Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft
File: ZhPZyFZESnCW46hQjK4wf968DNQ.mft (raw, json)
Hash identifier: mU3r9PMn7hRIunNMbuPQCk6r9DrIOKNVaUVNB7WRtjA=
Subject key identifier: 4D:3C:41:51:05:02:B9:5D:EC:93:03:17:ED:51:E3:05:1C:52:C3:E0
Authority key identifier: 66:13:D9:C8:56:44:4A:70:96:E3:A8:50:8C:AE:30:7F:DE:BC:0C:D4
Certificate issuer: /CN=6613d9c856444a7096e3a8508cae307fdebc0cd4
Certificate serial: 019778D443F8448CFA78725FD48BE1C1FAF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhPZyFZESnCW46hQjK4wf968DNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft
Manifest number: 1596
Signing time: Mon 16 Jun 2025 13:01:06 +0000
Manifest this update: Mon 16 Jun 2025 13:01:06 +0000
Manifest next update: Tue 17 Jun 2025 13:01:06 +0000
Files and hashes: 1: 4D_rZ45BYofG_PKX7NdD5oQoUdM.roa (hash: 8wujCBX6hI1Ut+YVGttUi2MlgiyCoDf/nLWfLC5wQhA=)
2: ZhPZyFZESnCW46hQjK4wf968DNQ.crl (hash: q1ibynLH6I6uRdPOQjACUWxF/IGBwyN4EwYE4cSKQIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZhPZyFZESnCW46hQjK4wf968DNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 13:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:d4:43:f8:44:8c:fa:78:72:5f:d4:8b:e1:c1:fa:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6613d9c856444a7096e3a8508cae307fdebc0cd4
Validity
Not Before: Jun 16 13:01:06 2025 GMT
Not After : Jun 17 13:01:06 2025 GMT
Subject: CN=4d3c41510502b95dec930317ed51e3051c52c3e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:55:77:ee:1c:3a:ef:b4:a3:ec:3e:47:91:79:
2e:81:14:ca:8b:b8:03:b7:fa:19:f3:28:4e:4b:b7:
77:9c:81:09:6e:c6:fc:09:75:81:94:b2:80:7d:91:
b9:c2:96:70:5a:f8:f9:e3:27:c7:e3:6d:2e:ae:ff:
b0:4a:96:03:69:34:ee:4d:5d:29:aa:61:5b:69:56:
d0:4b:28:2a:1a:1f:2d:44:ae:f8:e0:bb:1e:ed:d8:
3f:22:00:26:cd:4c:78:cc:89:27:4d:a7:60:86:3f:
ca:b0:b7:40:aa:f7:d6:32:7b:f5:93:d8:bd:ca:75:
12:36:59:f4:04:94:ba:ad:b2:b9:c1:c3:e1:06:28:
1d:6d:04:d7:0c:af:74:ca:b9:f4:a9:1d:68:9c:36:
38:d3:0f:db:c2:ee:79:91:0b:3d:86:68:dc:57:54:
e1:b7:e8:b0:e3:70:06:fc:3a:32:ad:df:88:f2:61:
a7:2a:2f:e2:91:9f:fa:68:e1:f1:02:4c:fb:10:a6:
76:bb:50:72:e8:15:b4:c6:eb:b0:f5:71:66:3d:cf:
f4:dc:d4:a6:21:91:5a:f3:a6:75:55:b3:95:64:c2:
7a:16:84:c2:ba:6a:41:cd:30:2d:bf:fd:09:04:ec:
81:7f:e8:a0:f8:ee:28:ed:69:6b:83:2e:af:ed:93:
e8:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:3C:41:51:05:02:B9:5D:EC:93:03:17:ED:51:E3:05:1C:52:C3:E0
X509v3 Authority Key Identifier:
keyid:66:13:D9:C8:56:44:4A:70:96:E3:A8:50:8C:AE:30:7F:DE:BC:0C:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhPZyFZESnCW46hQjK4wf968DNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:e2:15:f9:53:5e:90:77:53:a1:d5:ce:cd:17:c7:a1:f0:5a:
41:74:25:5e:62:04:2d:61:48:d4:04:17:1a:a3:85:b2:0c:6c:
0b:be:f7:23:8f:45:96:dc:72:28:ca:3e:c4:86:0d:cd:1c:ed:
88:e6:40:96:80:6c:2b:49:cf:bc:d4:07:34:90:aa:f6:bd:90:
c9:2e:91:fd:af:24:8d:b9:5f:e3:90:29:ff:a9:91:e0:3c:8c:
b1:63:64:8a:91:e3:34:41:47:46:92:46:4b:a9:ae:29:a6:2c:
08:2a:af:d3:0a:69:1c:59:b3:44:76:14:8d:ea:c0:fe:8c:6a:
28:f2:96:84:a1:6b:05:b9:d8:0b:ca:75:9a:01:96:be:0b:b5:
dc:81:e2:db:81:30:e9:f9:a5:b0:61:6c:28:02:8e:cf:96:28:
b2:0b:5b:61:22:fa:da:2a:f9:a7:58:89:af:68:8b:fe:d4:45:
01:28:88:f7:07:5b:da:b7:fb:db:fd:1c:4a:e7:c4:9b:79:4a:
93:99:7f:2b:4c:a8:8a:46:e5:d5:94:f0:39:78:5e:00:92:8e:
cb:7e:bf:5f:60:bb:84:2d:12:20:42:c4:8c:6f:b2:d8:4e:66:
c8:31:9b:18:39:59:d8:f9:c4:6b:b9:b5:0e:c2:d7:ec:ea:17:
94:b6:c0:85
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd41EP4RIz6eHJf1Ivhwfr5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2MTNkOWM4NTY0NDRhNzA5NmUzYTg1MDhjYWUzMDdmZGVi
YzBjZDQwHhcNMjUwNjE2MTMwMTA2WhcNMjUwNjE3MTMwMTA2WjAzMTEwLwYDVQQD
Eyg0ZDNjNDE1MTA1MDJiOTVkZWM5MzAzMTdlZDUxZTMwNTFjNTJjM2UwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnVV37hw677Sj7D5HkXkugRTKi7gD
t/oZ8yhOS7d3nIEJbsb8CXWBlLKAfZG5wpZwWvj54yfH420urv+wSpYDaTTuTV0p
qmFbaVbQSygqGh8tRK744Lse7dg/IgAmzUx4zIknTadghj/KsLdAqvfWMnv1k9i9
ynUSNln0BJS6rbK5wcPhBigdbQTXDK90yrn0qR1onDY40w/bwu55kQs9hmjcV1Th
t+iw43AG/Doyrd+I8mGnKi/ikZ/6aOHxAkz7EKZ2u1By6BW0xuuw9XFmPc/03NSm
IZFa86Z1VbOVZMJ6FoTCumpBzTAtv/0JBOyBf+ig+O4o7Wlrgy6v7ZPoyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE08QVEFArld7JMDF+1R4wUcUsPgMB8GA1UdIwQY
MBaAFGYT2chWREpwluOoUIyuMH/evAzUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmhQWnlGWkVTbkNXNDZoUWpLNHdmOTY4RE5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84YjVmMWUtNDE5MC00OGI2LWJkYzUt
N2QwNWY5ODg4ZTk4LzEvWmhQWnlGWkVTbkNXNDZoUWpLNHdmOTY4RE5RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84YjVmMWUtNDE5MC00OGI2LWJkYzUtN2QwNWY5ODg4ZTk4
LzEvWmhQWnlGWkVTbkNXNDZoUWpLNHdmOTY4RE5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAweIV+VNe
kHdTodXOzRfHofBaQXQlXmIELWFI1AQXGqOFsgxsC773I49FltxyKMo+xIYNzRzt
iOZAloBsK0nPvNQHNJCq9r2QyS6R/a8kjblf45Ap/6mR4DyMsWNkipHjNEFHRpJG
S6muKaYsCCqv0wppHFmzRHYUjerA/oxqKPKWhKFrBbnYC8p1mgGWvgu13IHi24Ew
6fmlsGFsKAKOz5YosgtbYSL62ir5p1iJr2iL/tRFASiI9wdb2rf72/0cSufEm3lK
k5l/K0yoikbl1ZTwOXheAJKOy36/X2C7hC0SIELEjG+y2E5myDGbGDlZ2PnEa7m1
DsLX7OoXlLbAhQ==
-----END CERTIFICATE-----
Generated at Mon Jun 16 17:44:52 2025 by rpki-client