Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
File: zSC8r3ISPi2fXieIazg5t0JEELc.mft (raw, json)
Hash identifier: H72kgnFlajrhzoWBb/8y4sq5TDiAw8MRsTGGnKBtUmw=
Subject key identifier: CE:9D:C1:EA:7C:F5:00:73:6F:76:2D:3A:C9:BC:C8:4A:48:43:A0:F6
Authority key identifier: CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
Certificate issuer: /CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Certificate serial: 01976A05B82669BDC24A6B539C5DE703CB89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
Manifest number: 0B7B
Signing time: Fri 13 Jun 2025 16:00:49 +0000
Manifest this update: Fri 13 Jun 2025 16:00:49 +0000
Manifest next update: Sat 14 Jun 2025 16:00:49 +0000
Files and hashes: 1: YvvxlYUE1Sa5OVkc6cN_zQjcrsc.roa (hash: 755pvpPS6YdCIfa/QNyMrmXmYNI2VVu3cPA+IlhoyYY=)
2: zSC8r3ISPi2fXieIazg5t0JEELc.crl (hash: gV+4FW4elVs8xUYn8C4pyZZlC8/BvlOm5BBBdGB+nbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:b8:26:69:bd:c2:4a:6b:53:9c:5d:e7:03:cb:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Validity
Not Before: Jun 13 16:00:49 2025 GMT
Not After : Jun 14 16:00:49 2025 GMT
Subject: CN=ce9dc1ea7cf500736f762d3ac9bcc84a4843a0f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:8f:35:b4:6b:40:20:d5:74:27:8f:40:a4:98:
71:85:de:00:23:44:a7:95:ab:72:05:8d:2b:5c:d9:
4d:ca:94:e3:9b:c9:01:d6:71:ab:af:c0:30:ef:5d:
eb:6c:59:8e:7b:0c:fb:c7:b1:c5:e5:fd:c7:5c:69:
8a:34:c8:8a:61:ec:81:98:8f:25:c7:c5:6b:72:f7:
90:b9:b0:6d:10:7e:35:6e:05:ce:0c:f0:94:a3:10:
db:12:31:c4:d2:36:39:ac:25:e2:e9:93:d2:37:22:
7a:41:e0:c1:05:ef:55:9c:7c:7c:7e:04:72:47:7f:
02:56:cd:b9:7b:e3:1b:b4:10:59:2e:07:be:bf:84:
ed:03:ce:a6:14:10:d5:94:a1:86:03:23:09:35:2b:
9a:f2:8c:59:4e:4f:80:e9:25:a9:49:e8:9a:83:3e:
95:c4:44:ef:6e:5e:d0:f6:df:ac:3f:69:a0:4b:bc:
c0:77:c2:c2:a2:aa:74:6e:c8:0e:e9:62:89:21:8d:
f8:0b:79:74:46:fc:2f:51:9b:21:9d:22:fd:b0:a3:
49:d8:ab:74:25:35:21:2e:fc:16:17:96:84:0b:79:
ea:f7:03:bb:d1:ed:5f:2f:c6:61:3c:0c:14:b6:cf:
5b:a7:91:66:55:9f:62:e6:e8:83:3f:1b:10:b9:6b:
9b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:9D:C1:EA:7C:F5:00:73:6F:76:2D:3A:C9:BC:C8:4A:48:43:A0:F6
X509v3 Authority Key Identifier:
keyid:CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:78:57:4f:08:bc:3a:07:4a:11:b0:6c:4a:69:83:eb:8d:22:
ed:47:3b:c2:42:a5:b9:91:c1:24:d2:fb:16:ce:a0:2a:9d:72:
33:37:6d:e6:59:fc:a6:63:72:e2:18:96:2c:6b:c9:e0:0d:3f:
56:a1:6c:a8:1b:5f:32:b9:a5:b2:91:54:16:cc:de:12:9c:bf:
8c:f3:9d:82:c3:c2:c5:ce:1f:17:48:db:73:d4:de:46:5d:b9:
2b:a5:5d:3b:86:af:68:19:68:63:88:05:f7:0a:69:74:49:5e:
09:d9:62:d6:11:2a:0a:1d:b7:f8:a6:81:9d:48:1f:86:4f:b4:
64:c2:50:47:c0:c3:e6:78:28:e9:26:57:25:83:fc:df:a0:69:
b8:1b:f1:c0:2e:28:b4:ca:3d:53:52:3b:6b:63:65:ba:5b:34:
b3:18:4e:97:4a:79:21:ac:93:64:86:7c:b3:d2:62:db:ab:4d:
ba:30:9a:56:41:fc:4c:e1:5b:f8:f1:b7:a5:85:8e:7d:31:33:
96:79:08:8f:0d:51:15:f5:2f:85:c9:ef:29:7e:f7:bf:dd:83:
60:40:e9:f8:7a:c0:1b:92:d4:3c:bd:a5:4f:47:a3:ff:22:28:
f8:9a:5a:02:a5:df:b5:3d:a4:29:80:62:da:92:a4:ec:b3:5b:
d3:d9:bb:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdqBbgmab3CSmtTnF3nA8uJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkMjBiY2FmNzIxMjNlMmQ5ZjVlMjc4ODZiMzgzOWI3NDI0
NDEwYjcwHhcNMjUwNjEzMTYwMDQ5WhcNMjUwNjE0MTYwMDQ5WjAzMTEwLwYDVQQD
EyhjZTlkYzFlYTdjZjUwMDczNmY3NjJkM2FjOWJjYzg0YTQ4NDNhMGY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAho81tGtAINV0J49ApJhxhd4AI0Sn
latyBY0rXNlNypTjm8kB1nGrr8Aw713rbFmOewz7x7HF5f3HXGmKNMiKYeyBmI8l
x8VrcveQubBtEH41bgXODPCUoxDbEjHE0jY5rCXi6ZPSNyJ6QeDBBe9VnHx8fgRy
R38CVs25e+MbtBBZLge+v4TtA86mFBDVlKGGAyMJNSua8oxZTk+A6SWpSeiagz6V
xETvbl7Q9t+sP2mgS7zAd8LCoqp0bsgO6WKJIY34C3l0RvwvUZshnSL9sKNJ2Kt0
JTUhLvwWF5aEC3nq9wO70e1fL8ZhPAwUts9bp5FmVZ9i5uiDPxsQuWubrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM6dwep89QBzb3YtOsm8yEpIQ6D2MB8GA1UdIwQY
MBaAFM0gvK9yEj4tn14niGs4ObdCRBC3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelNDOHIzSVNQaTJmWGllSWF6ZzV0MEpFRUxjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy80NGNmNmEtZGNiZi00MzM1LTliZGYt
MGY4MmMxYmExODA2LzEvelNDOHIzSVNQaTJmWGllSWF6ZzV0MEpFRUxjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy80NGNmNmEtZGNiZi00MzM1LTliZGYtMGY4MmMxYmExODA2
LzEvelNDOHIzSVNQaTJmWGllSWF6ZzV0MEpFRUxjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAonhXTwi8
OgdKEbBsSmmD640i7Uc7wkKluZHBJNL7Fs6gKp1yMzdt5ln8pmNy4hiWLGvJ4A0/
VqFsqBtfMrmlspFUFszeEpy/jPOdgsPCxc4fF0jbc9TeRl25K6VdO4avaBloY4gF
9wppdEleCdli1hEqCh23+KaBnUgfhk+0ZMJQR8DD5ngo6SZXJYP836BpuBvxwC4o
tMo9U1I7a2Nluls0sxhOl0p5IayTZIZ8s9Ji26tNujCaVkH8TOFb+PG3pYWOfTEz
lnkIjw1RFfUvhcnvKX73v92DYEDp+HrAG5LUPL2lT0ej/yIo+JpaAqXftT2kKYBi
2pKk7LNb09m7Qg==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:20:57 2025 by rpki-client