Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
File: rz9wBQP0ByCoL3bvFc2mICLx-ak.mft (raw, json)
Hash identifier: WLRtJSVBZ+VZqZFjhUvJ76GGf9BvHy1PUae/NV3+BDA=
Subject key identifier: 63:8D:31:13:0F:E8:E9:AD:04:F8:D9:BD:B9:25:E4:B9:3F:4B:A3:95
Authority key identifier: AF:3F:70:05:03:F4:07:20:A8:2F:76:EF:15:CD:A6:20:22:F1:F9:A9
Certificate issuer: /CN=af3f700503f40720a82f76ef15cda62022f1f9a9
Certificate serial: 019676B0CDF43308FBC6BF560EE448F43ABE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
Manifest number: 0BD5
Signing time: Sun 27 Apr 2025 10:00:20 +0000
Manifest this update: Sun 27 Apr 2025 10:00:20 +0000
Manifest next update: Mon 28 Apr 2025 10:00:20 +0000
Files and hashes: 1: rz9wBQP0ByCoL3bvFc2mICLx-ak.crl (hash: 3gX+0AHzIxKdnYa+fpotZkbvDcJdGP4UEljDdr3At9c=)
2: zHaHHwpWkvwMR4EBkRKLj2nL7g4.roa (hash: dEmOAj28ftGGpyQRnDV2quElsA9Yrv1JJIOo7l9XjEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 10:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:b0:cd:f4:33:08:fb:c6:bf:56:0e:e4:48:f4:3a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3f700503f40720a82f76ef15cda62022f1f9a9
Validity
Not Before: Apr 27 10:00:20 2025 GMT
Not After : Apr 28 10:00:20 2025 GMT
Subject: CN=638d31130fe8e9ad04f8d9bdb925e4b93f4ba395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b5:4d:3b:98:da:21:73:a7:e0:18:25:6a:42:
dc:41:da:8a:66:9d:db:fb:e9:6e:67:4f:45:41:2e:
8c:59:92:5e:c6:bc:19:04:75:37:c3:1a:65:22:b3:
fe:21:4a:98:ef:4a:da:dd:21:24:d3:63:4c:b6:d4:
9a:af:14:ce:12:c9:ec:cb:7f:d1:a7:43:72:92:70:
8b:0b:dd:65:57:94:2c:9a:13:42:e4:91:ff:72:b8:
88:2c:99:3b:ab:0a:81:5a:0a:64:4b:1e:d6:eb:b3:
12:e2:86:73:c5:37:5e:db:94:83:e5:a0:96:c9:dc:
68:3e:81:28:c1:e8:a3:e6:53:3a:5d:44:8f:11:9a:
23:f1:57:f3:80:4b:01:eb:9f:96:9d:f1:92:e8:0c:
30:78:b6:d3:03:ee:35:96:a2:b8:8d:10:0e:5d:bf:
03:5b:ea:b3:4b:c4:b9:c5:6b:a8:eb:71:a0:36:c5:
10:32:fd:10:c9:d1:2a:41:f4:3d:3d:13:e0:af:be:
5c:dc:41:ac:d5:c9:68:d5:76:12:02:66:6b:4e:24:
1c:8f:96:91:6f:f0:4d:0c:fa:a5:46:da:56:9d:1d:
ff:68:ac:c9:34:b8:e3:74:4a:45:73:0a:78:74:34:
66:11:ce:18:b5:2a:f8:17:af:2e:a3:c5:aa:c3:4f:
54:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:8D:31:13:0F:E8:E9:AD:04:F8:D9:BD:B9:25:E4:B9:3F:4B:A3:95
X509v3 Authority Key Identifier:
keyid:AF:3F:70:05:03:F4:07:20:A8:2F:76:EF:15:CD:A6:20:22:F1:F9:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:06:8c:4e:95:91:66:39:c9:86:51:75:28:17:35:e4:de:9b:
1e:c9:b3:1d:fa:26:1c:7f:bd:30:98:5e:c1:d1:db:65:bc:b5:
6a:25:50:32:99:aa:a4:06:2a:1d:38:65:f5:bb:d7:b6:00:04:
66:21:55:11:74:97:d8:1f:a1:5c:23:6d:8f:f5:46:70:34:be:
90:1a:a6:14:71:f7:1c:b9:c9:9e:a4:fa:64:6a:1d:33:c3:ae:
22:c4:28:26:38:a6:a1:d2:1b:67:02:75:1f:19:1c:61:7a:43:
0a:b7:27:f4:40:c2:1f:59:b8:f7:ce:3b:c9:76:4c:5a:d5:71:
9c:f4:ef:a7:ca:cf:60:82:40:7e:3f:d2:29:34:44:b0:f2:1e:
31:d7:55:af:0d:4a:19:f4:30:f6:f5:cf:7b:b9:95:e7:79:8d:
92:e0:65:b4:e6:32:3f:15:55:e4:fb:ed:2c:fb:2e:ac:e3:b6:
f1:45:30:73:31:40:c0:a0:c6:40:d1:c7:e0:d1:25:93:5c:c3:
59:63:54:a9:41:3f:86:fd:51:87:2f:bd:af:a0:3e:4e:aa:8e:
0f:51:c2:24:d0:99:40:ef:35:37:e7:63:4c:db:2e:ad:84:1f:
a0:00:93:b1:bb:43:c1:0f:d6:e8:8c:99:b3:1a:38:ed:ff:48:
12:d7:f6:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2sM30Mwj7xr9WDuRI9Dq+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmM2Y3MDA1MDNmNDA3MjBhODJmNzZlZjE1Y2RhNjIwMjJm
MWY5YTkwHhcNMjUwNDI3MTAwMDIwWhcNMjUwNDI4MTAwMDIwWjAzMTEwLwYDVQQD
Eyg2MzhkMzExMzBmZThlOWFkMDRmOGQ5YmRiOTI1ZTRiOTNmNGJhMzk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxbVNO5jaIXOn4BglakLcQdqKZp3b
++luZ09FQS6MWZJexrwZBHU3wxplIrP+IUqY70ra3SEk02NMttSarxTOEsnsy3/R
p0NyknCLC91lV5QsmhNC5JH/criILJk7qwqBWgpkSx7W67MS4oZzxTde25SD5aCW
ydxoPoEoweij5lM6XUSPEZoj8VfzgEsB65+WnfGS6AwweLbTA+41lqK4jRAOXb8D
W+qzS8S5xWuo63GgNsUQMv0QydEqQfQ9PRPgr75c3EGs1clo1XYSAmZrTiQcj5aR
b/BNDPqlRtpWnR3/aKzJNLjjdEpFcwp4dDRmEc4YtSr4F68uo8Wqw09UvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGONMRMP6OmtBPjZvbkl5Lk/S6OVMB8GA1UdIwQY
MBaAFK8/cAUD9AcgqC927xXNpiAi8fmpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcno5d0JRUDBCeUNvTDNidkZjMm1JQ0x4LWFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC83YjdmMjYtZjg0MS00NzAwLWFhZmIt
ZWFkMDYzNDE5MmNkLzEvcno5d0JRUDBCeUNvTDNidkZjMm1JQ0x4LWFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC83YjdmMjYtZjg0MS00NzAwLWFhZmItZWFkMDYzNDE5MmNk
LzEvcno5d0JRUDBCeUNvTDNidkZjMm1JQ0x4LWFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlAaMTpWR
ZjnJhlF1KBc15N6bHsmzHfomHH+9MJhewdHbZby1aiVQMpmqpAYqHThl9bvXtgAE
ZiFVEXSX2B+hXCNtj/VGcDS+kBqmFHH3HLnJnqT6ZGodM8OuIsQoJjimodIbZwJ1
HxkcYXpDCrcn9EDCH1m49847yXZMWtVxnPTvp8rPYIJAfj/SKTREsPIeMddVrw1K
GfQw9vXPe7mV53mNkuBltOYyPxVV5PvtLPsurOO28UUwczFAwKDGQNHH4NElk1zD
WWNUqUE/hv1Rhy+9r6A+TqqOD1HCJNCZQO81N+djTNsurYQfoACTsbtDwQ/W6IyZ
sxo47f9IEtf2cg==
-----END CERTIFICATE-----
Generated at Sun Apr 27 20:17:14 2025 by rpki-client