Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
File: zzKCScw17CfMEOGLiCxsE4l8hJc.mft (raw, json)
Hash identifier: rf1DyA28Gkh0kscwK9x0OgDu6aRjosHBXno3BRQ0Xo8=
Subject key identifier: 87:7F:0C:D4:6C:50:7C:27:7C:C6:3C:E5:D3:F7:1E:AA:2B:A5:6E:33
Authority key identifier: CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97
Certificate issuer: /CN=cf328249cc35ec27cc10e18b882c6c13897c8497
Certificate serial: 01965537B6E0DA85803135AC62A917D2107A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
Manifest number: 0C97
Signing time: Sun 20 Apr 2025 22:00:36 +0000
Manifest this update: Sun 20 Apr 2025 22:00:36 +0000
Manifest next update: Mon 21 Apr 2025 22:00:36 +0000
Files and hashes: 1: zzKCScw17CfMEOGLiCxsE4l8hJc.crl (hash: +XvdOxzUtF7EZs0rprXAfhQArrj9xScnnOW3k1r80zU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:b6:e0:da:85:80:31:35:ac:62:a9:17:d2:10:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf328249cc35ec27cc10e18b882c6c13897c8497
Validity
Not Before: Apr 20 22:00:36 2025 GMT
Not After : Apr 21 22:00:36 2025 GMT
Subject: CN=877f0cd46c507c277cc63ce5d3f71eaa2ba56e33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:82:31:bf:e1:33:33:67:c3:a8:1e:a8:b6:7b:
58:90:f4:ac:96:82:8f:e5:aa:1d:b3:a2:71:b8:09:
8c:07:e8:57:b1:30:8a:aa:1a:9d:1f:46:bd:d1:97:
19:18:df:39:52:2f:0d:6c:72:6d:f9:fd:6b:d0:02:
c3:b7:69:1d:61:fb:79:91:af:e7:f2:49:a5:df:c1:
b6:54:d8:38:b9:df:6a:6c:14:b3:7d:3b:01:ec:1a:
ff:57:ae:40:c5:09:23:d1:dd:f1:97:7f:a9:53:c7:
4d:ed:d4:7d:75:1f:6e:00:20:83:ec:f2:d0:53:c8:
24:13:3a:66:56:15:ee:37:d1:f3:94:71:75:14:23:
30:63:1a:48:ca:e7:99:09:18:12:0e:c5:01:8a:d6:
a8:31:ca:ba:0e:73:a4:e0:46:ab:4c:10:a3:1d:75:
50:84:91:83:d3:d2:06:ee:59:c7:2b:77:97:56:94:
d2:32:84:f4:23:59:4f:06:41:ed:ab:26:c3:07:ae:
90:62:13:44:00:b7:6c:78:29:f4:91:51:e1:1d:97:
35:9f:6e:fe:d0:70:0a:06:63:b6:0d:9c:6b:66:b7:
a7:b4:d1:fb:c2:6d:af:a1:3d:06:ae:69:d7:76:f3:
00:ba:47:12:ea:a2:6f:81:ec:aa:57:51:e4:c9:68:
bb:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:7F:0C:D4:6C:50:7C:27:7C:C6:3C:E5:D3:F7:1E:AA:2B:A5:6E:33
X509v3 Authority Key Identifier:
keyid:CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:36:8d:b2:fc:c7:41:cc:7d:0f:bf:7d:f0:29:e9:19:16:86:
ba:a5:59:af:aa:40:9f:bd:15:7a:92:6b:ce:32:ab:dc:15:d5:
c3:3e:db:5c:6a:3a:62:86:55:e7:3c:1b:b0:73:96:30:72:ba:
ab:2e:b8:fd:c2:60:8e:2b:9c:06:17:0c:29:51:50:bc:c7:1c:
59:1d:7e:81:12:ec:db:43:60:cd:b4:a8:06:a9:80:07:aa:3c:
cf:d9:e2:1a:ce:98:34:69:62:5c:38:3e:2c:83:07:5e:9d:30:
0c:32:0a:73:c6:15:f9:55:53:6b:20:b0:f0:3c:ab:30:1c:0f:
99:23:52:71:2b:e0:65:7d:33:8b:48:6c:92:94:00:ae:b8:23:
09:20:1b:07:7b:53:04:10:a2:d2:38:85:24:e1:ef:4f:c4:88:
e2:c7:c9:4e:9b:8c:91:17:e2:44:02:e8:85:7d:88:70:a8:1a:
74:7d:bd:59:ef:2b:98:f1:71:ef:bc:b1:e5:71:65:d6:c3:79:
49:a5:18:92:a6:ae:ec:4c:66:4c:af:56:ef:f3:e7:70:30:53:
ff:0e:e5:45:08:db:b9:ad:98:d8:8b:9b:2e:45:ff:3d:a7:2e:
01:49:40:43:c4:8e:21:70:a9:a9:32:28:47:fe:42:b8:2c:5e:
f8:40:d6:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVN7bg2oWAMTWsYqkX0hB6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmMzI4MjQ5Y2MzNWVjMjdjYzEwZTE4Yjg4MmM2YzEzODk3
Yzg0OTcwHhcNMjUwNDIwMjIwMDM2WhcNMjUwNDIxMjIwMDM2WjAzMTEwLwYDVQQD
Eyg4NzdmMGNkNDZjNTA3YzI3N2NjNjNjZTVkM2Y3MWVhYTJiYTU2ZTMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIIxv+EzM2fDqB6otntYkPSsloKP
5aods6JxuAmMB+hXsTCKqhqdH0a90ZcZGN85Ui8NbHJt+f1r0ALDt2kdYft5ka/n
8kml38G2VNg4ud9qbBSzfTsB7Br/V65AxQkj0d3xl3+pU8dN7dR9dR9uACCD7PLQ
U8gkEzpmVhXuN9HzlHF1FCMwYxpIyueZCRgSDsUBitaoMcq6DnOk4EarTBCjHXVQ
hJGD09IG7lnHK3eXVpTSMoT0I1lPBkHtqybDB66QYhNEALdseCn0kVHhHZc1n27+
0HAKBmO2DZxrZrentNH7wm2voT0GrmnXdvMAukcS6qJvgeyqV1HkyWi7PQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFId/DNRsUHwnfMY85dP3HqorpW4zMB8GA1UdIwQY
MBaAFM8ygknMNewnzBDhi4gsbBOJfISXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenpLQ1NjdzE3Q2ZNRU9HTGlDeHNFNGw4aEpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS8yN2Q0MDktNzY1OS00NTNlLWIzNmYt
Mjk3ZDUyZjBjMjgzLzEvenpLQ1NjdzE3Q2ZNRU9HTGlDeHNFNGw4aEpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS8yN2Q0MDktNzY1OS00NTNlLWIzNmYtMjk3ZDUyZjBjMjgz
LzEvenpLQ1NjdzE3Q2ZNRU9HTGlDeHNFNGw4aEpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABDaNsvzH
Qcx9D7998CnpGRaGuqVZr6pAn70VepJrzjKr3BXVwz7bXGo6YoZV5zwbsHOWMHK6
qy64/cJgjiucBhcMKVFQvMccWR1+gRLs20NgzbSoBqmAB6o8z9niGs6YNGliXDg+
LIMHXp0wDDIKc8YV+VVTayCw8DyrMBwPmSNScSvgZX0zi0hskpQArrgjCSAbB3tT
BBCi0jiFJOHvT8SI4sfJTpuMkRfiRALohX2IcKgadH29We8rmPFx77yx5XFl1sN5
SaUYkqau7ExmTK9W7/PncDBT/w7lRQjbua2Y2IubLkX/PacuAUlAQ8SOIXCpqTIo
R/5CuCxe+EDWmA==
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:19:20 2025 by rpki-client