Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/03a52d-f9b5-4f71-b428-2d90001570e1/1/zkyVbVLdh2NjwhME-cAl8H1fJjE.mft
File: zkyVbVLdh2NjwhME-cAl8H1fJjE.mft (raw, json)
Hash identifier: 2ITt99svbM7hgFOHPSSqOsyXGY7r7god7CDl0zSJ5mA=
Subject key identifier: 3F:2F:EE:1C:89:D6:B0:9A:89:D4:F3:70:A3:13:6F:AE:43:14:B9:E8
Authority key identifier: CE:4C:95:6D:52:DD:87:63:63:C2:13:04:F9:C0:25:F0:7D:5F:26:31
Certificate issuer: /CN=ce4c956d52dd876363c21304f9c025f07d5f2631
Certificate serial: 019776E52F61B2A2A88575BFC2E16E1A0DB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkyVbVLdh2NjwhME-cAl8H1fJjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/03a52d-f9b5-4f71-b428-2d90001570e1/1/zkyVbVLdh2NjwhME-cAl8H1fJjE.mft
Manifest number: 050D
Signing time: Mon 16 Jun 2025 04:00:20 +0000
Manifest this update: Mon 16 Jun 2025 04:00:20 +0000
Manifest next update: Tue 17 Jun 2025 04:00:20 +0000
Files and hashes: 1: zkyVbVLdh2NjwhME-cAl8H1fJjE.crl (hash: mniIop+HVjwoQVKbaF8k/1k2e+AvZkVGvw1MiNXpCgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/03a52d-f9b5-4f71-b428-2d90001570e1/1/zkyVbVLdh2NjwhME-cAl8H1fJjE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/03a52d-f9b5-4f71-b428-2d90001570e1/1/zkyVbVLdh2NjwhME-cAl8H1fJjE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkyVbVLdh2NjwhME-cAl8H1fJjE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:e5:2f:61:b2:a2:a8:85:75:bf:c2:e1:6e:1a:0d:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce4c956d52dd876363c21304f9c025f07d5f2631
Validity
Not Before: Jun 16 04:00:20 2025 GMT
Not After : Jun 17 04:00:20 2025 GMT
Subject: CN=3f2fee1c89d6b09a89d4f370a3136fae4314b9e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e5:31:7d:29:d3:53:59:0d:88:3d:87:21:9c:
38:15:fa:14:e9:07:a3:be:06:0f:66:39:fa:40:b6:
f6:e9:56:05:c2:1f:9f:ad:6b:92:f5:e2:57:45:37:
dc:39:7d:15:c5:e5:19:66:b1:44:55:8d:8b:18:76:
21:3e:d0:35:f0:20:9f:6f:03:3a:1b:0b:0a:ad:2f:
02:ca:ce:c9:6b:bb:d5:68:38:75:e1:72:d2:17:d7:
08:c6:ea:95:99:a2:79:f5:ad:a1:62:ba:77:2b:b6:
96:85:50:ce:6a:b4:0e:0f:9e:95:b4:7f:13:bb:79:
8e:72:05:81:7b:b7:98:7c:12:54:44:8f:34:d0:e7:
69:6f:90:7f:d9:fe:e2:3b:6c:c3:d5:a6:b8:59:46:
dd:c2:fe:1b:8c:5e:cf:05:94:3b:e1:df:ac:69:94:
ac:ac:c0:18:39:03:68:73:1c:8e:78:9f:ee:13:55:
a1:0f:e5:f4:54:d0:e3:c8:bb:89:4d:91:3a:d8:1c:
a1:b3:0d:a1:d7:46:b0:79:cb:4e:3b:fa:28:fb:b3:
10:7a:89:b7:46:c0:eb:d8:b8:c1:6d:72:2c:7d:11:
f0:0a:46:af:e8:1b:62:32:dd:2c:94:af:20:84:a6:
1a:48:d5:52:b3:b9:5c:f1:fa:71:c2:bc:79:c6:26:
79:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:2F:EE:1C:89:D6:B0:9A:89:D4:F3:70:A3:13:6F:AE:43:14:B9:E8
X509v3 Authority Key Identifier:
keyid:CE:4C:95:6D:52:DD:87:63:63:C2:13:04:F9:C0:25:F0:7D:5F:26:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkyVbVLdh2NjwhME-cAl8H1fJjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/03a52d-f9b5-4f71-b428-2d90001570e1/1/zkyVbVLdh2NjwhME-cAl8H1fJjE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/03a52d-f9b5-4f71-b428-2d90001570e1/1/zkyVbVLdh2NjwhME-cAl8H1fJjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:98:fe:7b:62:3d:c1:97:da:62:28:d3:b5:a1:4c:fa:b3:bb:
b6:60:c8:7a:44:4d:67:0b:3b:f7:33:c9:4b:bd:00:c7:43:29:
56:46:c4:9a:d9:fa:f9:21:13:37:33:d2:f9:ea:ac:ff:d0:69:
aa:e0:4b:fc:0f:21:ff:cf:33:17:e3:12:a4:3e:e4:3d:66:f2:
76:68:59:a6:7f:f4:64:fc:f0:38:20:e3:c8:dd:0a:fe:fb:fd:
1c:96:bb:e9:de:de:09:1e:9c:11:d9:f9:a1:1a:0d:9e:12:52:
46:54:80:45:fd:7a:69:32:95:c8:65:5c:13:89:eb:0c:3f:b9:
02:15:a0:fd:90:90:f7:c3:00:9b:ac:d0:84:b1:61:70:f0:62:
86:82:67:06:7b:3e:86:c9:df:e9:67:a2:21:e8:af:f1:47:05:
28:b6:80:9b:32:ae:b2:8f:8b:75:4a:b5:7e:58:90:18:df:ad:
17:80:03:4b:a1:74:0b:14:62:5b:11:e2:60:ec:6d:88:91:73:
bf:f2:91:d9:28:a7:5c:18:78:9c:c8:fe:bb:35:27:ea:19:f0:
dc:fa:37:dd:13:5e:fb:c0:d4:1c:69:a1:a8:80:64:c7:d5:f7:
1c:19:ea:31:9c:c5:b9:56:7c:2c:e3:d0:9a:69:4c:c9:6b:4c:
7a:a8:3f:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd25S9hsqKohXW/wuFuGg22MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlNGM5NTZkNTJkZDg3NjM2M2MyMTMwNGY5YzAyNWYwN2Q1
ZjI2MzEwHhcNMjUwNjE2MDQwMDIwWhcNMjUwNjE3MDQwMDIwWjAzMTEwLwYDVQQD
EygzZjJmZWUxYzg5ZDZiMDlhODlkNGYzNzBhMzEzNmZhZTQzMTRiOWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyOUxfSnTU1kNiD2HIZw4FfoU6Qej
vgYPZjn6QLb26VYFwh+frWuS9eJXRTfcOX0VxeUZZrFEVY2LGHYhPtA18CCfbwM6
GwsKrS8Cys7Ja7vVaDh14XLSF9cIxuqVmaJ59a2hYrp3K7aWhVDOarQOD56VtH8T
u3mOcgWBe7eYfBJURI800Odpb5B/2f7iO2zD1aa4WUbdwv4bjF7PBZQ74d+saZSs
rMAYOQNocxyOeJ/uE1WhD+X0VNDjyLuJTZE62Byhsw2h10awectOO/oo+7MQeom3
RsDr2LjBbXIsfRHwCkav6BtiMt0slK8ghKYaSNVSs7lc8fpxwrx5xiZ5SQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD8v7hyJ1rCaidTzcKMTb65DFLnoMB8GA1UdIwQY
MBaAFM5MlW1S3YdjY8ITBPnAJfB9XyYxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemt5VmJWTGRoMk5qd2hNRS1jQWw4SDFmSmpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8wM2E1MmQtZjliNS00ZjcxLWI0Mjgt
MmQ5MDAwMTU3MGUxLzEvemt5VmJWTGRoMk5qd2hNRS1jQWw4SDFmSmpFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS8wM2E1MmQtZjliNS00ZjcxLWI0MjgtMmQ5MDAwMTU3MGUx
LzEvemt5VmJWTGRoMk5qd2hNRS1jQWw4SDFmSmpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqJj+e2I9
wZfaYijTtaFM+rO7tmDIekRNZws79zPJS70Ax0MpVkbEmtn6+SETNzPS+eqs/9Bp
quBL/A8h/88zF+MSpD7kPWbydmhZpn/0ZPzwOCDjyN0K/vv9HJa76d7eCR6cEdn5
oRoNnhJSRlSARf16aTKVyGVcE4nrDD+5AhWg/ZCQ98MAm6zQhLFhcPBihoJnBns+
hsnf6WeiIeiv8UcFKLaAmzKuso+LdUq1fliQGN+tF4ADS6F0CxRiWxHiYOxtiJFz
v/KR2SinXBh4nMj+uzUn6hnw3Po33RNe+8DUHGmhqIBkx9X3HBnqMZzFuVZ8LOPQ
mmlMyWtMeqg/sQ==
-----END CERTIFICATE-----
Generated at Mon Jun 16 12:14:50 2025 by rpki-client