Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json)
Hash identifier: y/eFf5spUab0JtFkhCBevSHpmxEPmmSDEsVsj+WzUf0=
Subject key identifier: D9:C2:71:60:58:29:13:3B:FE:B2:50:D5:35:D7:A5:F2:98:58:64:93
Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac
Certificate serial: 019751FD8652C8CA2C075EA831F726C74937
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
Manifest number: 0B1A
Signing time: Mon 09 Jun 2025 00:00:58 +0000
Manifest this update: Mon 09 Jun 2025 00:00:58 +0000
Manifest next update: Tue 10 Jun 2025 00:00:58 +0000
Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: o18QfSzGc3MpcpC+GhcHCFRj4YhpLjseqLFv7KZCOd0=)
2: x6hLDer_XW1q_iEu4GXkzkZyC4s.roa (hash: WqVvea5/LNqbNIIZsdml33Mg9/QcNbUM12u8YdmaIWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:fd:86:52:c8:ca:2c:07:5e:a8:31:f7:26:c7:49:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac
Validity
Not Before: Jun 9 00:00:58 2025 GMT
Not After : Jun 10 00:00:58 2025 GMT
Subject: CN=d9c271605829133bfeb250d535d7a5f298586493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a4:07:d2:58:de:f6:f0:93:08:f3:ad:9d:3c:
a1:22:ec:3d:7c:96:71:83:20:25:2f:22:5a:89:bf:
66:49:5f:89:92:75:6a:f8:8a:b4:59:73:7d:f4:28:
09:e3:ac:fe:ca:9d:c4:25:22:1b:fd:68:b2:3f:66:
3d:f7:f7:30:e5:94:9f:a1:b9:c2:a3:c2:f9:0e:6a:
a9:5a:3f:49:b0:ac:ad:1d:5b:88:4c:45:d2:ec:e4:
01:b5:60:cd:f2:8a:79:62:5b:ef:3a:e5:87:47:3e:
aa:8e:b1:07:ee:40:4e:f5:d9:ef:6e:71:d2:e0:09:
36:8d:a6:62:f8:1a:09:a8:17:4a:91:6c:9d:66:04:
4c:50:93:7a:1e:cf:d5:96:d0:0b:00:9c:05:73:c3:
a1:25:aa:bb:c2:9c:ff:bb:ce:2d:58:fd:df:e6:d3:
3d:bc:6e:45:aa:dc:94:22:56:78:55:15:19:69:28:
36:2d:69:f0:8e:fb:c2:3d:c3:cb:ca:88:c9:fd:6f:
7e:3b:76:e3:b8:7b:c6:21:a2:83:33:4f:33:5f:39:
de:8f:5f:71:80:c6:40:57:f9:bc:f6:f0:94:4b:c1:
f9:c1:85:6b:02:2d:57:83:a7:8d:9a:1d:36:4a:f1:
6d:26:c7:bb:32:8d:8a:cd:1c:af:3d:40:ae:e7:90:
3f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:C2:71:60:58:29:13:3B:FE:B2:50:D5:35:D7:A5:F2:98:58:64:93
X509v3 Authority Key Identifier:
keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:b8:6e:5a:78:1e:04:2c:fa:ac:34:d4:1a:98:47:da:5b:53:
4e:c1:9f:f5:ec:98:e0:a6:6a:fb:a4:8c:48:da:87:39:e6:10:
60:f2:77:fc:53:7e:c0:d9:80:27:9f:c7:32:91:58:b1:32:b1:
a0:c0:ee:1b:8f:ca:c8:4a:e3:19:d8:cc:34:a2:ff:c1:4d:29:
23:8b:f4:21:08:04:73:4f:03:2a:45:03:a6:59:88:66:f0:b3:
fd:ae:e8:ad:4c:80:94:e6:f9:77:1f:8a:02:8f:d9:62:d2:fe:
0f:8e:92:09:46:c7:2a:8c:5c:fa:da:9f:ff:96:fd:a8:b6:ee:
3c:18:63:e5:0f:e5:e0:5f:fc:cc:9e:1a:7d:82:1c:33:62:14:
e7:09:3c:bc:6d:fe:cf:32:a7:d7:29:f8:ba:44:c0:72:cd:ea:
06:79:e9:88:23:3b:d8:42:bf:d4:ee:d6:cd:7c:ed:5b:9e:b7:
94:eb:78:72:b5:0a:a0:13:b9:3d:9d:b2:36:1a:e4:dc:1f:8e:
01:c6:c5:b9:12:94:cb:ff:d5:3e:69:d0:bc:ba:39:fe:ee:d7:
31:18:c3:88:ab:ff:19:d3:ef:dc:5f:de:b8:f6:d7:e6:e6:02:
fb:69:83:ed:e7:d3:ba:84:44:ab:d1:fd:5e:b2:6d:18:6a:ed:
40:98:ba:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdR/YZSyMosB16oMfcmx0k3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMzc1ZTE2YTE5MzY3ZGU5OWJiMjRhYzExNWQyNTlhMmEw
NDgxYWMwHhcNMjUwNjA5MDAwMDU4WhcNMjUwNjEwMDAwMDU4WjAzMTEwLwYDVQQD
EyhkOWMyNzE2MDU4MjkxMzNiZmViMjUwZDUzNWQ3YTVmMjk4NTg2NDkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqQH0lje9vCTCPOtnTyhIuw9fJZx
gyAlLyJaib9mSV+JknVq+Iq0WXN99CgJ46z+yp3EJSIb/WiyP2Y99/cw5ZSfobnC
o8L5DmqpWj9JsKytHVuITEXS7OQBtWDN8op5YlvvOuWHRz6qjrEH7kBO9dnvbnHS
4Ak2jaZi+BoJqBdKkWydZgRMUJN6Hs/VltALAJwFc8OhJaq7wpz/u84tWP3f5tM9
vG5FqtyUIlZ4VRUZaSg2LWnwjvvCPcPLyojJ/W9+O3bjuHvGIaKDM08zXznej19x
gMZAV/m89vCUS8H5wYVrAi1Xg6eNmh02SvFtJse7Mo2KzRyvPUCu55A/fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNnCcWBYKRM7/rJQ1TXXpfKYWGSTMB8GA1UdIwQY
MBaAFNs3Xhahk2fembskrBFdJZoqBIGsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy85YmM1YmMtOGY5OS00MmVkLWE4Y2Ut
NWI4NmJhNTg1OTIyLzEvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy85YmM1YmMtOGY5OS00MmVkLWE4Y2UtNWI4NmJhNTg1OTIy
LzEvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZrhuWnge
BCz6rDTUGphH2ltTTsGf9eyY4KZq+6SMSNqHOeYQYPJ3/FN+wNmAJ5/HMpFYsTKx
oMDuG4/KyErjGdjMNKL/wU0pI4v0IQgEc08DKkUDplmIZvCz/a7orUyAlOb5dx+K
Ao/ZYtL+D46SCUbHKoxc+tqf/5b9qLbuPBhj5Q/l4F/8zJ4afYIcM2IU5wk8vG3+
zzKn1yn4ukTAcs3qBnnpiCM72EK/1O7WzXztW563lOt4crUKoBO5PZ2yNhrk3B+O
AcbFuRKUy//VPmnQvLo5/u7XMRjDiKv/GdPv3F/euPbX5uYC+2mD7efTuoREq9H9
XrJtGGrtQJi6ng==
-----END CERTIFICATE-----
Generated at Mon Jun 9 06:23:41 2025 by rpki-client