Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
File: Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft (raw, json)
Hash identifier: rbZdaUgQmybSNSloc/aL0sHvfhSsaoyFmb2AcSPwxR8=
Subject key identifier: BB:9C:E4:24:4B:B2:83:D3:3B:FD:D0:AD:E2:52:21:45:8C:25:24:6A
Authority key identifier: 67:65:A2:1B:56:1B:A8:66:5C:F7:9F:BF:44:C3:19:59:DE:28:F2:16
Certificate issuer: /CN=6765a21b561ba8665cf79fbf44c31959de28f216
Certificate serial: 01967642FFB2ECECBE22A29DD10B5305C1A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
Manifest number: 0658
Signing time: Sun 27 Apr 2025 08:00:24 +0000
Manifest this update: Sun 27 Apr 2025 08:00:24 +0000
Manifest next update: Mon 28 Apr 2025 08:00:24 +0000
Files and hashes: 1: 0v4Q3A_w9M1p1YcV4-7Pe389fdU.roa (hash: WhKTFW0tZdeh1NFz5izqlimm3sG/vP+EpF9M2Z10RmY=)
2: Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl (hash: sc8HKJpKTeFI/ZikOpJlCRKqtX7StKeqkcl+ru1otk0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:42:ff:b2:ec:ec:be:22:a2:9d:d1:0b:53:05:c1:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6765a21b561ba8665cf79fbf44c31959de28f216
Validity
Not Before: Apr 27 08:00:24 2025 GMT
Not After : Apr 28 08:00:24 2025 GMT
Subject: CN=bb9ce4244bb283d33bfdd0ade25221458c25246a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1d:ff:c3:f4:fc:d7:ef:ae:0e:28:d5:51:eb:
01:3a:3e:56:04:e0:11:22:08:bf:d0:45:99:72:75:
61:bb:ef:4d:43:96:4a:3f:47:2c:3f:c3:d9:05:d1:
3d:61:e6:74:c3:c9:63:eb:20:44:d3:df:e1:8b:72:
d4:54:27:43:82:44:c1:4a:d5:95:83:f0:ed:ad:b0:
44:87:d5:88:22:cf:ba:da:6b:71:44:81:9f:3c:41:
d4:a6:a2:f5:8d:df:3b:c3:93:88:10:e8:63:03:38:
75:53:4c:64:a3:fd:87:fc:15:62:17:61:01:bb:19:
67:d8:aa:83:ee:4c:3f:84:eb:a1:5a:bb:82:d2:01:
4d:48:ce:87:5e:3e:04:c6:7d:e1:23:a6:fe:1b:3e:
db:26:4b:0a:62:e7:1b:2d:60:71:2d:f8:a4:f0:61:
a8:b1:a2:eb:b0:d6:67:ca:85:c4:aa:37:6a:eb:d9:
32:01:01:15:59:59:30:b7:30:84:b2:69:25:c0:1a:
dc:5c:ba:09:5e:82:55:91:89:73:18:f2:a8:57:52:
9c:53:d8:de:64:8d:b6:81:85:76:1b:6d:a0:bb:ad:
9e:3a:a3:30:eb:49:01:01:77:96:39:e6:22:df:3b:
cc:5b:80:a9:04:31:2e:8f:64:99:be:f3:37:69:f9:
6a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9C:E4:24:4B:B2:83:D3:3B:FD:D0:AD:E2:52:21:45:8C:25:24:6A
X509v3 Authority Key Identifier:
keyid:67:65:A2:1B:56:1B:A8:66:5C:F7:9F:BF:44:C3:19:59:DE:28:F2:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:7a:8d:0e:fb:5b:b4:ae:15:fd:45:50:3e:3a:33:57:ce:00:
3a:9c:11:d0:02:4d:ab:9d:5b:81:6a:b7:fc:11:e4:5c:5e:98:
63:f4:fd:0b:62:1d:05:d7:87:e9:88:21:4f:45:7b:90:2d:42:
12:4e:42:ae:ee:01:77:0c:a0:95:73:aa:60:48:75:e6:ef:54:
18:31:59:8d:18:91:1d:07:b8:c7:d5:77:62:e9:e0:39:bd:eb:
d7:55:29:71:db:b1:ea:6b:86:04:1d:6e:d1:ec:78:4a:2a:35:
76:dc:bd:d2:bc:ff:f0:0d:87:31:7b:ab:78:42:24:89:7b:f4:
ee:dd:80:54:72:03:a1:02:df:42:cb:9b:81:1b:f9:ca:b9:9d:
52:28:f7:58:f6:0f:bf:69:a1:b1:5a:39:7d:03:e2:d2:64:1e:
4d:eb:39:89:41:0e:04:51:23:fe:03:fe:29:39:06:22:e3:a9:
67:54:68:4a:5a:3b:52:ed:dc:04:82:a6:bd:41:74:6d:77:7d:
97:67:91:a5:02:d8:95:ca:24:7f:9c:35:00:4e:01:89:0a:06:
38:ac:5b:0a:31:bc:8b:b3:94:c4:19:d6:d5:b2:8a:c5:05:c1:
73:79:db:b9:46:23:38:4a:a5:b2:fc:f3:80:a1:64:62:83:8f:
29:d0:d0:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2Qv+y7Oy+IqKd0QtTBcGkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3NjVhMjFiNTYxYmE4NjY1Y2Y3OWZiZjQ0YzMxOTU5ZGUy
OGYyMTYwHhcNMjUwNDI3MDgwMDI0WhcNMjUwNDI4MDgwMDI0WjAzMTEwLwYDVQQD
EyhiYjljZTQyNDRiYjI4M2QzM2JmZGQwYWRlMjUyMjE0NThjMjUyNDZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAth3/w/T81++uDijVUesBOj5WBOAR
Igi/0EWZcnVhu+9NQ5ZKP0csP8PZBdE9YeZ0w8lj6yBE09/hi3LUVCdDgkTBStWV
g/DtrbBEh9WIIs+62mtxRIGfPEHUpqL1jd87w5OIEOhjAzh1U0xko/2H/BViF2EB
uxln2KqD7kw/hOuhWruC0gFNSM6HXj4Exn3hI6b+Gz7bJksKYucbLWBxLfik8GGo
saLrsNZnyoXEqjdq69kyAQEVWVkwtzCEsmklwBrcXLoJXoJVkYlzGPKoV1KcU9je
ZI22gYV2G22gu62eOqMw60kBAXeWOeYi3zvMW4CpBDEuj2SZvvM3aflqEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLuc5CRLsoPTO/3QreJSIUWMJSRqMB8GA1UdIwQY
MBaAFGdlohtWG6hmXPefv0TDGVneKPIWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjJXaUcxWWJxR1pjOTUtX1JNTVpXZDRvOGhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9lOGI4OWMtODI2OC00MDJiLWFhMjYt
ZWFkMDQxNzc0ZTA3LzEvWjJXaUcxWWJxR1pjOTUtX1JNTVpXZDRvOGhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS9lOGI4OWMtODI2OC00MDJiLWFhMjYtZWFkMDQxNzc0ZTA3
LzEvWjJXaUcxWWJxR1pjOTUtX1JNTVpXZDRvOGhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAknqNDvtb
tK4V/UVQPjozV84AOpwR0AJNq51bgWq3/BHkXF6YY/T9C2IdBdeH6YghT0V7kC1C
Ek5Cru4BdwyglXOqYEh15u9UGDFZjRiRHQe4x9V3YungOb3r11Upcdux6muGBB1u
0ex4Sio1dty90rz/8A2HMXureEIkiXv07t2AVHIDoQLfQsubgRv5yrmdUij3WPYP
v2mhsVo5fQPi0mQeTes5iUEOBFEj/gP+KTkGIuOpZ1RoSlo7Uu3cBIKmvUF0bXd9
l2eRpQLYlcokf5w1AE4BiQoGOKxbCjG8i7OUxBnW1bKKxQXBc3nbuUYjOEqlsvzz
gKFkYoOPKdDQow==
-----END CERTIFICATE-----
Generated at Sun Apr 27 12:48:12 2025 by rpki-client