Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
File: Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft (raw, json)
Hash identifier: 0TB+EqNNCxn6opuYoQSfOCJb8v7XlFg66YJ6YpJl48I=
Subject key identifier: 3E:10:58:D7:3E:FB:C9:57:D4:26:DF:93:4C:44:33:AA:67:19:02:27
Authority key identifier: 67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C
Certificate issuer: /CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c
Certificate serial: 019748FA5D633BBE48E527452F9617E159BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
Manifest number: 0C70
Signing time: Sat 07 Jun 2025 06:00:56 +0000
Manifest this update: Sat 07 Jun 2025 06:00:56 +0000
Manifest next update: Sun 08 Jun 2025 06:00:56 +0000
Files and hashes: 1: QSFoTY-rZFAhWSMN9-_p_o-BDiU.roa (hash: 3LADFmQvbHE7KoUBEivUP2jD8vxc2/ZNRnufgFEmEsE=)
2: Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl (hash: cz+3u3FnF3AVE4WzQSsFhCVu+MhpgEYvs4NkA/I4yTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:5d:63:3b:be:48:e5:27:45:2f:96:17:e1:59:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c
Validity
Not Before: Jun 7 06:00:56 2025 GMT
Not After : Jun 8 06:00:56 2025 GMT
Subject: CN=3e1058d73efbc957d426df934c4433aa67190227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0a:16:62:17:76:88:49:e9:0c:53:e2:5a:4f:
c7:a1:b1:b0:93:e0:94:73:bf:7f:75:92:35:bf:62:
fe:1f:00:76:a3:14:1e:29:29:69:3e:27:d0:c4:bf:
a1:95:1c:ee:d1:dc:0d:19:d5:bd:38:ee:b6:32:8f:
38:f7:fc:cb:b6:8e:b1:8f:01:e3:e3:b0:f7:0d:16:
63:24:bb:0f:7f:63:89:0d:6c:27:d1:df:11:30:a4:
a5:ee:32:17:c8:00:dc:4c:73:96:95:d4:f6:f3:30:
48:6e:8f:71:c2:09:34:1d:a2:5a:61:96:8e:ba:ac:
d9:53:3a:c2:0a:57:e8:95:38:9a:7c:dc:f0:e6:86:
f1:89:97:55:8e:0a:3c:d6:3b:e1:8b:3d:9d:ee:f8:
96:01:71:5d:a0:63:11:98:0a:b9:36:03:b8:75:7d:
71:c2:79:f7:64:80:93:92:81:40:9f:3f:1e:ca:4e:
4e:94:5e:cd:84:89:f3:33:af:21:52:fb:38:03:11:
ed:44:d9:e5:51:8b:47:b1:50:09:b9:43:9a:39:3b:
dc:05:ae:a5:67:25:f6:74:43:5c:64:f1:9a:e4:13:
de:af:05:fa:b1:60:20:cd:05:bb:8e:6b:96:81:8d:
33:66:13:53:1a:f3:82:65:59:8d:9f:4e:be:74:be:
e9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:10:58:D7:3E:FB:C9:57:D4:26:DF:93:4C:44:33:AA:67:19:02:27
X509v3 Authority Key Identifier:
keyid:67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:33:e3:27:2d:1c:fb:45:d0:84:78:81:a6:7d:72:5c:50:a3:
08:6d:03:21:c9:56:8a:da:08:79:f3:d7:c9:a1:da:61:b5:0f:
af:be:23:2b:78:be:f0:ec:d6:4d:04:05:cd:59:19:d4:31:20:
38:0f:68:13:48:c2:1b:95:fe:05:49:65:4d:51:92:16:eb:62:
df:7c:76:f0:f6:b8:b6:91:77:b6:cf:40:ca:7f:0d:6f:30:4a:
af:cb:4d:fa:bb:30:c8:da:31:4e:88:54:8a:88:e0:28:91:10:
43:1c:4c:41:d8:cb:98:c8:de:f6:33:a9:f3:82:a4:c4:b0:d0:
1e:db:25:ed:95:52:ce:7b:87:f9:5b:fe:30:4c:cd:ca:c6:02:
d7:a1:56:f7:d5:b9:71:61:aa:3d:fc:24:84:8b:03:db:2e:4e:
e3:94:f3:39:8c:9b:cb:9d:56:62:32:f4:2f:02:b6:74:89:a0:
47:01:6a:a2:ac:8e:c8:be:06:de:78:80:7a:a7:3d:36:f2:50:
12:45:94:fd:c0:8b:e5:8e:e2:91:c7:63:70:aa:42:85:5d:76:
c5:ab:06:b5:be:83:9f:54:06:1c:76:34:65:52:85:b9:b1:0f:
39:b8:6c:11:43:29:83:74:6b:8e:28:5e:05:a3:78:b7:3b:10:
36:7e:1c:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+l1jO75I5SdFL5YX4Vm8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3ZDA0NWMxM2MwM2RjYjM3M2QyYTdkODVkMWUwMWI2ZTBh
YzdlMWMwHhcNMjUwNjA3MDYwMDU2WhcNMjUwNjA4MDYwMDU2WjAzMTEwLwYDVQQD
EygzZTEwNThkNzNlZmJjOTU3ZDQyNmRmOTM0YzQ0MzNhYTY3MTkwMjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywoWYhd2iEnpDFPiWk/HobGwk+CU
c79/dZI1v2L+HwB2oxQeKSlpPifQxL+hlRzu0dwNGdW9OO62Mo849/zLto6xjwHj
47D3DRZjJLsPf2OJDWwn0d8RMKSl7jIXyADcTHOWldT28zBIbo9xwgk0HaJaYZaO
uqzZUzrCClfolTiafNzw5obxiZdVjgo81jvhiz2d7viWAXFdoGMRmAq5NgO4dX1x
wnn3ZICTkoFAnz8eyk5OlF7NhInzM68hUvs4AxHtRNnlUYtHsVAJuUOaOTvcBa6l
ZyX2dENcZPGa5BPerwX6sWAgzQW7jmuWgY0zZhNTGvOCZVmNn06+dL7pnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD4QWNc++8lX1Cbfk0xEM6pnGQInMB8GA1UdIwQY
MBaAFGfQRcE8A9yzc9Kn2F0eAbbgrH4cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjlCRndUd0QzTE56MHFmWVhSNEJ0dUNzZmh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8yZTRmM2YtNTUyNi00NTIwLTgzMTMt
MTZmZjcyM2FmMzM1LzEvWjlCRndUd0QzTE56MHFmWVhSNEJ0dUNzZmh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8yZTRmM2YtNTUyNi00NTIwLTgzMTMtMTZmZjcyM2FmMzM1
LzEvWjlCRndUd0QzTE56MHFmWVhSNEJ0dUNzZmh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiDPjJy0c
+0XQhHiBpn1yXFCjCG0DIclWitoIefPXyaHaYbUPr74jK3i+8OzWTQQFzVkZ1DEg
OA9oE0jCG5X+BUllTVGSFuti33x28Pa4tpF3ts9Ayn8NbzBKr8tN+rswyNoxTohU
iojgKJEQQxxMQdjLmMje9jOp84KkxLDQHtsl7ZVSznuH+Vv+MEzNysYC16FW99W5
cWGqPfwkhIsD2y5O45TzOYyby51WYjL0LwK2dImgRwFqoqyOyL4G3niAeqc9NvJQ
EkWU/cCL5Y7ikcdjcKpChV12xasGtb6Dn1QGHHY0ZVKFubEPObhsEUMpg3Rrjihe
BaN4tzsQNn4cSg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 08:12:15 2025 by rpki-client