Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json)
Hash identifier: wJv9yDHouGtDN3o6AzmRrXvAb37jyWONv11v0TIaPKQ=
Subject key identifier: A4:F2:EF:25:9C:CE:0E:D9:73:A1:83:DE:AE:69:09:66:2B:36:85:05
Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196
Certificate serial: 01974666CA3B9CD89F26ADC4966F9F558DFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
Manifest number: 0C21
Signing time: Fri 06 Jun 2025 18:00:30 +0000
Manifest this update: Fri 06 Jun 2025 18:00:30 +0000
Manifest next update: Sat 07 Jun 2025 18:00:30 +0000
Files and hashes: 1: FwAUcIE-PlUBJk-lyofvjIK4_Vk.roa (hash: 7pDJDV3PAprmagYY0WEztJ7b9H5DGoPcWbYIPWhc9l8=)
2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: K0FRwYWXR83s0lNgW3G130uqKEQ1Hs3hu4czC+RqaCg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:66:ca:3b:9c:d8:9f:26:ad:c4:96:6f:9f:55:8d:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196
Validity
Not Before: Jun 6 18:00:30 2025 GMT
Not After : Jun 7 18:00:30 2025 GMT
Subject: CN=a4f2ef259cce0ed973a183deae6909662b368505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:70:a1:9b:e1:a0:85:b6:7c:5a:25:b2:71:af:
7f:7e:eb:26:84:d3:94:1f:81:39:d4:66:6c:4e:71:
4a:34:fb:53:6d:0a:e4:ab:1d:07:7a:4f:99:d9:39:
4a:24:25:d8:51:57:4e:33:4d:71:29:64:8e:e8:14:
1c:64:f6:29:08:39:92:12:a1:fb:28:57:f8:f2:f0:
3a:f7:b5:e5:10:14:2f:25:85:46:a3:89:bd:eb:f3:
0a:fc:b5:9d:d1:fc:95:87:73:ed:b3:1f:38:e4:fd:
7b:04:08:47:ab:66:21:bc:f6:db:71:c3:d1:62:c7:
0d:e2:6a:14:c2:74:82:d4:97:84:cf:40:60:4f:06:
11:9e:d2:f3:d8:42:57:58:72:ad:0f:1a:df:f0:1b:
cc:b3:5e:a0:5c:54:51:fe:6b:ba:17:d5:aa:fe:99:
5e:db:bc:c8:bf:c4:02:10:af:6f:0b:05:08:9b:9a:
aa:ce:a1:3d:41:98:f3:fb:27:cd:90:bd:28:b6:99:
ad:bf:69:80:fd:3e:6d:41:21:97:b0:be:4e:e5:bb:
26:2a:7c:25:99:ec:71:9e:e5:83:17:e3:1f:58:21:
5e:a3:ae:62:8b:ab:69:e4:b3:3c:c5:b4:2c:9e:94:
b1:c9:3c:a7:0c:d0:6c:97:a4:e8:54:61:78:51:99:
7e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F2:EF:25:9C:CE:0E:D9:73:A1:83:DE:AE:69:09:66:2B:36:85:05
X509v3 Authority Key Identifier:
keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:82:b8:20:20:64:c5:7e:e7:1e:fe:b8:1e:68:36:46:1e:13:
8f:91:16:b0:0e:72:a6:ff:4d:3d:fb:32:4d:01:65:fe:9e:f9:
06:8e:19:9d:a4:17:a5:5c:d7:6b:74:8e:e8:cc:19:01:b8:52:
1f:eb:d2:7a:5e:7b:59:56:d6:00:2d:e0:b0:74:f2:37:6f:a8:
f0:80:4b:45:e0:45:e5:32:75:75:f2:11:fd:29:71:b7:b9:7d:
b4:3e:8d:bd:29:1f:07:6e:26:cf:11:00:0b:45:43:eb:e4:b7:
24:92:f1:25:0f:9e:5c:b2:57:08:29:2d:21:09:13:09:c3:99:
84:59:19:f3:2b:ee:47:ac:55:84:ac:fd:ce:3b:06:5e:44:ab:
68:e4:7d:7e:1f:61:2e:54:bc:84:06:da:f8:fd:57:7f:76:9b:
57:bf:fd:ba:44:aa:82:55:8a:d4:85:93:2e:89:4f:47:03:52:
8d:d9:ef:80:3e:6d:44:2a:8b:13:db:f8:04:36:24:21:a3:b5:
5b:68:ce:11:70:8a:97:36:69:31:92:65:e4:bd:88:57:03:8f:
db:8c:d2:72:3c:24:af:54:0b:fc:db:f8:74:b9:7f:cd:9d:ad:
3c:e9:e8:76:30:1b:ed:ce:56:b4:25:e9:5d:af:9f:22:c4:87:
2d:ae:30:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGZso7nNifJq3Elm+fVY3+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYmE2ZDU3MDRmZDI5MGQwZTA3MzM3NmVkYTY4ODcxNzU2
NGQxOTYwHhcNMjUwNjA2MTgwMDMwWhcNMjUwNjA3MTgwMDMwWjAzMTEwLwYDVQQD
EyhhNGYyZWYyNTljY2UwZWQ5NzNhMTgzZGVhZTY5MDk2NjJiMzY4NTA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXChm+GghbZ8WiWyca9/fusmhNOU
H4E51GZsTnFKNPtTbQrkqx0Hek+Z2TlKJCXYUVdOM01xKWSO6BQcZPYpCDmSEqH7
KFf48vA697XlEBQvJYVGo4m96/MK/LWd0fyVh3Ptsx845P17BAhHq2YhvPbbccPR
YscN4moUwnSC1JeEz0BgTwYRntLz2EJXWHKtDxrf8BvMs16gXFRR/mu6F9Wq/ple
27zIv8QCEK9vCwUIm5qqzqE9QZjz+yfNkL0otpmtv2mA/T5tQSGXsL5O5bsmKnwl
mexxnuWDF+MfWCFeo65ii6tp5LM8xbQsnpSxyTynDNBsl6ToVGF4UZl+iQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKTy7yWczg7Zc6GD3q5pCWYrNoUFMB8GA1UdIwQY
MBaAFM26bVcE/SkNDgczdu2miHF1ZNGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemJwdFZ3VDlLUTBPQnpOMjdhYUljWFZrMFpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9kMzI4MGItNTNmNy00Mzk0LTg1NTkt
YTQ2MTE2OWYxZGMyLzEvemJwdFZ3VDlLUTBPQnpOMjdhYUljWFZrMFpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9kMzI4MGItNTNmNy00Mzk0LTg1NTktYTQ2MTE2OWYxZGMy
LzEvemJwdFZ3VDlLUTBPQnpOMjdhYUljWFZrMFpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAoK4ICBk
xX7nHv64Hmg2Rh4Tj5EWsA5ypv9NPfsyTQFl/p75Bo4ZnaQXpVzXa3SO6MwZAbhS
H+vSel57WVbWAC3gsHTyN2+o8IBLReBF5TJ1dfIR/Slxt7l9tD6NvSkfB24mzxEA
C0VD6+S3JJLxJQ+eXLJXCCktIQkTCcOZhFkZ8yvuR6xVhKz9zjsGXkSraOR9fh9h
LlS8hAba+P1Xf3abV7/9ukSqglWK1IWTLolPRwNSjdnvgD5tRCqLE9v4BDYkIaO1
W2jOEXCKlzZpMZJl5L2IVwOP24zScjwkr1QL/Nv4dLl/zZ2tPOnodjAb7c5WtCXp
Xa+fIsSHLa4w5A==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:24:01 2025 by rpki-client