Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft
File: skz59tA09Gdg9PWbFzneEnuK3_M.mft (raw, json)
Hash identifier: yyf1ZGGAxsGbIqlxBYXruRhEE5bUffu6GplDnKECuh0=
Subject key identifier: 42:28:87:C1:C8:38:A2:4A:E2:52:FB:72:B3:47:65:EB:C6:05:D8:43
Authority key identifier: B2:4C:F9:F6:D0:34:F4:67:60:F4:F5:9B:17:39:DE:12:7B:8A:DF:F3
Certificate issuer: /CN=b24cf9f6d034f46760f4f59b1739de127b8adff3
Certificate serial: 01974E57F585AEAADB466601112782C861C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft
Manifest number: 0A63
Signing time: Sun 08 Jun 2025 07:01:16 +0000
Manifest this update: Sun 08 Jun 2025 07:01:16 +0000
Manifest next update: Mon 09 Jun 2025 07:01:16 +0000
Files and hashes: 1: Y5LyyYUOXTFEg08dRczspK_kl2Y.roa (hash: ttMluHxYVIHmrZ73+Be4i0HFe1udkGlrlxsl6kstfvI=)
2: skz59tA09Gdg9PWbFzneEnuK3_M.crl (hash: GuhMFb3BjwJJTn+6D7FZR3icHU/AMEBgS6TTJJ7ai3c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:f5:85:ae:aa:db:46:66:01:11:27:82:c8:61:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b24cf9f6d034f46760f4f59b1739de127b8adff3
Validity
Not Before: Jun 8 07:01:16 2025 GMT
Not After : Jun 9 07:01:16 2025 GMT
Subject: CN=422887c1c838a24ae252fb72b34765ebc605d843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:46:a9:cd:3c:ca:d9:61:43:cb:29:7c:c2:f7:
f0:35:1f:9c:d9:51:50:22:97:98:cc:27:09:9b:f2:
ad:ca:90:e3:d4:83:73:36:57:49:7a:58:5d:b3:8f:
70:c5:4e:23:bd:43:a3:9e:0a:af:98:ac:44:34:c9:
f3:7a:31:dd:bd:05:67:7f:58:bf:6b:4e:01:e9:10:
d3:93:47:3e:01:c5:d3:ef:f4:df:90:85:3b:33:fc:
42:ca:38:ea:60:10:e4:93:31:19:62:32:34:50:87:
5c:5a:fb:bc:07:ea:a1:33:77:1e:bc:b1:ee:94:10:
5f:24:ae:32:24:9f:02:27:7b:42:1a:eb:07:c9:dc:
b6:60:40:cb:0b:5f:19:33:98:27:45:28:92:d5:39:
39:64:94:4a:5d:aa:24:77:ba:4c:2c:8e:5b:16:2d:
6e:38:b9:9f:d8:93:d8:12:1c:4d:2c:01:1a:f1:db:
63:11:0f:fa:6e:02:f9:ec:92:3e:c5:61:5c:6b:66:
a0:28:c6:c9:42:72:5b:37:ec:47:09:59:b9:8f:97:
8a:2a:37:db:97:a9:f6:2b:61:50:f9:bb:2a:d7:e6:
e5:a1:68:30:5a:ee:99:77:6f:58:5b:dc:a5:52:d0:
f6:ea:9a:30:2f:34:7d:1e:b0:80:29:3c:d7:e9:6b:
d3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:28:87:C1:C8:38:A2:4A:E2:52:FB:72:B3:47:65:EB:C6:05:D8:43
X509v3 Authority Key Identifier:
keyid:B2:4C:F9:F6:D0:34:F4:67:60:F4:F5:9B:17:39:DE:12:7B:8A:DF:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:f8:c7:fb:70:2f:b3:4f:6a:27:b3:1f:e3:9b:2f:5b:86:46:
11:7b:8f:2b:0e:79:39:0d:09:e7:28:36:25:55:c4:38:dd:2f:
62:a3:ff:0b:c5:bd:6b:db:77:ed:1d:7a:0c:8c:a0:3e:8a:a9:
eb:2f:60:da:2d:06:c4:86:1f:cc:81:91:90:85:26:92:f6:9c:
89:58:89:4b:42:06:47:bc:ff:d2:db:67:28:bf:6e:07:e3:c0:
2f:ca:5d:14:cb:29:bc:4b:c5:de:d5:60:10:ba:a1:e2:6e:c8:
61:28:d7:24:79:d7:3c:6e:dd:6b:2a:b3:e3:ac:d2:ea:e0:8f:
2a:4c:00:60:85:4a:c7:97:7a:28:9c:00:60:53:16:15:00:73:
3b:7d:6a:0e:ec:f5:cf:fc:0e:e9:1c:e1:0d:04:61:d6:85:be:
80:93:bc:c0:65:92:99:d3:2b:a2:1b:f2:3d:d9:c6:5d:48:c9:
7a:22:07:29:4f:bd:4e:4b:df:6d:08:4a:f5:df:ba:2e:1a:bb:
3d:e4:c8:f3:a4:8e:06:a6:a0:8f:f9:4d:07:0b:46:69:84:37:
be:51:4e:34:97:06:17:0b:0a:5b:3c:ff:b8:cb:96:94:a0:7f:
f7:4d:90:69:83:9f:35:51:9a:e8:e0:51:e4:f1:11:50:d0:e8:
6a:a0:31:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOV/WFrqrbRmYBESeCyGHDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyNGNmOWY2ZDAzNGY0Njc2MGY0ZjU5YjE3MzlkZTEyN2I4
YWRmZjMwHhcNMjUwNjA4MDcwMTE2WhcNMjUwNjA5MDcwMTE2WjAzMTEwLwYDVQQD
Eyg0MjI4ODdjMWM4MzhhMjRhZTI1MmZiNzJiMzQ3NjVlYmM2MDVkODQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUapzTzK2WFDyyl8wvfwNR+c2VFQ
IpeYzCcJm/KtypDj1INzNldJelhds49wxU4jvUOjngqvmKxENMnzejHdvQVnf1i/
a04B6RDTk0c+AcXT7/TfkIU7M/xCyjjqYBDkkzEZYjI0UIdcWvu8B+qhM3cevLHu
lBBfJK4yJJ8CJ3tCGusHydy2YEDLC18ZM5gnRSiS1Tk5ZJRKXaokd7pMLI5bFi1u
OLmf2JPYEhxNLAEa8dtjEQ/6bgL57JI+xWFca2agKMbJQnJbN+xHCVm5j5eKKjfb
l6n2K2FQ+bsq1+bloWgwWu6Zd29YW9ylUtD26powLzR9HrCAKTzX6WvTYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEIoh8HIOKJK4lL7crNHZevGBdhDMB8GA1UdIwQY
MBaAFLJM+fbQNPRnYPT1mxc53hJ7it/zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2t6NTl0QTA5R2RnOVBXYkZ6bmVFbnVLM19NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wZDAwNmQtYWI3YS00MWM5LTk3ZjMt
OTk1YzM2OWRhNjcyLzEvc2t6NTl0QTA5R2RnOVBXYkZ6bmVFbnVLM19NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi8wZDAwNmQtYWI3YS00MWM5LTk3ZjMtOTk1YzM2OWRhNjcy
LzEvc2t6NTl0QTA5R2RnOVBXYkZ6bmVFbnVLM19NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE/jH+3Av
s09qJ7Mf45svW4ZGEXuPKw55OQ0J5yg2JVXEON0vYqP/C8W9a9t37R16DIygPoqp
6y9g2i0GxIYfzIGRkIUmkvaciViJS0IGR7z/0ttnKL9uB+PAL8pdFMspvEvF3tVg
ELqh4m7IYSjXJHnXPG7dayqz46zS6uCPKkwAYIVKx5d6KJwAYFMWFQBzO31qDuz1
z/wO6RzhDQRh1oW+gJO8wGWSmdMrohvyPdnGXUjJeiIHKU+9TkvfbQhK9d+6Lhq7
PeTI86SOBqagj/lNBwtGaYQ3vlFONJcGFwsKWzz/uMuWlKB/902QaYOfNVGa6OBR
5PERUNDoaqAxKw==
-----END CERTIFICATE-----
Generated at Sun Jun 8 13:43:53 2025 by rpki-client