Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json)
Hash identifier: es/TiSNt4fYI89ApGJm2mE/Y9tBzXnyrvAnW39Xbxro=
Subject key identifier: 30:D7:ED:B7:E6:AC:DC:9E:5C:35:86:E4:C8:78:20:34:46:9B:9A:C5
Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189
Certificate serial: 01974A43AEF31820DF8FDFACD5B96DD3F30D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
Manifest number: 150E
Signing time: Sat 07 Jun 2025 12:00:39 +0000
Manifest this update: Sat 07 Jun 2025 12:00:39 +0000
Manifest next update: Sun 08 Jun 2025 12:00:39 +0000
Files and hashes: 1: PF8Dfwpieuc3szZWNlM6zxbOCaw.roa (hash: eEI5JJg+vshmiZesKoh8QcSvz/GrsPF5AtTzxYWQZk4=)
2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: 5KVkMid/WR5Af6lCj/WIFar3/XIUMdEEbZhT+3te2fo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:ae:f3:18:20:df:8f:df:ac:d5:b9:6d:d3:f3:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189
Validity
Not Before: Jun 7 12:00:39 2025 GMT
Not After : Jun 8 12:00:39 2025 GMT
Subject: CN=30d7edb7e6acdc9e5c3586e4c8782034469b9ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bd:6f:b6:6f:63:fc:d8:64:57:a3:07:7b:a2:
80:be:23:44:bb:a1:4b:44:00:4e:c2:63:fb:17:c6:
2e:f1:78:56:a5:75:e0:e8:07:cb:14:f6:31:a8:88:
a8:5b:98:59:5e:98:bb:85:b3:d1:36:f4:3a:1d:35:
51:14:17:c2:1f:b7:81:b7:79:32:c7:58:46:a7:45:
3a:fc:74:e2:71:b3:9f:ea:91:f3:00:83:58:69:21:
81:28:39:3e:47:29:5e:4b:1c:75:1f:75:da:05:98:
5e:0f:28:08:14:98:ac:82:22:aa:62:77:89:35:98:
77:83:22:ff:1f:cd:46:2b:5b:96:0d:72:98:61:2a:
58:23:92:8f:43:21:b7:2c:c2:05:41:db:91:15:ec:
ee:37:00:53:43:c1:bc:10:97:51:ff:16:6c:d3:ab:
a2:c8:29:d1:ba:c4:0c:d8:c9:71:d9:8a:ff:f6:a5:
71:e6:ae:c2:eb:42:44:3d:b6:c0:d0:3b:ad:3f:3e:
34:9e:85:95:9e:2b:b6:93:1b:1c:09:f8:98:9b:05:
8e:9c:6c:3d:fd:a9:42:e5:6b:2d:a8:6b:a2:36:5f:
66:0b:b9:c0:62:17:76:9c:cc:2e:37:45:f4:0d:f3:
e1:1c:30:f5:0f:95:1d:24:60:ee:96:d4:06:8e:46:
c1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:D7:ED:B7:E6:AC:DC:9E:5C:35:86:E4:C8:78:20:34:46:9B:9A:C5
X509v3 Authority Key Identifier:
keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:c3:c9:03:0f:78:30:0f:48:0f:a7:a3:f5:94:45:4a:57:0d:
94:74:f7:a8:ab:2b:00:14:3a:8d:41:76:5a:6e:69:c8:1b:4b:
2c:d2:21:09:23:c3:21:f0:fd:37:65:df:32:ee:9e:6f:cd:42:
e1:e0:71:06:28:dc:17:0a:90:9c:84:9b:5f:7d:ae:75:02:9d:
fc:c2:14:5e:95:e0:ff:0c:c8:b9:00:f8:d9:74:db:a5:49:27:
1a:1e:f8:ad:48:2e:f1:97:b6:aa:aa:9a:76:b7:fb:76:1f:7a:
1b:11:1b:cd:a4:0f:dc:b7:3f:b4:81:19:b2:7e:6e:88:e3:ec:
12:d9:6e:5f:a3:d6:18:95:45:ad:bb:16:2c:c1:a2:75:cb:86:
e2:c8:b9:e6:1d:c1:21:09:72:61:16:03:98:a4:5e:b4:dd:4e:
f3:ad:96:fd:a7:79:63:38:3d:bb:0d:c0:07:d0:fd:a9:ee:01:
2b:e1:8b:f0:39:74:85:3f:77:96:34:65:99:be:48:b2:71:c1:
87:5a:6b:ea:1a:7e:08:6c:2f:b5:3d:d9:31:a4:05:c3:69:ab:
cd:9a:83:0c:8b:fd:87:f0:3e:ce:15:63:e8:24:f0:de:76:7a:
c2:b8:8f:e0:59:ec:63:b5:04:69:1f:d3:e1:18:bd:94:14:13:
b7:55:c0:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKQ67zGCDfj9+s1blt0/MNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5OTI4MWU4N2Q1ZTliODc1OGYyNDBlNzhlZWY3MTAyYzQw
MTIxODkwHhcNMjUwNjA3MTIwMDM5WhcNMjUwNjA4MTIwMDM5WjAzMTEwLwYDVQQD
EygzMGQ3ZWRiN2U2YWNkYzllNWMzNTg2ZTRjODc4MjAzNDQ2OWI5YWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs71vtm9j/NhkV6MHe6KAviNEu6FL
RABOwmP7F8Yu8XhWpXXg6AfLFPYxqIioW5hZXpi7hbPRNvQ6HTVRFBfCH7eBt3ky
x1hGp0U6/HTicbOf6pHzAINYaSGBKDk+RyleSxx1H3XaBZheDygIFJisgiKqYneJ
NZh3gyL/H81GK1uWDXKYYSpYI5KPQyG3LMIFQduRFezuNwBTQ8G8EJdR/xZs06ui
yCnRusQM2Mlx2Yr/9qVx5q7C60JEPbbA0DutPz40noWVniu2kxscCfiYmwWOnGw9
/alC5WstqGuiNl9mC7nAYhd2nMwuN0X0DfPhHDD1D5UdJGDultQGjkbBbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDDX7bfmrNyeXDWG5Mh4IDRGm5rFMB8GA1UdIwQY
MBaAFJmSgeh9XpuHWPJA547vcQLEASGJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9iODM4NjMtNWY0Yi00MmUzLWI4MjIt
YTBmMDBiZTNiY2UxLzEvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny9iODM4NjMtNWY0Yi00MmUzLWI4MjItYTBmMDBiZTNiY2Ux
LzEvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAacPJAw94
MA9ID6ej9ZRFSlcNlHT3qKsrABQ6jUF2Wm5pyBtLLNIhCSPDIfD9N2XfMu6eb81C
4eBxBijcFwqQnISbX32udQKd/MIUXpXg/wzIuQD42XTbpUknGh74rUgu8Ze2qqqa
drf7dh96GxEbzaQP3Lc/tIEZsn5uiOPsEtluX6PWGJVFrbsWLMGidcuG4si55h3B
IQlyYRYDmKRetN1O862W/ad5Yzg9uw3AB9D9qe4BK+GL8Dl0hT93ljRlmb5IsnHB
h1pr6hp+CGwvtT3ZMaQFw2mrzZqDDIv9h/A+zhVj6CTw3nZ6wriP4FnsY7UEaR/T
4Ri9lBQTt1XApA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:27:00 2025 by rpki-client