Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
File: zZFzvIKKtx2i68r6f4mOxqoe6nY.mft (raw, json)
Hash identifier: 9bEVQ3FqossF5cbo2sj/o8CLU4yNicY0TQtSlwzEoS8=
Subject key identifier: CB:14:06:16:2E:EB:8F:5F:61:F4:BF:E0:21:28:01:62:9B:9A:73:0E
Authority key identifier: CD:91:73:BC:82:8A:B7:1D:A2:EB:CA:FA:7F:89:8E:C6:AA:1E:EA:76
Certificate issuer: /CN=cd9173bc828ab71da2ebcafa7f898ec6aa1eea76
Certificate serial: 019685B63625321528ECA36811988B04A8AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
Manifest number: 03A5
Signing time: Wed 30 Apr 2025 08:00:33 +0000
Manifest this update: Wed 30 Apr 2025 08:00:33 +0000
Manifest next update: Thu 01 May 2025 08:00:33 +0000
Files and hashes: 1: RtwNd0kIIB4fJfHreOuMYKMR7lc.roa (hash: qbEtbkjwEQIcvAZsD7fY24iBMXF9LqUeMZOAB812XzU=)
2: zZFzvIKKtx2i68r6f4mOxqoe6nY.crl (hash: Hwd4cgo9NFvF6hwoRbFgNuUu/tKeRoJHavCaA1hmqyM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 08:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:b6:36:25:32:15:28:ec:a3:68:11:98:8b:04:a8:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd9173bc828ab71da2ebcafa7f898ec6aa1eea76
Validity
Not Before: Apr 30 08:00:33 2025 GMT
Not After : May 1 08:00:33 2025 GMT
Subject: CN=cb1406162eeb8f5f61f4bfe0212801629b9a730e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8a:b6:d7:e5:7b:70:40:30:95:1e:98:18:d1:
cf:3f:21:2c:b8:75:33:ec:4a:7b:61:49:f0:9e:b6:
8b:5d:38:e4:6f:10:87:dd:6c:91:10:f1:05:f0:24:
a1:ad:c6:47:06:1c:2b:42:47:c3:f9:6b:f1:bd:44:
e0:31:be:75:bb:aa:ab:7d:2f:dd:99:6b:10:ee:30:
08:f7:65:8b:32:fe:37:ee:f3:30:4e:26:e0:b4:57:
14:aa:81:b9:02:a2:ff:c3:80:9c:98:a1:7c:1d:89:
57:df:ae:6d:3f:45:e6:17:e3:0f:1c:65:2b:6c:1b:
39:d6:af:90:be:97:e8:09:5a:0b:8c:36:f3:a4:8e:
20:cf:e5:28:d0:e2:c3:3c:49:0b:a1:73:1d:38:00:
4a:31:f7:32:81:bd:19:6b:d1:69:dd:80:40:2c:37:
bd:3b:b8:f5:cf:6f:a3:4f:fb:da:3c:b9:4a:91:d5:
a7:94:53:ab:bf:08:18:f5:6f:45:92:74:6c:0e:f8:
e0:67:2c:c8:12:cf:24:c2:27:38:a9:0e:03:a4:5c:
2a:6b:20:60:a9:5a:ed:dc:d4:b3:66:07:bf:3f:1c:
0d:5e:5f:66:25:46:6f:ed:10:38:01:76:24:eb:ad:
da:47:3d:06:45:08:f0:0b:ec:57:b6:6d:b8:11:7f:
21:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:14:06:16:2E:EB:8F:5F:61:F4:BF:E0:21:28:01:62:9B:9A:73:0E
X509v3 Authority Key Identifier:
keyid:CD:91:73:BC:82:8A:B7:1D:A2:EB:CA:FA:7F:89:8E:C6:AA:1E:EA:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:b5:4d:2d:2b:8d:56:8d:f4:ce:72:dd:25:cb:39:44:6b:da:
c8:d1:36:18:ea:9e:34:52:7c:e9:ba:e1:a3:d0:51:2f:83:5d:
0f:49:b7:20:cc:3d:ea:9b:8c:9f:25:70:ba:64:5d:67:c4:e4:
41:c1:e2:75:7c:64:37:8d:c4:47:bd:0a:2e:05:28:eb:10:35:
66:ba:1b:39:ed:c6:22:d5:17:cd:e0:95:ef:67:68:d4:6c:17:
17:1b:94:c5:af:93:ca:5e:7a:71:f9:cd:29:99:d8:5a:d6:39:
3d:96:94:f9:4b:c8:88:45:25:2d:31:4f:5a:c8:c7:7d:19:02:
4d:b2:13:ed:cd:a0:ee:e1:c2:78:f3:ba:c1:c9:b6:57:12:61:
ff:25:fe:77:de:ce:fd:f7:e5:e7:bc:58:61:57:b0:18:d6:69:
c8:fe:21:02:b9:ff:69:70:56:f0:60:a6:0a:4a:42:44:a7:d8:
8d:89:b7:e5:d3:4d:d6:f2:35:a2:e4:45:18:dd:47:a4:ed:43:
e2:28:9d:df:af:37:86:ec:ea:ff:ab:e8:ba:a6:70:aa:90:a4:
51:2e:e1:21:22:15:65:57:cb:62:a2:73:38:b2:c9:37:c4:13:
ab:05:14:d9:e0:6f:b8:96:a3:3b:c3:71:8d:96:c7:c0:c7:33:
5c:3e:f8:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaFtjYlMhUo7KNoEZiLBKiqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkOTE3M2JjODI4YWI3MWRhMmViY2FmYTdmODk4ZWM2YWEx
ZWVhNzYwHhcNMjUwNDMwMDgwMDMzWhcNMjUwNTAxMDgwMDMzWjAzMTEwLwYDVQQD
EyhjYjE0MDYxNjJlZWI4ZjVmNjFmNGJmZTAyMTI4MDE2MjliOWE3MzBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4q21+V7cEAwlR6YGNHPPyEsuHUz
7Ep7YUnwnraLXTjkbxCH3WyREPEF8CShrcZHBhwrQkfD+WvxvUTgMb51u6qrfS/d
mWsQ7jAI92WLMv437vMwTibgtFcUqoG5AqL/w4CcmKF8HYlX365tP0XmF+MPHGUr
bBs51q+QvpfoCVoLjDbzpI4gz+Uo0OLDPEkLoXMdOABKMfcygb0Za9Fp3YBALDe9
O7j1z2+jT/vaPLlKkdWnlFOrvwgY9W9FknRsDvjgZyzIEs8kwic4qQ4DpFwqayBg
qVrt3NSzZge/PxwNXl9mJUZv7RA4AXYk663aRz0GRQjwC+xXtm24EX8hJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMsUBhYu649fYfS/4CEoAWKbmnMOMB8GA1UdIwQY
MBaAFM2Rc7yCircdouvK+n+JjsaqHup2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelpGenZJS0t0eDJpNjhyNmY0bU94cW9lNm5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS81YjhiOWMtOGYxOS00YzZiLWFmZDct
YzY5NDI2MDAxN2IwLzEvelpGenZJS0t0eDJpNjhyNmY0bU94cW9lNm5ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS81YjhiOWMtOGYxOS00YzZiLWFmZDctYzY5NDI2MDAxN2Iw
LzEvelpGenZJS0t0eDJpNjhyNmY0bU94cW9lNm5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEbVNLSuN
Vo30znLdJcs5RGvayNE2GOqeNFJ86brho9BRL4NdD0m3IMw96puMnyVwumRdZ8Tk
QcHidXxkN43ER70KLgUo6xA1ZrobOe3GItUXzeCV72do1GwXFxuUxa+Tyl56cfnN
KZnYWtY5PZaU+UvIiEUlLTFPWsjHfRkCTbIT7c2g7uHCePO6wcm2VxJh/yX+d97O
/ffl57xYYVewGNZpyP4hArn/aXBW8GCmCkpCRKfYjYm35dNN1vI1ouRFGN1HpO1D
4iid3683huzq/6vouqZwqpCkUS7hISIVZVfLYqJzOLLJN8QTqwUU2eBvuJajO8Nx
jZbHwMczXD74/Q==
-----END CERTIFICATE-----
Generated at Wed Apr 30 14:11:09 2025 by rpki-client