Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
File: zS0OOdePxiAiVaW0rbVFg9ne3c4.mft (raw, json)
Hash identifier: C/tVYwXMaAGIwHyYiLspobMd7w3YsIlgNkbW361kiJM=
Subject key identifier: BF:7F:16:32:90:46:D6:C7:EE:59:E3:C9:B7:BC:7A:DE:51:7F:CA:83
Authority key identifier: CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE
Certificate issuer: /CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce
Certificate serial: 01974779DDC280955D6860894D1F2E990079
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
Manifest number: 089F
Signing time: Fri 06 Jun 2025 23:00:58 +0000
Manifest this update: Fri 06 Jun 2025 23:00:58 +0000
Manifest next update: Sat 07 Jun 2025 23:00:58 +0000
Files and hashes: 1: 3EEDSMX4c2BQtUFlexj7ViVaNFg.roa (hash: i/HEM5WN4SpMsFYFUufkSvdwrDOTS979dTw2WJmTqxo=)
2: zS0OOdePxiAiVaW0rbVFg9ne3c4.crl (hash: qWjkD4dYAd+uqJmYBftuRmzPJdvurTOH6JwWJv5pDrw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:dd:c2:80:95:5d:68:60:89:4d:1f:2e:99:00:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce
Validity
Not Before: Jun 6 23:00:58 2025 GMT
Not After : Jun 7 23:00:58 2025 GMT
Subject: CN=bf7f16329046d6c7ee59e3c9b7bc7ade517fca83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:bc:b3:45:4c:a7:3a:3a:2b:c6:18:90:9a:f7:
b2:64:55:bb:bc:85:4c:e1:45:72:e2:4a:73:ef:af:
48:4a:88:5f:9d:7f:41:41:55:82:1d:f0:e9:4f:06:
d2:61:dc:5c:d1:9c:cd:54:f9:0b:fa:a7:01:66:b4:
24:bf:8f:b9:ed:72:a0:20:36:7f:63:f7:ef:fe:3f:
13:e5:91:d0:92:dd:cf:ed:98:f7:97:29:8f:8c:b8:
d0:8e:c7:ea:c0:0c:59:85:ad:ef:3a:89:eb:36:e5:
9d:8c:be:14:31:c8:ee:1b:51:fc:63:1f:21:2e:fc:
04:38:e6:dd:21:45:f8:c2:d2:48:20:75:b7:66:af:
1d:a7:e9:1b:2c:2e:8b:a8:02:cb:19:c0:b4:97:b5:
7c:53:53:85:91:4f:b5:a0:63:82:72:54:d1:e5:79:
a0:08:a9:bb:bf:70:ab:63:52:0f:0c:91:74:e1:d3:
a1:67:a8:c0:3f:a8:ca:2e:e9:91:95:de:aa:69:0e:
e0:4e:eb:4b:5e:ca:65:ec:1b:0d:00:ea:1e:55:22:
6f:ef:67:f7:81:bb:de:8e:48:a8:a0:17:84:bb:cb:
b8:a4:24:df:f7:c7:4c:16:47:a4:04:5c:f4:eb:07:
12:e4:96:0b:90:a5:ce:ac:b4:0c:9b:ac:88:50:cb:
15:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:7F:16:32:90:46:D6:C7:EE:59:E3:C9:B7:BC:7A:DE:51:7F:CA:83
X509v3 Authority Key Identifier:
keyid:CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:2f:b4:ba:ab:a5:05:51:cb:c1:4b:82:4b:c1:4f:5f:38:6d:
02:4d:73:51:7a:32:aa:c1:c0:07:64:88:ba:c5:13:11:38:16:
36:ec:dd:08:99:71:22:c7:8a:da:ec:1a:ff:82:0f:8c:1f:2b:
4a:1e:25:5c:f4:5d:b4:6f:6a:c1:ab:1f:37:ec:fe:2d:49:2c:
60:e9:73:7f:3f:9b:fd:94:59:46:34:4c:1f:a3:65:6f:8e:f4:
82:df:e7:07:2f:20:c6:02:7a:6d:de:89:c8:43:aa:12:8e:75:
af:25:97:36:94:f6:ed:c6:ec:18:f6:01:31:22:3c:f1:66:0f:
ec:b2:cf:a9:44:88:62:7d:98:51:d1:d4:65:01:da:b1:e1:95:
b4:83:c3:af:21:ff:29:47:24:08:95:d7:53:14:5e:77:30:80:
34:4f:07:46:2e:62:9e:a4:2c:5d:4e:d6:57:fb:dd:d9:37:fb:
4b:21:b1:82:cd:91:ce:1a:9f:5c:3d:c9:70:65:a6:b7:ea:93:
e4:2d:84:fd:4d:87:3f:c4:94:a1:c5:75:69:94:71:a1:3b:e9:
09:0c:a3:5c:49:bd:45:d5:a3:4a:c6:2b:98:ec:de:cb:f3:c1:
a8:b2:f9:50:93:d0:8c:06:77:41:1a:b1:c5:23:6e:a8:c0:f5:
30:59:58:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHed3CgJVdaGCJTR8umQB5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkMmQwZTM5ZDc4ZmM2MjAyMjU1YTViNGFkYjU0NTgzZDlk
ZWRkY2UwHhcNMjUwNjA2MjMwMDU4WhcNMjUwNjA3MjMwMDU4WjAzMTEwLwYDVQQD
EyhiZjdmMTYzMjkwNDZkNmM3ZWU1OWUzYzliN2JjN2FkZTUxN2ZjYTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyLyzRUynOjorxhiQmveyZFW7vIVM
4UVy4kpz769ISohfnX9BQVWCHfDpTwbSYdxc0ZzNVPkL+qcBZrQkv4+57XKgIDZ/
Y/fv/j8T5ZHQkt3P7Zj3lymPjLjQjsfqwAxZha3vOonrNuWdjL4UMcjuG1H8Yx8h
LvwEOObdIUX4wtJIIHW3Zq8dp+kbLC6LqALLGcC0l7V8U1OFkU+1oGOCclTR5Xmg
CKm7v3CrY1IPDJF04dOhZ6jAP6jKLumRld6qaQ7gTutLXspl7BsNAOoeVSJv72f3
gbvejkiooBeEu8u4pCTf98dMFkekBFz06wcS5JYLkKXOrLQMm6yIUMsVHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL9/FjKQRtbH7lnjybe8et5Rf8qDMB8GA1UdIwQY
MBaAFM0tDjnXj8YgIlWltK21RYPZ3t3OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelMwT09kZVB4aUFpVmFXMHJiVkZnOW5lM2M0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS81MTg4NWItNTY5My00ODkyLWExZDQt
MWExOTc5MmExZDI2LzEvelMwT09kZVB4aUFpVmFXMHJiVkZnOW5lM2M0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS81MTg4NWItNTY5My00ODkyLWExZDQtMWExOTc5MmExZDI2
LzEvelMwT09kZVB4aUFpVmFXMHJiVkZnOW5lM2M0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATC+0uqul
BVHLwUuCS8FPXzhtAk1zUXoyqsHAB2SIusUTETgWNuzdCJlxIseK2uwa/4IPjB8r
Sh4lXPRdtG9qwasfN+z+LUksYOlzfz+b/ZRZRjRMH6Nlb470gt/nBy8gxgJ6bd6J
yEOqEo51ryWXNpT27cbsGPYBMSI88WYP7LLPqUSIYn2YUdHUZQHaseGVtIPDryH/
KUckCJXXUxRedzCANE8HRi5inqQsXU7WV/vd2Tf7SyGxgs2RzhqfXD3JcGWmt+qT
5C2E/U2HP8SUocV1aZRxoTvpCQyjXEm9RdWjSsYrmOzey/PBqLL5UJPQjAZ3QRqx
xSNuqMD1MFlY6w==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:25:29 2025 by rpki-client