Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
File: z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft (raw, json)
Hash identifier: 5Jq5Uy0Eeq7RN/IEPXLq731zN9lI/G65sRwsGLPWeAY=
Subject key identifier: 8B:C9:5D:2B:00:7D:8D:A5:97:50:37:5E:0E:D6:4A:2E:58:54:79:AE
Authority key identifier: CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
Certificate issuer: /CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Certificate serial: 0196146AE3EBE4763DFAC98BACA0E2123367
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
Manifest number: 14DD
Signing time: Tue 08 Apr 2025 08:01:11 +0000
Manifest this update: Tue 08 Apr 2025 08:01:11 +0000
Manifest next update: Wed 09 Apr 2025 08:01:11 +0000
Files and hashes: 1: hPBXvKQdaqlVU4nQ-2Te7vaa8Bo.roa (hash: c9xr2QPdOJHBS76dYaN+BTyMMmlA60SbcteFKaCmJMA=)
2: z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl (hash: iqf49vrpCzXvmwF+NPOUKBxJdG73UaLg1RiWCMqHAVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:14:6a:e3:eb:e4:76:3d:fa:c9:8b:ac:a0:e2:12:33:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Validity
Not Before: Apr 8 08:01:11 2025 GMT
Not After : Apr 9 08:01:11 2025 GMT
Subject: CN=8bc95d2b007d8da59750375e0ed64a2e585479ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:4e:b2:56:b5:0a:6a:5e:e7:e4:3d:e6:7a:d4:
4e:bd:81:be:4b:cd:ab:3f:51:58:7d:df:06:1f:5a:
42:2d:fa:30:df:aa:0c:0a:80:ff:60:71:d9:2f:20:
00:a5:3d:3e:dd:1d:3c:89:46:be:86:d4:ee:a1:a8:
7f:70:7b:26:ac:81:a8:46:c3:b9:d0:07:ed:24:7d:
1f:98:00:eb:dd:ba:fe:6e:db:70:05:99:85:3d:ba:
f5:99:5a:d2:e7:df:f0:9d:fe:08:50:86:83:b3:c2:
e1:7c:d1:e1:a2:c3:ae:fb:7c:db:b9:24:fb:7a:3b:
e5:57:96:5c:7b:ee:6c:88:d4:d5:be:62:9f:ab:f7:
08:8e:94:12:f1:e1:a1:7f:8d:5b:e2:da:89:ef:11:
38:85:bb:5c:d1:fb:1e:b4:e0:f0:43:a6:e8:ef:a5:
3e:7e:76:06:cc:eb:04:4c:b1:40:25:c5:8b:ea:59:
78:64:48:da:28:54:ff:2d:8d:68:da:91:85:6b:4a:
63:f9:20:ff:23:e7:45:3b:83:9f:88:b9:4d:1d:8c:
0e:08:31:11:7c:7f:7b:0a:eb:77:7d:ac:c1:34:9f:
a7:af:29:10:50:1c:d0:32:11:cd:34:07:f6:ca:43:
19:d3:8a:12:0c:13:6d:2d:24:d8:bb:9a:6b:6b:e9:
fd:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:C9:5D:2B:00:7D:8D:A5:97:50:37:5E:0E:D6:4A:2E:58:54:79:AE
X509v3 Authority Key Identifier:
keyid:CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:43:29:8f:29:8f:c7:a7:c9:3d:90:8b:53:80:83:4e:86:70:
87:a5:e8:9f:94:7e:86:cd:2a:d3:6b:68:c3:a5:19:ff:84:db:
bd:3a:4d:dc:f8:29:f7:11:ed:66:39:55:73:cd:a3:8d:9c:f8:
14:aa:97:1f:b9:21:ac:a9:f1:c5:38:d6:63:06:89:a2:04:c5:
f8:f8:b9:fe:fe:e1:75:0e:c4:3e:11:29:42:ed:45:67:33:79:
f9:0c:7d:33:95:c9:22:d5:6d:9d:62:99:74:4e:60:75:94:6a:
f8:87:bc:e2:28:4e:a4:1e:d7:19:67:d0:c8:13:1d:24:3a:df:
48:fe:5c:92:71:78:f5:fb:93:96:7a:fa:35:8c:5a:3e:4f:09:
55:43:af:a0:81:af:36:c7:7a:02:ce:35:de:eb:69:f3:e6:97:
21:b3:90:c5:9e:e5:46:40:7b:4c:04:66:59:cf:cc:a1:e8:7c:
ea:aa:a3:6c:ea:9b:e1:64:26:c8:a1:02:b2:b6:0c:b7:53:85:
6a:65:38:7d:b9:38:c0:8c:b9:9b:e4:65:32:5b:ac:9c:01:63:
64:53:b8:42:c6:ea:05:65:d7:d3:49:1d:21:ad:03:df:f3:99:
72:69:b7:b4:ef:fc:c4:e3:41:10:bf:50:15:52:87:72:e6:b1:
85:c1:ac:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYUauPr5HY9+smLrKDiEjNnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmNjYyMjRiY2ZiOGI4MmRlYWFiYWM4YzRjYTI1MDM3MWI5
NzQ2MTEwHhcNMjUwNDA4MDgwMTExWhcNMjUwNDA5MDgwMTExWjAzMTEwLwYDVQQD
Eyg4YmM5NWQyYjAwN2Q4ZGE1OTc1MDM3NWUwZWQ2NGEyZTU4NTQ3OWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0E6yVrUKal7n5D3metROvYG+S82r
P1FYfd8GH1pCLfow36oMCoD/YHHZLyAApT0+3R08iUa+htTuoah/cHsmrIGoRsO5
0AftJH0fmADr3br+bttwBZmFPbr1mVrS59/wnf4IUIaDs8LhfNHhosOu+3zbuST7
ejvlV5Zce+5siNTVvmKfq/cIjpQS8eGhf41b4tqJ7xE4hbtc0fsetODwQ6bo76U+
fnYGzOsETLFAJcWL6ll4ZEjaKFT/LY1o2pGFa0pj+SD/I+dFO4OfiLlNHYwOCDER
fH97Cut3fazBNJ+nrykQUBzQMhHNNAf2ykMZ04oSDBNtLSTYu5pra+n95wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIvJXSsAfY2ll1A3Xg7WSi5YVHmuMB8GA1UdIwQY
MBaAFM9mIkvPuLgt6qusjEyiUDcbl0YRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejJZaVM4LTR1QzNxcTZ5TVRLSlFOeHVYUmhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xOTZiNzEtNTg3ZS00MDk5LWJkYjIt
Yjk1NGM1MGZkYmIwLzEvejJZaVM4LTR1QzNxcTZ5TVRLSlFOeHVYUmhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC8xOTZiNzEtNTg3ZS00MDk5LWJkYjItYjk1NGM1MGZkYmIw
LzEvejJZaVM4LTR1QzNxcTZ5TVRLSlFOeHVYUmhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUUMpjymP
x6fJPZCLU4CDToZwh6Xon5R+hs0q02tow6UZ/4TbvTpN3Pgp9xHtZjlVc82jjZz4
FKqXH7khrKnxxTjWYwaJogTF+Pi5/v7hdQ7EPhEpQu1FZzN5+Qx9M5XJItVtnWKZ
dE5gdZRq+Ie84ihOpB7XGWfQyBMdJDrfSP5cknF49fuTlnr6NYxaPk8JVUOvoIGv
Nsd6As413utp8+aXIbOQxZ7lRkB7TARmWc/Moeh86qqjbOqb4WQmyKECsrYMt1OF
amU4fbk4wIy5m+RlMlusnAFjZFO4QsbqBWXX00kdIa0D3/OZcmm3tO/8xONBEL9Q
FVKHcuaxhcGskQ==
-----END CERTIFICATE-----
Generated at Tue Apr 8 12:25:42 2025 by rpki-client