Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
File: zNHiiTDXen65iRtvq7spFe44hao.mft (raw, json)
Hash identifier: WMTKnV3kNTNXsD/sRa9POUydhc7Ep+nacadSKkl+jAE=
Subject key identifier: 47:FB:6B:2C:22:38:D8:F2:BF:62:14:BE:9A:D9:D4:A9:CC:54:55:B6
Authority key identifier: CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
Certificate issuer: /CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Certificate serial: 0197469E0041FC551986964AD6BB86EF2032
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
Manifest number: 157C
Signing time: Fri 06 Jun 2025 19:00:49 +0000
Manifest this update: Fri 06 Jun 2025 19:00:49 +0000
Manifest next update: Sat 07 Jun 2025 19:00:49 +0000
Files and hashes: 1: zNHiiTDXen65iRtvq7spFe44hao.crl (hash: oXvsaB8I1AOO+9WwJTMVTzUc0giQlBgiPV2ECJMCirw=)
2: zwMZXsX6Z6y_GtPEpsaBS7FPtIU.roa (hash: bi378rHsH1o9Uq16RD7qe5x44q14EkwJzXLivtK1Naw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:00:41:fc:55:19:86:96:4a:d6:bb:86:ef:20:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Validity
Not Before: Jun 6 19:00:49 2025 GMT
Not After : Jun 7 19:00:49 2025 GMT
Subject: CN=47fb6b2c2238d8f2bf6214be9ad9d4a9cc5455b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0c:a9:6b:b7:44:a3:94:bc:ac:07:0e:ef:01:
f2:32:ec:dd:b4:36:f6:ba:34:52:d3:e6:e9:fb:8d:
14:46:43:f8:28:2d:02:3a:85:de:b8:9e:eb:95:32:
7e:88:23:a7:56:ee:fa:22:d1:1c:8c:ad:2d:dd:3c:
27:3a:4e:ff:d2:75:89:0f:9c:fa:30:d4:62:20:fa:
1b:da:30:41:94:8e:7e:67:14:46:17:c5:cc:88:e6:
54:f6:74:91:26:0d:e4:3f:84:92:43:6c:a8:e3:d9:
c2:91:f5:0d:47:e9:6c:d0:b7:70:a8:50:b9:14:7e:
50:19:5a:9a:e1:52:e1:5f:39:d1:f9:c3:10:7b:6f:
bf:85:d8:b9:20:23:2a:7a:18:0c:29:ee:b8:71:cc:
90:97:0c:3a:db:d8:3e:62:c4:0f:34:ff:32:f1:8f:
12:fe:26:4d:95:7e:5e:d8:81:bf:8b:c8:b6:fd:56:
24:c1:0c:fc:7b:8d:36:9e:aa:fc:94:fd:1d:32:22:
dd:73:6d:6e:53:9d:69:89:2a:c4:5e:b7:3f:a0:57:
bf:81:ca:8b:c6:de:1d:ca:29:01:5c:fb:86:31:71:
84:55:2d:ef:8d:e2:a1:fc:4b:9b:ad:c5:ec:cc:d4:
0e:f9:58:fd:09:51:d3:9a:38:26:2b:24:33:e3:8d:
f4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:FB:6B:2C:22:38:D8:F2:BF:62:14:BE:9A:D9:D4:A9:CC:54:55:B6
X509v3 Authority Key Identifier:
keyid:CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:d9:16:e2:04:73:b3:3e:7d:23:a7:e3:1d:59:4d:0c:50:29:
3d:5a:0a:4d:28:90:d4:81:d9:cb:d7:7b:92:44:f4:2c:2b:7d:
ba:f4:3c:96:58:1a:7e:27:a2:bc:69:f3:3e:b0:52:a8:c8:2d:
56:63:fc:36:ba:13:f1:56:7b:cb:76:11:95:27:57:ef:05:99:
3c:7f:f0:b2:95:95:fd:55:ce:92:ea:54:fa:fe:5a:61:97:c9:
76:2c:d0:34:1b:bc:87:48:f9:85:37:cf:d3:60:a7:76:de:1c:
74:9b:c4:9e:57:c3:a1:1f:e4:2d:d9:97:d7:61:1a:35:a5:d1:
49:b1:55:8d:56:b2:47:60:32:02:9f:2a:e9:ed:4a:ae:ce:d3:
a8:d7:ae:4d:52:f4:8a:1c:45:cb:ce:9f:87:26:eb:1b:11:b4:
4c:16:2d:6b:ec:9c:6a:71:c3:85:e2:72:ab:e9:b4:1b:07:f0:
1d:61:e7:73:1f:e4:16:b5:90:78:3b:1c:7a:bd:4d:de:e0:fa:
15:c2:6e:f3:6f:b9:18:d3:18:e5:9b:0e:ee:7f:7f:cb:ae:1a:
b1:1b:ad:3f:47:0d:f0:5e:19:a0:77:eb:d4:66:af:70:b6:56:
84:b8:89:08:61:a6:de:15:c1:24:52:b1:f1:5b:b6:79:e4:5e:
0e:8f:f8:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGngBB/FUZhpZK1ruG7yAyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjZDFlMjg5MzBkNzdhN2ViOTg5MWI2ZmFiYmIyOTE1ZWUz
ODg1YWEwHhcNMjUwNjA2MTkwMDQ5WhcNMjUwNjA3MTkwMDQ5WjAzMTEwLwYDVQQD
Eyg0N2ZiNmIyYzIyMzhkOGYyYmY2MjE0YmU5YWQ5ZDRhOWNjNTQ1NWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAypa7dEo5S8rAcO7wHyMuzdtDb2
ujRS0+bp+40URkP4KC0COoXeuJ7rlTJ+iCOnVu76ItEcjK0t3TwnOk7/0nWJD5z6
MNRiIPob2jBBlI5+ZxRGF8XMiOZU9nSRJg3kP4SSQ2yo49nCkfUNR+ls0LdwqFC5
FH5QGVqa4VLhXznR+cMQe2+/hdi5ICMqehgMKe64ccyQlww629g+YsQPNP8y8Y8S
/iZNlX5e2IG/i8i2/VYkwQz8e402nqr8lP0dMiLdc21uU51piSrEXrc/oFe/gcqL
xt4dyikBXPuGMXGEVS3vjeKh/EubrcXszNQO+Vj9CVHTmjgmKyQz44303QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEf7aywiONjyv2IUvprZ1KnMVFW2MB8GA1UdIwQY
MBaAFMzR4okw13p+uYkbb6u7KRXuOIWqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvek5IaWlURFhlbjY1aVJ0dnE3c3BGZTQ0aGFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8xMDQyZGQtZTY3Yi00MDJhLTgxZGMt
YzEzYjFmOTc3ZDU3LzEvek5IaWlURFhlbjY1aVJ0dnE3c3BGZTQ0aGFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi8xMDQyZGQtZTY3Yi00MDJhLTgxZGMtYzEzYjFmOTc3ZDU3
LzEvek5IaWlURFhlbjY1aVJ0dnE3c3BGZTQ0aGFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfdkW4gRz
sz59I6fjHVlNDFApPVoKTSiQ1IHZy9d7kkT0LCt9uvQ8llgafieivGnzPrBSqMgt
VmP8NroT8VZ7y3YRlSdX7wWZPH/wspWV/VXOkupU+v5aYZfJdizQNBu8h0j5hTfP
02Cndt4cdJvEnlfDoR/kLdmX12EaNaXRSbFVjVayR2AyAp8q6e1Krs7TqNeuTVL0
ihxFy86fhybrGxG0TBYta+ycanHDheJyq+m0GwfwHWHncx/kFrWQeDscer1N3uD6
FcJu82+5GNMY5ZsO7n9/y64asRutP0cN8F4ZoHfr1GavcLZWhLiJCGGm3hXBJFKx
8Vu2eeReDo/4cQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:02:15 2025 by rpki-client