Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
File: zdpbTOlfoL32BUFp53rvyCZd28Q.mft (raw, json)
Hash identifier: xf5GtyfzcWdr2XfhWDPGr7VgD/F6WvTzvQibfPYdqzI=
Subject key identifier: 14:ED:BB:96:86:E1:13:45:0F:72:49:99:11:97:6B:BB:CE:37:A5:0C
Authority key identifier: CD:DA:5B:4C:E9:5F:A0:BD:F6:05:41:69:E7:7A:EF:C8:26:5D:DB:C4
Certificate issuer: /CN=cdda5b4ce95fa0bdf6054169e77aefc8265ddbc4
Certificate serial: 0196771EDDBCBF9B7E431B26492645A574B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
Manifest number: 14A2
Signing time: Sun 27 Apr 2025 12:00:33 +0000
Manifest this update: Sun 27 Apr 2025 12:00:33 +0000
Manifest next update: Mon 28 Apr 2025 12:00:33 +0000
Files and hashes: 1: 40_j8EnMOslOGeaUGeLQNCGHg64.roa (hash: BOU6u1kQjKsVBkJf+h9lI/7YbpbYLn1ZXJQhHit/Gyg=)
2: zdpbTOlfoL32BUFp53rvyCZd28Q.crl (hash: 98PVbEllHYS9//IBszwROEHwpwfAHVFZRp/PN2ZxN1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:1e:dd:bc:bf:9b:7e:43:1b:26:49:26:45:a5:74:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdda5b4ce95fa0bdf6054169e77aefc8265ddbc4
Validity
Not Before: Apr 27 12:00:33 2025 GMT
Not After : Apr 28 12:00:33 2025 GMT
Subject: CN=14edbb9686e113450f72499911976bbbce37a50c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0c:44:34:30:43:e7:11:e0:39:ca:50:63:10:
b3:45:97:85:eb:2d:b2:bd:03:2e:2e:08:f4:0a:5a:
65:d2:76:59:1d:6c:38:76:b8:6a:7e:89:1c:df:22:
e9:b9:df:b3:3f:4f:d2:0f:49:04:f2:86:0f:80:02:
dc:f0:07:1c:81:92:98:b5:42:2d:3a:23:ec:fe:28:
82:32:f7:e4:69:5f:7b:ba:8f:e2:f0:8a:7c:63:a5:
f9:c6:2b:89:af:10:93:dc:9d:80:ab:87:d5:ee:7a:
6a:27:d0:4e:cd:61:66:5e:a1:a7:13:e9:49:25:02:
5f:15:e8:8e:d4:43:14:24:9c:0c:5f:d5:c1:dd:45:
d0:51:c6:5d:61:44:4d:d7:2c:f5:48:49:79:86:dc:
76:92:f5:1c:2c:84:7b:ee:11:5d:22:22:4e:4a:cf:
4e:50:de:6a:c0:9e:da:6a:62:55:0b:06:e3:45:9b:
ba:f7:79:b4:d4:64:f6:a1:80:88:76:1d:76:3a:86:
e1:2f:db:18:ae:0f:de:dd:eb:8a:1a:f3:e5:ed:ee:
d1:09:a3:e2:9f:c4:1e:79:3d:84:4c:12:0b:41:85:
39:b3:67:6b:42:65:1f:5f:27:75:f8:7f:93:a5:2c:
b5:1c:d1:b3:d4:6f:cf:8a:2c:d1:bc:af:31:60:59:
e7:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:ED:BB:96:86:E1:13:45:0F:72:49:99:11:97:6B:BB:CE:37:A5:0C
X509v3 Authority Key Identifier:
keyid:CD:DA:5B:4C:E9:5F:A0:BD:F6:05:41:69:E7:7A:EF:C8:26:5D:DB:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:58:2b:4e:e0:c1:ff:0d:97:4d:95:ce:04:29:78:f4:13:6f:
d5:47:29:59:b8:3d:44:9f:9f:7d:ca:39:fd:05:5c:1a:16:9a:
2e:52:95:37:81:80:16:93:62:2a:3d:cc:dc:d1:9b:93:a5:2a:
63:12:17:a4:ab:e4:06:ac:68:30:67:eb:d4:0d:a4:58:e9:f1:
90:a6:f1:e9:ef:ce:a4:b9:b4:3b:0c:e0:14:a9:d1:76:b0:10:
8a:3a:bd:c7:8e:c8:97:f1:27:fa:6f:83:46:86:93:0e:6c:b0:
91:a0:50:38:b3:8a:91:0d:d1:fb:11:79:84:8e:dd:fe:05:5f:
4c:95:7b:11:63:97:be:5b:31:f8:1a:22:a3:ed:bd:3a:5d:5c:
92:03:cb:48:3b:8b:84:1e:c7:44:ee:0b:f0:3f:4d:fb:03:7f:
b0:84:98:4a:d2:8c:2c:90:bd:40:b4:32:f1:07:68:79:9c:e0:
de:83:fa:f2:c8:de:57:8c:1e:9a:1b:2f:34:2e:16:92:01:02:
51:21:63:09:b1:11:89:8d:74:bf:49:79:09:d0:75:14:d2:21:
ee:c8:77:18:d4:1e:68:ae:7a:aa:c1:32:35:84:bb:c8:b8:30:
3d:f5:c5:98:72:97:4b:9c:26:b7:f0:4a:21:23:0f:4f:57:82:
55:74:af:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ3Ht28v5t+QxsmSSZFpXSzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkZGE1YjRjZTk1ZmEwYmRmNjA1NDE2OWU3N2FlZmM4MjY1
ZGRiYzQwHhcNMjUwNDI3MTIwMDMzWhcNMjUwNDI4MTIwMDMzWjAzMTEwLwYDVQQD
EygxNGVkYmI5Njg2ZTExMzQ1MGY3MjQ5OTkxMTk3NmJiYmNlMzdhNTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQxENDBD5xHgOcpQYxCzRZeF6y2y
vQMuLgj0Clpl0nZZHWw4drhqfokc3yLpud+zP0/SD0kE8oYPgALc8AccgZKYtUIt
OiPs/iiCMvfkaV97uo/i8Ip8Y6X5xiuJrxCT3J2Aq4fV7npqJ9BOzWFmXqGnE+lJ
JQJfFeiO1EMUJJwMX9XB3UXQUcZdYURN1yz1SEl5htx2kvUcLIR77hFdIiJOSs9O
UN5qwJ7aamJVCwbjRZu693m01GT2oYCIdh12OobhL9sYrg/e3euKGvPl7e7RCaPi
n8QeeT2ETBILQYU5s2drQmUfXyd1+H+TpSy1HNGz1G/PiizRvK8xYFnnhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBTtu5aG4RNFD3JJmRGXa7vON6UMMB8GA1UdIwQY
MBaAFM3aW0zpX6C99gVBaed678gmXdvEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemRwYlRPbGZvTDMyQlVGcDUzcnZ5Q1pkMjhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC84ZTIzZTUtZGIyOC00NWVkLWI2N2Yt
MmFkZDVlNzk3Yzc1LzEvemRwYlRPbGZvTDMyQlVGcDUzcnZ5Q1pkMjhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC84ZTIzZTUtZGIyOC00NWVkLWI2N2YtMmFkZDVlNzk3Yzc1
LzEvemRwYlRPbGZvTDMyQlVGcDUzcnZ5Q1pkMjhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuVgrTuDB
/w2XTZXOBCl49BNv1UcpWbg9RJ+ffco5/QVcGhaaLlKVN4GAFpNiKj3M3NGbk6Uq
YxIXpKvkBqxoMGfr1A2kWOnxkKbx6e/OpLm0OwzgFKnRdrAQijq9x47Il/En+m+D
RoaTDmywkaBQOLOKkQ3R+xF5hI7d/gVfTJV7EWOXvlsx+Boio+29Ol1ckgPLSDuL
hB7HRO4L8D9N+wN/sISYStKMLJC9QLQy8QdoeZzg3oP68sjeV4wemhsvNC4WkgEC
USFjCbERiY10v0l5CdB1FNIh7sh3GNQeaK56qsEyNYS7yLgwPfXFmHKXS5wmt/BK
ISMPT1eCVXSvRw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 15:03:54 2025 by rpki-client