fnDztxZOr9y+NiB
gYK8+uR3rjNIuQYkwjBSGOHI7CPc+CScEx9usSCAiv9Q+8o9xg5LSx7nnXoI9c24
qhYNG1v8eQszOw==
-----END CERTIFICATE-----
Generated at Sat Apr 26 23:02:04 2025 by rpki-client