Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
File: Fzn5ZM1In80lALN2gdWEedVTyKs.mft (raw, json)
Hash identifier: f56r4vpVzEH/B9kg2C2gZQg8g+gKarV3KnKyaZ+88iM=
Subject key identifier: 83:E1:73:CD:33:21:87:B6:F3:93:C3:41:3F:10:01:73:0C:8E:AA:F4
Authority key identifier: 17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB
Certificate issuer: /CN=1739f964cd489fcd2500b37681d58479d553c8ab
Certificate serial: 0197696191D2D4BC5BCFA203D21697DED129
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
Manifest number: 102B
Signing time: Fri 13 Jun 2025 13:01:31 +0000
Manifest this update: Fri 13 Jun 2025 13:01:31 +0000
Manifest next update: Sat 14 Jun 2025 13:01:31 +0000
Files and hashes: 1: E7khi_dy64NAplQCGIYWONm6XWs.roa (hash: B7pDURftKO1TVaIjuNJYi/KUiJRc83FFsiFwUHpeKCw=)
2: Fzn5ZM1In80lALN2gdWEedVTyKs.crl (hash: jlt3UqQEVzB064GKOYy/H8Z7fCaPRfqlxyDvVMFJ2RY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:91:d2:d4:bc:5b:cf:a2:03:d2:16:97:de:d1:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1739f964cd489fcd2500b37681d58479d553c8ab
Validity
Not Before: Jun 13 13:01:31 2025 GMT
Not After : Jun 14 13:01:31 2025 GMT
Subject: CN=83e173cd332187b6f393c3413f1001730c8eaaf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:23:8a:f4:6c:3e:82:d2:3f:c4:1d:ee:67:fc:
e1:ab:5f:7c:2b:20:84:d0:56:9b:55:08:f9:3c:e4:
71:7d:d4:62:a2:7d:67:5e:91:40:cf:c8:17:7a:2b:
bb:5a:27:69:d9:50:fc:9a:c9:b4:8a:e7:4b:92:1f:
52:90:04:cb:1b:5c:02:4c:9d:6b:78:ff:54:c1:af:
93:c2:e1:0e:a4:09:e3:d3:31:18:d8:4f:d2:2c:71:
17:d4:a9:3a:76:d9:fb:c6:e2:3e:e6:8a:ae:1a:cd:
20:ef:e6:07:c6:5b:8c:43:49:c4:93:36:70:ba:45:
63:d7:a7:37:63:a1:84:05:06:a6:ee:0d:f6:79:11:
b0:3e:9d:8c:d8:86:38:f2:a2:a4:a1:30:c5:bf:91:
ec:4a:b4:8c:c5:f9:a8:4f:ea:c1:5f:d9:9b:05:a3:
0f:ef:58:51:31:8b:88:9b:26:50:0b:94:a0:6a:ae:
54:57:7a:e5:5b:d4:0a:f8:24:90:06:81:d0:51:7c:
33:b5:37:9f:61:54:03:1c:ca:35:db:fd:97:cc:57:
a4:d8:32:96:27:03:22:02:e4:6f:8d:8c:1c:a8:3e:
14:89:22:a8:60:f0:12:28:e7:8d:4c:f9:e7:b7:f0:
41:a1:f7:a9:38:a6:ca:b6:04:2e:d2:72:1c:fa:c2:
61:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E1:73:CD:33:21:87:B6:F3:93:C3:41:3F:10:01:73:0C:8E:AA:F4
X509v3 Authority Key Identifier:
keyid:17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:33:3c:da:c3:7d:9f:a6:9e:32:76:4c:b0:17:2d:7a:97:30:
6c:83:53:3f:62:f0:c6:b5:52:83:95:61:a6:db:22:69:e7:61:
d4:e1:6d:8f:f7:2d:9f:34:cd:c4:21:04:9f:1f:da:a5:43:01:
bd:b7:c0:dc:26:1f:eb:21:e0:60:f5:58:6f:31:24:c9:62:dc:
a5:9a:0c:ca:99:cb:9e:0c:14:28:94:ce:c0:56:f9:83:0c:99:
45:c1:18:b5:b6:ad:04:d1:f6:b7:bd:6d:17:6e:f3:a8:4a:15:
72:32:7e:a6:ca:3c:c1:fc:eb:38:ef:76:db:fc:a5:1b:3f:06:
f6:05:a9:db:5c:21:42:07:ce:87:93:3f:3e:3a:8f:b6:d8:a6:
3c:86:c7:64:3c:34:c3:89:40:0b:d6:f1:14:b7:dc:d5:80:62:
34:8a:11:84:d8:e7:8f:0b:48:9b:0e:f6:a9:a0:93:96:2c:5f:
ae:c2:0b:db:45:8a:8b:1a:cc:ff:15:a6:95:22:fe:5d:ed:2d:
60:3a:95:41:2c:0d:ee:a9:4f:03:2b:74:cb:73:54:eb:98:89:
56:d3:17:1f:56:8e:c8:20:cd:5b:1f:ee:4f:d0:ba:8a:8f:e8:
5d:f9:89:61:26:ec:03:94:b1:f9:5a:ff:35:6c:85:57:6c:0e:
2d:6a:bb:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpYZHS1Lxbz6ID0haX3tEpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3MzlmOTY0Y2Q0ODlmY2QyNTAwYjM3NjgxZDU4NDc5ZDU1
M2M4YWIwHhcNMjUwNjEzMTMwMTMxWhcNMjUwNjE0MTMwMTMxWjAzMTEwLwYDVQQD
Eyg4M2UxNzNjZDMzMjE4N2I2ZjM5M2MzNDEzZjEwMDE3MzBjOGVhYWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCOK9Gw+gtI/xB3uZ/zhq198KyCE
0FabVQj5PORxfdRion1nXpFAz8gXeiu7Widp2VD8msm0iudLkh9SkATLG1wCTJ1r
eP9Uwa+TwuEOpAnj0zEY2E/SLHEX1Kk6dtn7xuI+5oquGs0g7+YHxluMQ0nEkzZw
ukVj16c3Y6GEBQam7g32eRGwPp2M2IY48qKkoTDFv5HsSrSMxfmoT+rBX9mbBaMP
71hRMYuImyZQC5Sgaq5UV3rlW9QK+CSQBoHQUXwztTefYVQDHMo12/2XzFek2DKW
JwMiAuRvjYwcqD4UiSKoYPASKOeNTPnnt/BBofepOKbKtgQu0nIc+sJh7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIPhc80zIYe285PDQT8QAXMMjqr0MB8GA1UdIwQY
MBaAFBc5+WTNSJ/NJQCzdoHVhHnVU8irMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRnpuNVpNMUluODBsQUxOMmdkV0VlZFZUeUtzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8zOTQ0NTUtNjRiNi00ZTEwLWE3OTIt
NzJkMWZmZTI1YmQzLzEvRnpuNVpNMUluODBsQUxOMmdkV0VlZFZUeUtzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC8zOTQ0NTUtNjRiNi00ZTEwLWE3OTItNzJkMWZmZTI1YmQz
LzEvRnpuNVpNMUluODBsQUxOMmdkV0VlZFZUeUtzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhjM82sN9
n6aeMnZMsBctepcwbINTP2LwxrVSg5Vhptsiaedh1OFtj/ctnzTNxCEEnx/apUMB
vbfA3CYf6yHgYPVYbzEkyWLcpZoMypnLngwUKJTOwFb5gwyZRcEYtbatBNH2t71t
F27zqEoVcjJ+pso8wfzrOO922/ylGz8G9gWp21whQgfOh5M/PjqPttimPIbHZDw0
w4lAC9bxFLfc1YBiNIoRhNjnjwtImw72qaCTlixfrsIL20WKixrM/xWmlSL+Xe0t
YDqVQSwN7qlPAyt0y3NU65iJVtMXH1aOyCDNWx/uT9C6io/oXfmJYSbsA5Sx+Vr/
NWyFV2wOLWq7Ng==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:27:28 2025 by rpki-client