Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
File: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft (raw, json)
Hash identifier: 36T4eNmDOjERfDbZsKLvXskPcsJjxjUBL6x4KTHmga4=
Subject key identifier: 77:DA:B4:3D:94:A1:A5:EF:D4:16:B7:69:A0:C7:F5:1D:CB:8F:54:6C
Authority key identifier: 64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
Certificate issuer: /CN=64daba15d1d366cb53095412d06490e23498e170
Certificate serial: 01976D3D6CF554D5CD6D7E5885A583D2095A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
Manifest number: 158D
Signing time: Sat 14 Jun 2025 07:00:31 +0000
Manifest this update: Sat 14 Jun 2025 07:00:31 +0000
Manifest next update: Sun 15 Jun 2025 07:00:31 +0000
Files and hashes: 1: 7vdGx51ck_YIgYpkt1SPNVfsVKE.roa (hash: Nw+uAqY1I65YKmQSbXqROB23bDhd2atga2x/5hREPHM=)
2: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl (hash: LDiSGAUfEEFSmHyF6TgtuYTX4VaI36vsHoQy4rEolCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:6c:f5:54:d5:cd:6d:7e:58:85:a5:83:d2:09:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64daba15d1d366cb53095412d06490e23498e170
Validity
Not Before: Jun 14 07:00:31 2025 GMT
Not After : Jun 15 07:00:31 2025 GMT
Subject: CN=77dab43d94a1a5efd416b769a0c7f51dcb8f546c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:74:05:ad:81:4c:ae:4c:a8:ed:f3:ed:8c:7c:
8d:58:6d:db:5d:59:79:55:1a:99:84:87:ee:cf:35:
98:9a:f4:16:10:32:95:97:8f:b1:50:87:53:cb:99:
24:9b:68:b4:ea:51:1c:de:a9:83:76:0d:92:9d:9f:
25:b0:83:31:0b:d8:54:c6:65:33:2d:a7:d3:98:ce:
53:1e:40:55:98:d7:1e:29:1e:77:af:7f:8d:bf:f7:
ba:ca:02:fa:91:61:de:bf:10:ff:bc:1a:60:20:5b:
6c:ee:81:98:20:8a:d1:c3:db:09:aa:33:e6:f5:24:
71:de:2c:64:e6:f8:09:df:fb:a0:79:20:be:9d:b6:
50:47:7f:d0:d0:46:37:da:85:ce:eb:1a:ad:68:1c:
a2:1e:b4:8f:a8:82:dc:0a:c6:68:b5:d3:2e:44:8f:
1e:b4:d0:2d:d0:df:c1:35:2b:53:1e:1a:18:67:a7:
8c:2a:86:00:e7:54:99:bc:eb:81:48:30:ce:9a:c2:
1b:a1:1a:81:d1:5b:ae:dd:27:16:56:2e:7c:cf:66:
3d:c9:23:3e:4d:02:45:84:f7:3a:dd:dd:13:15:71:
83:62:f7:d3:38:66:ce:81:ae:43:dc:6d:f1:79:9f:
39:31:70:dc:f4:18:19:bd:7f:d7:75:69:19:70:56:
07:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DA:B4:3D:94:A1:A5:EF:D4:16:B7:69:A0:C7:F5:1D:CB:8F:54:6C
X509v3 Authority Key Identifier:
keyid:64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:74:52:51:5f:fc:06:f4:48:94:a6:86:a7:24:4f:28:43:c1:
e8:3c:e9:91:6c:67:62:06:69:c1:b6:62:3f:33:c3:00:e7:bf:
d5:5a:6c:37:01:ba:f8:38:6c:36:50:1d:a3:49:47:08:ff:07:
23:f6:67:70:a2:db:f2:b7:97:c1:ba:31:1e:84:59:83:a3:7a:
ab:44:22:3c:15:6c:60:64:99:e0:61:2a:29:0a:8f:2c:95:52:
8c:27:87:47:a1:aa:c4:39:9b:63:bf:63:6d:4c:b2:c6:ef:49:
3c:0d:64:78:0d:ce:98:2a:f0:cb:25:0c:10:bf:32:0a:52:b5:
52:b9:15:60:11:9a:b0:a6:ba:11:54:83:22:53:f6:82:9a:1a:
ce:73:ce:ee:93:cb:2c:cc:01:0c:65:92:8c:a0:c7:c5:3a:25:
15:fd:d5:3b:7a:59:6a:15:37:14:2c:7d:af:05:14:de:1e:0b:
9b:c2:4c:f4:32:a6:a7:cd:9b:8c:54:d1:1d:82:5c:19:d6:e6:
a6:8f:1a:f5:5a:aa:f5:b5:7f:cd:b0:9e:83:c0:a3:c4:21:e2:
4f:84:5b:de:5a:d9:ac:00:10:8f:0a:4e:fc:80:06:ee:03:1d:
02:6f:10:ed:05:71:73:86:60:e2:e4:73:e9:3a:a9:6e:9f:74:
01:dc:b6:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtPWz1VNXNbX5YhaWD0glaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0ZGFiYTE1ZDFkMzY2Y2I1MzA5NTQxMmQwNjQ5MGUyMzQ5
OGUxNzAwHhcNMjUwNjE0MDcwMDMxWhcNMjUwNjE1MDcwMDMxWjAzMTEwLwYDVQQD
Eyg3N2RhYjQzZDk0YTFhNWVmZDQxNmI3NjlhMGM3ZjUxZGNiOGY1NDZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3QFrYFMrkyo7fPtjHyNWG3bXVl5
VRqZhIfuzzWYmvQWEDKVl4+xUIdTy5kkm2i06lEc3qmDdg2SnZ8lsIMxC9hUxmUz
LafTmM5THkBVmNceKR53r3+Nv/e6ygL6kWHevxD/vBpgIFts7oGYIIrRw9sJqjPm
9SRx3ixk5vgJ3/ugeSC+nbZQR3/Q0EY32oXO6xqtaByiHrSPqILcCsZotdMuRI8e
tNAt0N/BNStTHhoYZ6eMKoYA51SZvOuBSDDOmsIboRqB0Vuu3ScWVi58z2Y9ySM+
TQJFhPc63d0TFXGDYvfTOGbOga5D3G3xeZ85MXDc9BgZvX/XdWkZcFYHkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHfatD2UoaXv1Ba3aaDH9R3Lj1RsMB8GA1UdIwQY
MBaAFGTauhXR02bLUwlUEtBkkOI0mOFwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWk5xNkZkSFRac3RUQ1ZRUzBHU1E0alNZNFhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi83MzZkYjItMGM2NC00NWVkLTgzM2Et
YTk0ZGQ4Y2NhZjlmLzEvWk5xNkZkSFRac3RUQ1ZRUzBHU1E0alNZNFhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi83MzZkYjItMGM2NC00NWVkLTgzM2EtYTk0ZGQ4Y2NhZjlm
LzEvWk5xNkZkSFRac3RUQ1ZRUzBHU1E0alNZNFhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIXRSUV/8
BvRIlKaGpyRPKEPB6DzpkWxnYgZpwbZiPzPDAOe/1VpsNwG6+DhsNlAdo0lHCP8H
I/ZncKLb8reXwboxHoRZg6N6q0QiPBVsYGSZ4GEqKQqPLJVSjCeHR6GqxDmbY79j
bUyyxu9JPA1keA3OmCrwyyUMEL8yClK1UrkVYBGasKa6EVSDIlP2gpoaznPO7pPL
LMwBDGWSjKDHxTolFf3VO3pZahU3FCx9rwUU3h4Lm8JM9DKmp82bjFTRHYJcGdbm
po8a9Vqq9bV/zbCeg8CjxCHiT4Rb3lrZrAAQjwpO/IAG7gMdAm8Q7QVxc4Zg4uRz
6Tqpbp90Ady2fA==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:11:45 2025 by rpki-client