Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.mft
File: zfy95jLRBvqtmMLBiVqHfKYBUho.mft (raw, json)
Hash identifier: a5Tqg7cItTPJq2G2SL5UIbAgDMwZ49mnqyNuyufNhcU=
Subject key identifier: B6:1B:30:F6:DE:70:D4:22:66:FC:D4:1E:61:48:9D:0A:F7:FC:E8:F9
Authority key identifier: CD:FC:BD:E6:32:D1:06:FA:AD:98:C2:C1:89:5A:87:7C:A6:01:52:1A
Certificate issuer: /CN=cdfcbde632d106faad98c2c1895a877ca601521a
Certificate serial: 019682EBC2714F5B1622A9E34911C606A850
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zfy95jLRBvqtmMLBiVqHfKYBUho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.mft
Manifest number: 14A9
Signing time: Tue 29 Apr 2025 19:00:10 +0000
Manifest this update: Tue 29 Apr 2025 19:00:10 +0000
Manifest next update: Wed 30 Apr 2025 19:00:10 +0000
Files and hashes: 1: 3OCzpqqGOlJ3RRPa9qcY9JxjkUo.roa (hash: InQFvxlV7A4HcZ9T6xcxQF/B13Yg7udCj77rsg046YE=)
2: zfy95jLRBvqtmMLBiVqHfKYBUho.crl (hash: LRMcnRMTGMlVjooqhCsZvW5X0B/fIjes9XZ///+aye4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.mft
rsync://rpki.ripe.net/repository/DEFAULT/zfy95jLRBvqtmMLBiVqHfKYBUho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:eb:c2:71:4f:5b:16:22:a9:e3:49:11:c6:06:a8:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdfcbde632d106faad98c2c1895a877ca601521a
Validity
Not Before: Apr 29 19:00:10 2025 GMT
Not After : Apr 30 19:00:10 2025 GMT
Subject: CN=b61b30f6de70d42266fcd41e61489d0af7fce8f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:82:1c:fe:0d:2f:f3:48:14:0e:d1:eb:4d:3d:
bf:9e:e0:f8:be:77:cb:b0:4e:51:22:20:f6:fe:3b:
0d:28:81:29:98:02:30:9c:bb:16:35:ac:60:c6:e8:
5c:37:df:c6:2b:2e:8f:db:d8:b7:9f:26:66:7e:e5:
c9:f0:40:82:20:2f:71:76:0f:c9:e7:c1:0c:9e:d8:
c2:63:c4:d3:87:d0:8f:34:88:af:59:3c:7b:96:a8:
5f:6a:e6:35:4f:61:8c:a1:3c:ff:c3:1a:01:88:7e:
c2:6a:05:c0:25:2b:61:b5:f0:4f:2f:f9:57:bb:36:
3b:3f:80:1a:bf:77:eb:86:3e:23:b4:6f:e5:ea:74:
e1:96:28:df:62:27:e2:2b:8b:b2:01:32:b6:e8:c2:
ef:2b:ef:3b:38:48:b0:a3:94:02:2a:f2:75:e1:77:
06:e0:6b:be:b4:7a:d7:9e:3f:be:ce:0b:66:98:80:
7a:00:7f:ab:e9:bd:bc:30:32:4d:b4:cf:a6:26:44:
e3:d3:23:e8:a7:c9:39:7d:86:74:c7:8e:4f:42:09:
87:e7:af:c1:34:6b:5d:e7:da:87:37:74:aa:a8:1d:
c6:8b:53:79:38:af:de:be:53:d9:de:b8:8e:db:cf:
22:f6:89:ad:38:2e:5a:ff:c3:e0:c3:bd:6f:89:07:
af:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:1B:30:F6:DE:70:D4:22:66:FC:D4:1E:61:48:9D:0A:F7:FC:E8:F9
X509v3 Authority Key Identifier:
keyid:CD:FC:BD:E6:32:D1:06:FA:AD:98:C2:C1:89:5A:87:7C:A6:01:52:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zfy95jLRBvqtmMLBiVqHfKYBUho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:98:0c:d0:da:6c:51:3e:90:a2:79:af:73:98:62:5f:0c:c6:
fa:b3:54:77:87:c9:67:c7:f1:fd:1f:2d:e2:5d:f9:e1:03:13:
5a:a2:50:d9:d6:44:38:a6:3e:0f:d4:70:96:10:2d:ad:87:cf:
ee:3e:77:49:e3:b5:5f:88:eb:a0:82:4b:52:3b:f2:f6:81:0b:
2c:b0:2e:dd:6c:c8:61:8e:83:47:a8:9c:41:84:86:8b:6a:c0:
c9:2b:4c:26:a7:02:4d:77:b3:5c:ae:a3:c1:b9:73:71:06:e4:
31:ad:71:6e:07:05:16:2e:78:46:5a:ef:d2:cc:9c:ca:b5:27:
8f:fe:c6:7b:5f:86:e3:1b:1c:49:b3:a1:a3:6e:67:f8:f6:cf:
fa:4a:d3:36:4c:3a:dd:60:02:ea:82:6c:4d:a4:30:bd:42:e6:
32:9b:d2:7d:08:d3:a1:c3:67:72:4e:aa:9f:a6:ec:33:99:04:
0c:c0:04:63:6d:2f:07:f4:71:4e:03:7b:d1:74:1d:57:06:29:
61:09:a8:5d:19:3a:58:1e:da:40:39:39:67:c5:16:89:6b:21:
aa:1c:f1:9e:a9:fa:10:10:58:91:79:a5:60:9c:e8:f0:a8:4b:
fb:93:76:b0:fe:1d:f2:59:90:3b:9c:05:69:1a:20:d8:35:d2:
cb:f6:9a:6c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaC68JxT1sWIqnjSRHGBqhQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkZmNiZGU2MzJkMTA2ZmFhZDk4YzJjMTg5NWE4NzdjYTYw
MTUyMWEwHhcNMjUwNDI5MTkwMDEwWhcNMjUwNDMwMTkwMDEwWjAzMTEwLwYDVQQD
EyhiNjFiMzBmNmRlNzBkNDIyNjZmY2Q0MWU2MTQ4OWQwYWY3ZmNlOGY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkYIc/g0v80gUDtHrTT2/nuD4vnfL
sE5RIiD2/jsNKIEpmAIwnLsWNaxgxuhcN9/GKy6P29i3nyZmfuXJ8ECCIC9xdg/J
58EMntjCY8TTh9CPNIivWTx7lqhfauY1T2GMoTz/wxoBiH7CagXAJSthtfBPL/lX
uzY7P4Aav3frhj4jtG/l6nThlijfYifiK4uyATK26MLvK+87OEiwo5QCKvJ14XcG
4Gu+tHrXnj++zgtmmIB6AH+r6b28MDJNtM+mJkTj0yPop8k5fYZ0x45PQgmH56/B
NGtd59qHN3SqqB3Gi1N5OK/evlPZ3riO288i9omtOC5a/8Pgw71viQev5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLYbMPbecNQiZvzUHmFInQr3/Oj5MB8GA1UdIwQY
MBaAFM38veYy0Qb6rZjCwYlah3ymAVIaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemZ5OTVqTFJCdnF0bU1MQmlWcUhmS1lCVWhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9mZTQ1Y2YtNGFkMi00MWQ5LWJiY2Et
MjAzY2ZhMjM4Njk2LzEvemZ5OTVqTFJCdnF0bU1MQmlWcUhmS1lCVWhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS9mZTQ1Y2YtNGFkMi00MWQ5LWJiY2EtMjAzY2ZhMjM4Njk2
LzEvemZ5OTVqTFJCdnF0bU1MQmlWcUhmS1lCVWhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR5gM0Nps
UT6Qonmvc5hiXwzG+rNUd4fJZ8fx/R8t4l354QMTWqJQ2dZEOKY+D9RwlhAtrYfP
7j53SeO1X4jroIJLUjvy9oELLLAu3WzIYY6DR6icQYSGi2rAyStMJqcCTXezXK6j
wblzcQbkMa1xbgcFFi54Rlrv0sycyrUnj/7Ge1+G4xscSbOho25n+PbP+krTNkw6
3WAC6oJsTaQwvULmMpvSfQjTocNnck6qn6bsM5kEDMAEY20vB/RxTgN70XQdVwYp
YQmoXRk6WB7aQDk5Z8UWiWshqhzxnqn6EBBYkXmlYJzo8KhL+5N2sP4d8lmQO5wF
aRog2DXSy/aabA==
-----END CERTIFICATE-----
Generated at Tue Apr 29 22:54:19 2025 by rpki-client