Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
File: 5zfJpEKotKTJEvEbwrbTzxAK30I.mft (raw, json)
Hash identifier: nUwcYdpFB6hLEQe/ftSbyUmuiNrXojwKwHEmjxtcMTI=
Subject key identifier: 80:C5:86:CC:7A:4D:FF:D5:54:C7:E5:A0:BC:1B:91:7F:86:B7:C3:79
Authority key identifier: E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
Certificate issuer: /CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Certificate serial: 01975AC990E0FBFED9A8ECF2800888050253
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
Manifest number: 1587
Signing time: Tue 10 Jun 2025 17:00:48 +0000
Manifest this update: Tue 10 Jun 2025 17:00:48 +0000
Manifest next update: Wed 11 Jun 2025 17:00:48 +0000
Files and hashes: 1: 5zfJpEKotKTJEvEbwrbTzxAK30I.crl (hash: Au5omwhXoM3yHA7E+wC0Gvan0Tb/QeWWdOXy7z/fWLo=)
2: 9Gaptu7OegDOTWgwtAQ4TQ0AHTI.roa (hash: rkESQzEqL5Foo1j28OK1lOudeGd3GtI+57JqeG8POXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 14:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5a:c9:90:e0:fb:fe:d9:a8:ec:f2:80:08:88:05:02:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Validity
Not Before: Jun 10 17:00:48 2025 GMT
Not After : Jun 11 17:00:48 2025 GMT
Subject: CN=80c586cc7a4dffd554c7e5a0bc1b917f86b7c379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4a:c3:84:1c:16:68:04:46:f8:9e:72:15:f3:
26:f5:11:9e:8f:87:0c:a2:f4:88:bf:d5:8a:6f:a0:
f4:ba:55:f8:28:01:42:31:bb:1e:90:d7:b5:c0:c3:
6f:5c:a2:5c:6e:98:7c:50:32:2f:a4:b6:6f:ba:f1:
fd:b5:e8:b1:26:b7:35:d8:06:82:c6:3f:ce:bf:23:
26:d6:e6:e0:b7:8e:18:b4:41:71:46:57:5d:07:3b:
13:86:b9:cf:9c:a5:78:ac:27:70:03:68:5d:1c:b9:
fc:54:6b:ec:b5:fc:bc:56:37:db:7c:8d:e5:0a:e4:
37:ea:37:73:29:9d:6b:65:46:c4:eb:d2:37:13:94:
5b:90:24:da:7e:e9:f8:44:a4:a9:e4:65:93:2e:f1:
e1:60:c5:04:eb:32:64:0f:42:86:c7:4b:fa:d3:e9:
c7:ed:c6:58:77:19:a6:23:09:fe:1e:d6:60:68:f2:
90:38:bd:c7:3e:a8:f6:36:72:46:fa:ae:63:f9:43:
1b:8b:68:20:bc:b3:8a:7c:d6:97:4d:a4:2d:e9:32:
5e:5c:2e:92:67:c1:94:81:52:f3:59:47:79:63:d6:
a4:a7:5e:2d:bf:38:e3:9b:06:7e:fc:77:fc:d0:25:
65:68:c0:4a:ce:e0:99:c3:7e:8f:92:b0:43:12:3c:
b6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C5:86:CC:7A:4D:FF:D5:54:C7:E5:A0:BC:1B:91:7F:86:B7:C3:79
X509v3 Authority Key Identifier:
keyid:E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:e6:9e:98:53:a3:ff:1a:ef:e5:92:60:02:69:52:65:57:6d:
16:c3:86:e5:88:ac:fe:d3:61:cd:51:4c:6d:f2:66:5a:0f:95:
df:d8:a9:9a:a5:1d:bc:33:fb:a7:95:13:61:dd:37:4a:f4:40:
12:7b:19:e5:e8:c7:a2:02:36:a7:23:d8:d0:88:b2:a2:4c:5b:
65:05:a5:f0:cb:28:8f:77:19:77:f8:cd:f6:20:4a:f2:dd:39:
83:fb:bf:ef:f4:bb:e4:6e:9c:24:83:57:f8:ac:b9:b6:ac:f7:
71:50:14:dd:c3:5f:f4:0a:33:4b:31:05:9c:c0:c9:22:55:ff:
94:b6:4a:d8:9f:22:16:1f:0f:42:ce:18:7b:66:79:92:85:db:
00:c3:0c:de:4d:d5:56:fb:a7:55:8c:08:b7:3b:81:8e:76:6b:
96:7b:e5:04:0b:f0:86:6c:70:6a:0f:67:d7:48:62:5c:1e:fe:
50:c6:20:39:d2:46:40:58:20:6f:06:79:e2:63:ed:a4:f9:c5:
bb:a3:39:78:55:63:19:6e:3e:d9:72:f6:4c:77:b5:5a:68:e3:
da:73:ef:8e:b9:4a:df:2c:19:9a:3c:6f:7a:4a:88:37:9d:f5:
58:5e:dc:91:e6:9f:d3:76:49:39:08:1f:21:a0:5f:d0:de:1d:
5b:8c:3e:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdayZDg+/7ZqOzygAiIBQJTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3MzdjOWE0NDJhOGI0YTRjOTEyZjExYmMyYjZkM2NmMTAw
YWRmNDIwHhcNMjUwNjEwMTcwMDQ4WhcNMjUwNjExMTcwMDQ4WjAzMTEwLwYDVQQD
Eyg4MGM1ODZjYzdhNGRmZmQ1NTRjN2U1YTBiYzFiOTE3Zjg2YjdjMzc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm0rDhBwWaARG+J5yFfMm9RGej4cM
ovSIv9WKb6D0ulX4KAFCMbsekNe1wMNvXKJcbph8UDIvpLZvuvH9teixJrc12AaC
xj/OvyMm1ubgt44YtEFxRlddBzsThrnPnKV4rCdwA2hdHLn8VGvstfy8VjfbfI3l
CuQ36jdzKZ1rZUbE69I3E5RbkCTafun4RKSp5GWTLvHhYMUE6zJkD0KGx0v60+nH
7cZYdxmmIwn+HtZgaPKQOL3HPqj2NnJG+q5j+UMbi2ggvLOKfNaXTaQt6TJeXC6S
Z8GUgVLzWUd5Y9akp14tvzjjmwZ+/Hf80CVlaMBKzuCZw36PkrBDEjy21QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIDFhsx6Tf/VVMfloLwbkX+Gt8N5MB8GA1UdIwQY
MBaAFOc3yaRCqLSkyRLxG8K2088QCt9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXpmSnBFS290S1RKRXZFYndyYlR6eEFLMzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xNzY2N2UtMDIxOS00MjFlLTg0MTIt
MzFmNjAzNzNhMDkyLzEvNXpmSnBFS290S1RKRXZFYndyYlR6eEFLMzBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8xNzY2N2UtMDIxOS00MjFlLTg0MTItMzFmNjAzNzNhMDky
LzEvNXpmSnBFS290S1RKRXZFYndyYlR6eEFLMzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW+aemFOj
/xrv5ZJgAmlSZVdtFsOG5Yis/tNhzVFMbfJmWg+V39ipmqUdvDP7p5UTYd03SvRA
EnsZ5ejHogI2pyPY0IiyokxbZQWl8Msoj3cZd/jN9iBK8t05g/u/7/S75G6cJINX
+Ky5tqz3cVAU3cNf9AozSzEFnMDJIlX/lLZK2J8iFh8PQs4Ye2Z5koXbAMMM3k3V
VvunVYwItzuBjnZrlnvlBAvwhmxwag9n10hiXB7+UMYgOdJGQFggbwZ54mPtpPnF
u6M5eFVjGW4+2XL2THe1Wmjj2nPvjrlK3ywZmjxvekqIN531WF7ckeaf03ZJOQgf
IaBf0N4dW4w+gQ==
-----END CERTIFICATE-----
Generated at Tue Jun 10 19:27:25 2025 by rpki-client