Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
File: zNHiiTDXen65iRtvq7spFe44hao.mft (raw, json)
Hash identifier: ehzuEBgZxFgPrKnVCp5s/Sy/jKv7PiWGNnGltulJ/JQ=
Subject key identifier: 5F:A5:2F:48:99:69:2F:1D:9B:A6:FF:57:32:A8:28:42:F1:4A:6E:39
Authority key identifier: CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
Certificate issuer: /CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Certificate serial: 0196515B373E93B98690AD366B7F75D41588
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 04:00:54 +0000
Manifest this update: Sun 20 Apr 2025 04:00:54 +0000
Manifest next update: Mon 21 Apr 2025 04:00:54 +0000
Files and hashes: 1: zNHiiTDXen65iRtvq7spFe44hao.crl (hash: yeL8v3AOzewc+VuFfc1bPnYM1qZ/PMMlnILK6UvOeC4=)
2: zwMZXsX6Z6y_GtPEpsaBS7FPtIU.roa (hash: bi378rHsH1o9Uq16RD7qe5x44q14EkwJzXLivtK1Naw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5b:37:3e:93:b9:86:90:ad:36:6b:7f:75:d4:15:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Validity
Not Before: Apr 20 04:00:54 2025 GMT
Not After : Apr 21 04:00:54 2025 GMT
Subject: CN=5fa52f4899692f1d9ba6ff5732a82842f14a6e39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:13:6f:21:6e:e3:ec:1b:c4:9b:44:8c:21:cb:
6c:2d:59:ab:ad:2f:c1:ef:cb:42:17:3f:3d:af:9e:
78:50:c8:74:3f:39:c4:44:e1:41:35:15:a6:44:8c:
c2:11:68:50:86:ad:8c:4b:02:5d:2b:9d:42:5a:4d:
25:94:9d:89:73:61:c3:d7:d3:22:6b:2a:57:60:56:
60:a4:59:7e:d9:96:17:3f:f5:af:23:e6:cd:13:2d:
2e:3d:45:a2:a5:51:34:f1:21:aa:38:e0:ab:e8:8e:
96:23:1c:23:38:51:66:d2:9b:bd:67:9e:c2:0c:a8:
5b:08:3b:c5:5e:7d:ec:d2:7e:b7:86:fa:75:cb:53:
33:29:22:d4:ba:0a:03:07:45:c1:d1:1c:4d:81:e6:
87:8a:5a:9a:86:12:dd:f8:a5:ed:81:b9:4d:d7:ec:
a6:05:c4:26:54:62:02:90:e2:e6:91:81:38:f9:ce:
62:af:fe:7e:56:91:91:a7:78:08:c1:47:49:26:9a:
7a:d7:4d:22:f8:ee:72:58:4e:38:25:ea:1d:6f:86:
15:0d:7a:02:e7:fd:93:96:c6:f8:07:5e:03:b6:75:
4c:5e:d3:0c:65:65:f5:f3:01:36:20:1b:56:44:3c:
1f:af:c4:fd:e0:b2:ce:87:30:74:1c:20:90:da:6e:
09:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A5:2F:48:99:69:2F:1D:9B:A6:FF:57:32:A8:28:42:F1:4A:6E:39
X509v3 Authority Key Identifier:
keyid:CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:22:bc:24:b7:0c:de:b9:09:7f:2a:90:6e:65:19:93:86:18:
cc:2c:66:3f:77:88:48:67:8b:01:cb:db:34:08:2c:0c:8c:ad:
b7:ed:30:8d:15:6d:dd:3d:59:4d:e8:3a:3b:67:68:15:30:b5:
80:b2:7c:86:04:ac:61:0b:92:44:ec:b4:63:ac:5f:3d:2c:f2:
97:28:c7:d9:79:00:b8:82:50:2e:50:47:c2:cc:07:af:9c:ff:
eb:df:e8:32:06:89:2e:5f:ef:87:a8:1a:95:c4:e3:1a:c2:9b:
e9:51:30:b9:9d:56:0e:4b:e8:a2:43:ee:f5:51:d6:51:2a:a0:
a3:12:bc:66:89:2a:43:85:02:5c:fb:6e:73:4e:a0:ab:f6:68:
1c:82:36:97:da:eb:1f:af:27:5c:0f:14:02:5e:3c:05:94:51:
cf:b4:1b:7e:f1:72:f8:b5:86:13:e6:7a:47:76:0e:0d:09:56:
24:85:e4:7b:88:f5:31:a7:c0:3c:85:de:e6:58:85:c0:17:c7:
1f:68:6a:ce:a9:61:cc:6c:e2:89:51:5b:1c:d1:80:de:b1:43:
7a:fa:5e:6e:35:4a:51:33:21:28:47:e6:41:bb:bc:0a:7c:32:
f3:72:b5:df:0e:7d:48:c4:f1:9a:35:77:f6:3f:b1:d5:97:42:
1f:95:32:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZRWzc+k7mGkK02a3911BWIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjZDFlMjg5MzBkNzdhN2ViOTg5MWI2ZmFiYmIyOTE1ZWUz
ODg1YWEwHhcNMjUwNDIwMDQwMDU0WhcNMjUwNDIxMDQwMDU0WjAzMTEwLwYDVQQD
Eyg1ZmE1MmY0ODk5NjkyZjFkOWJhNmZmNTczMmE4Mjg0MmYxNGE2ZTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArRNvIW7j7BvEm0SMIctsLVmrrS/B
78tCFz89r554UMh0PznEROFBNRWmRIzCEWhQhq2MSwJdK51CWk0llJ2Jc2HD19Mi
aypXYFZgpFl+2ZYXP/WvI+bNEy0uPUWipVE08SGqOOCr6I6WIxwjOFFm0pu9Z57C
DKhbCDvFXn3s0n63hvp1y1MzKSLUugoDB0XB0RxNgeaHilqahhLd+KXtgblN1+ym
BcQmVGICkOLmkYE4+c5ir/5+VpGRp3gIwUdJJpp6100i+O5yWE44Jeodb4YVDXoC
5/2Tlsb4B14DtnVMXtMMZWX18wE2IBtWRDwfr8T94LLOhzB0HCCQ2m4JMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF+lL0iZaS8dm6b/VzKoKELxSm45MB8GA1UdIwQY
MBaAFMzR4okw13p+uYkbb6u7KRXuOIWqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvek5IaWlURFhlbjY1aVJ0dnE3c3BGZTQ0aGFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8xMDQyZGQtZTY3Yi00MDJhLTgxZGMt
YzEzYjFmOTc3ZDU3LzEvek5IaWlURFhlbjY1aVJ0dnE3c3BGZTQ0aGFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi8xMDQyZGQtZTY3Yi00MDJhLTgxZGMtYzEzYjFmOTc3ZDU3
LzEvek5IaWlURFhlbjY1aVJ0dnE3c3BGZTQ0aGFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaiK8JLcM
3rkJfyqQbmUZk4YYzCxmP3eISGeLAcvbNAgsDIytt+0wjRVt3T1ZTeg6O2doFTC1
gLJ8hgSsYQuSROy0Y6xfPSzylyjH2XkAuIJQLlBHwswHr5z/69/oMgaJLl/vh6ga
lcTjGsKb6VEwuZ1WDkvookPu9VHWUSqgoxK8ZokqQ4UCXPtuc06gq/ZoHII2l9rr
H68nXA8UAl48BZRRz7QbfvFy+LWGE+Z6R3YODQlWJIXke4j1MafAPIXe5liFwBfH
H2hqzqlhzGziiVFbHNGA3rFDevpebjVKUTMhKEfmQbu8Cnwy83K13w59SMTxmjV3
9j+x1ZdCH5UyqA==
-----END CERTIFICATE-----
Generated at Sun Apr 20 12:13:37 2025 by rpki-client