Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
File: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft (raw, json)
Hash identifier: I48n9nzc5US9m6fVaO0M0uVNp8Nw3iMYky+t3Mm8gVQ=
Subject key identifier: 17:6E:41:57:87:34:A0:9B:79:C3:2C:A8:78:31:B6:9B:08:A5:96:71
Authority key identifier: 66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
Certificate issuer: /CN=66ba8d64e901b39b501ed3693ec27430713886e3
Certificate serial: 01967ED87FD77A13EFFDC8FBDA4FA3E4CA58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
Manifest number: 0E81
Signing time: Tue 29 Apr 2025 00:00:39 +0000
Manifest this update: Tue 29 Apr 2025 00:00:39 +0000
Manifest next update: Wed 30 Apr 2025 00:00:39 +0000
Files and hashes: 1: Fg0QsDS_oIn0AHFloFbOWLXLPYw.roa (hash: PCZ0sNE5BS8dEXbU+ksvDG3w1iOi7xIBrn9yDW7TZ/U=)
2: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl (hash: YKEoYXX2lxRfcuIa+MDSwEd0GR277HRFJwyrZ3LHTp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:d8:7f:d7:7a:13:ef:fd:c8:fb:da:4f:a3:e4:ca:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ba8d64e901b39b501ed3693ec27430713886e3
Validity
Not Before: Apr 29 00:00:39 2025 GMT
Not After : Apr 30 00:00:39 2025 GMT
Subject: CN=176e41578734a09b79c32ca87831b69b08a59671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5a:d9:e3:4c:34:81:24:74:29:e6:b4:27:83:
89:c4:ad:93:18:69:24:b3:46:bc:7f:0b:7e:d0:db:
68:90:bb:85:de:8b:2b:cd:03:6e:00:c3:74:55:d7:
06:b4:76:13:f7:a9:54:c0:9f:42:ce:67:ac:18:02:
0f:d6:0c:f4:5b:d8:7f:fd:c7:ec:0d:6d:bb:73:57:
72:d1:bd:13:cd:18:69:0a:47:a7:6c:8d:24:c2:eb:
dc:1c:de:5b:a3:89:f4:f9:0b:78:0f:b1:86:c2:ee:
01:0f:ff:72:36:8c:bc:c7:ca:2f:86:1a:9f:16:ce:
66:6d:b5:97:4b:7f:f0:db:88:1f:4e:6f:13:f4:13:
d3:7a:c0:ce:fc:81:a4:99:29:84:57:6c:bb:ad:d0:
53:cc:ce:d2:e8:f9:6f:46:01:34:4f:41:99:da:9b:
ad:f5:72:fd:d4:b9:19:b1:e4:8d:a2:62:56:98:1c:
55:fc:12:b6:ab:0d:53:8c:2b:da:24:af:f7:ec:8f:
cd:3e:e8:4b:b5:3a:2d:5d:2c:3e:91:9b:00:94:c5:
4c:7a:55:21:bf:51:5e:8c:bc:e1:53:07:f9:0e:55:
95:4a:9e:d2:fa:bd:b1:d5:59:73:a0:58:1d:b7:4e:
17:89:32:cc:7b:ed:f4:aa:80:76:db:0a:7f:54:04:
ab:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:6E:41:57:87:34:A0:9B:79:C3:2C:A8:78:31:B6:9B:08:A5:96:71
X509v3 Authority Key Identifier:
keyid:66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:34:f2:21:a9:ee:e6:68:34:96:cb:22:8b:b5:d3:a2:99:bd:
d2:96:96:d1:86:45:c2:5a:ab:16:95:07:1f:84:bf:df:78:7a:
a1:cd:88:51:b1:e4:f8:f9:4a:6e:83:59:65:70:0a:02:9b:ea:
d4:76:fc:94:28:3f:27:41:1c:6c:42:9c:3d:cf:ed:9e:71:3b:
1c:ae:9a:1c:c5:e1:93:cc:4e:b9:a0:07:2d:cd:fc:0f:d0:ec:
94:77:bf:6c:fa:eb:39:ff:df:2e:30:53:40:40:66:e6:14:43:
4e:e4:9a:0d:5a:1e:6a:4a:4e:c5:ca:28:a8:66:dd:f7:34:55:
54:38:f9:33:23:0b:69:40:f4:1c:b1:12:df:61:cd:46:54:fb:
17:91:92:f6:c7:4a:d8:66:b4:55:6c:4b:70:1d:15:be:a0:28:
73:f5:4b:da:26:61:ef:44:26:ce:d8:10:4d:28:c3:8c:5f:3a:
a8:77:2c:ed:24:41:8c:20:f1:61:2a:50:f0:e7:29:5b:ad:8c:
db:47:d2:d2:f5:6f:a5:b5:f9:3d:a8:78:19:4f:8f:71:73:85:
ad:64:d5:76:67:60:3d:fc:c5:af:f3:6d:d8:da:a7:fa:c3:34:
c7:62:80:d0:39:8d:b5:e7:8b:ea:d9:77:c1:a4:79:3b:03:ed:
c5:56:ea:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ+2H/XehPv/cj72k+j5MpYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2YmE4ZDY0ZTkwMWIzOWI1MDFlZDM2OTNlYzI3NDMwNzEz
ODg2ZTMwHhcNMjUwNDI5MDAwMDM5WhcNMjUwNDMwMDAwMDM5WjAzMTEwLwYDVQQD
EygxNzZlNDE1Nzg3MzRhMDliNzljMzJjYTg3ODMxYjY5YjA4YTU5NjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAylrZ40w0gSR0Kea0J4OJxK2TGGkk
s0a8fwt+0NtokLuF3osrzQNuAMN0VdcGtHYT96lUwJ9CzmesGAIP1gz0W9h//cfs
DW27c1dy0b0TzRhpCkenbI0kwuvcHN5bo4n0+Qt4D7GGwu4BD/9yNoy8x8ovhhqf
Fs5mbbWXS3/w24gfTm8T9BPTesDO/IGkmSmEV2y7rdBTzM7S6PlvRgE0T0GZ2put
9XL91LkZseSNomJWmBxV/BK2qw1TjCvaJK/37I/NPuhLtTotXSw+kZsAlMVMelUh
v1FejLzhUwf5DlWVSp7S+r2x1VlzoFgdt04XiTLMe+30qoB22wp/VASr2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBduQVeHNKCbecMsqHgxtpsIpZZxMB8GA1UdIwQY
MBaAFGa6jWTpAbObUB7TaT7CdDBxOIbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnJxTlpPa0JzNXRRSHROcFBzSjBNSEU0aHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9hYTdlNTMtNDkwZi00MTc3LThiMTEt
MGIzZTdlYmU0YWMyLzEvWnJxTlpPa0JzNXRRSHROcFBzSjBNSEU0aHVNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS9hYTdlNTMtNDkwZi00MTc3LThiMTEtMGIzZTdlYmU0YWMy
LzEvWnJxTlpPa0JzNXRRSHROcFBzSjBNSEU0aHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqjTyIanu
5mg0lssii7XTopm90paW0YZFwlqrFpUHH4S/33h6oc2IUbHk+PlKboNZZXAKApvq
1Hb8lCg/J0EcbEKcPc/tnnE7HK6aHMXhk8xOuaAHLc38D9DslHe/bPrrOf/fLjBT
QEBm5hRDTuSaDVoeakpOxcooqGbd9zRVVDj5MyMLaUD0HLES32HNRlT7F5GS9sdK
2Ga0VWxLcB0VvqAoc/VL2iZh70QmztgQTSjDjF86qHcs7SRBjCDxYSpQ8OcpW62M
20fS0vVvpbX5Pah4GU+PcXOFrWTVdmdgPfzFr/Nt2Nqn+sM0x2KA0DmNteeL6tl3
waR5OwPtxVbqfw==
-----END CERTIFICATE-----
Generated at Tue Apr 29 07:11:24 2025 by rpki-client