Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.mft
File: Z2JE3gGQpt1aiZorN7ACua5jLIY.mft (raw, json)
Hash identifier: eFaIDWKtOhq/Sm11E5Xgux7rSqBKdrtUU9rsywLi8qk=
Subject key identifier: E8:12:87:B9:1B:21:12:E1:14:B8:DD:B3:F0:35:CF:36:28:3B:29:8B
Authority key identifier: 67:62:44:DE:01:90:A6:DD:5A:89:9A:2B:37:B0:02:B9:AE:63:2C:86
Certificate issuer: /CN=676244de0190a6dd5a899a2b37b002b9ae632c86
Certificate serial: 019641E84AE64C69FF4638ACAE610BB866F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z2JE3gGQpt1aiZorN7ACua5jLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.mft
Manifest number: 14F3
Signing time: Thu 17 Apr 2025 04:01:04 +0000
Manifest this update: Thu 17 Apr 2025 04:01:04 +0000
Manifest next update: Fri 18 Apr 2025 04:01:04 +0000
Files and hashes: 1: 21cAYiN5jMpqkJRdEkHSMeQVgkY.roa (hash: KwzUXQv1pIgCUyqyYd3vxndo9n20A9iWRxEC49c1pqI=)
2: Z2JE3gGQpt1aiZorN7ACua5jLIY.crl (hash: XkA8eqh99vEo7LXr4Q5mIq/Emt6hsYfiX/tkYe4XKdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z2JE3gGQpt1aiZorN7ACua5jLIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:e8:4a:e6:4c:69:ff:46:38:ac:ae:61:0b:b8:66:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=676244de0190a6dd5a899a2b37b002b9ae632c86
Validity
Not Before: Apr 17 04:01:04 2025 GMT
Not After : Apr 18 04:01:04 2025 GMT
Subject: CN=e81287b91b2112e114b8ddb3f035cf36283b298b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:25:a0:c5:32:b9:6f:39:2c:f0:c1:38:c0:42:
ec:1d:bd:32:04:fc:5c:a4:21:ef:e7:63:0e:19:df:
16:31:99:9d:67:12:ea:97:81:8f:02:43:73:c5:39:
0e:18:01:09:b7:53:75:f9:7f:f2:73:91:1e:99:ac:
e0:bb:7a:0a:4a:f7:89:ac:a9:df:90:fe:4c:6b:4d:
f4:d7:26:98:55:59:59:e7:06:e9:0b:b2:92:44:d4:
cc:22:50:92:d6:a5:de:af:cb:4f:aa:e4:0d:00:45:
26:54:66:7a:50:50:59:44:6e:5e:e7:6d:f9:34:f9:
3b:d1:af:20:24:8d:e7:91:22:45:1a:0c:ff:32:cf:
36:c4:86:6c:24:a1:1e:00:3c:cf:e4:f7:23:fc:6a:
6b:9b:d1:6a:5a:36:23:7b:ca:51:be:de:89:c6:c6:
7d:3e:75:47:17:7c:5c:96:11:d0:89:f0:88:ec:b7:
ed:3f:dd:5a:8b:e6:77:c9:3d:bc:f1:b4:09:ec:37:
e2:cc:bf:34:a2:8d:e9:ca:fa:2c:ca:ea:9a:39:48:
17:8f:c0:59:fb:80:31:07:e3:d1:64:d0:1f:fe:c3:
a5:b5:16:ca:d6:22:b5:66:ea:d9:c9:01:13:0f:6c:
19:b4:6b:e2:71:62:9d:a4:bf:0a:2b:a2:01:7c:42:
52:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:12:87:B9:1B:21:12:E1:14:B8:DD:B3:F0:35:CF:36:28:3B:29:8B
X509v3 Authority Key Identifier:
keyid:67:62:44:DE:01:90:A6:DD:5A:89:9A:2B:37:B0:02:B9:AE:63:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z2JE3gGQpt1aiZorN7ACua5jLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:c5:4b:54:5b:ac:6f:1a:32:86:c7:82:b5:9e:ca:51:c4:97:
19:57:37:6e:cb:35:60:8a:ef:98:cb:cb:26:17:14:8a:c6:99:
a9:24:9a:f2:b3:8e:4c:1a:7c:72:3c:04:9c:c0:bd:46:ee:38:
10:ad:b9:ee:a8:22:07:8c:fa:6e:53:06:cc:69:9c:3d:16:18:
45:61:74:70:b0:ab:21:55:33:70:cb:b7:88:3f:68:16:d4:a3:
a7:93:f3:56:14:52:b6:73:ad:78:5e:c3:2d:69:83:6d:c6:b8:
14:36:17:b4:cb:8f:10:8c:c9:98:8e:82:3b:4d:cb:9e:93:f7:
3b:e4:e6:9f:7a:77:76:a2:74:99:1c:bc:ef:bc:b7:ad:d1:36:
10:27:bc:aa:24:9e:5e:1c:25:d7:4c:1d:54:3e:c8:03:ce:71:
92:5d:42:c8:2f:3b:37:e8:17:39:0d:61:0b:f8:67:bf:f0:00:
da:c6:3c:bc:70:f3:0f:52:2b:9f:90:fc:d6:96:a1:91:48:aa:
ad:bc:c7:c8:02:81:ec:42:91:a0:84:5e:73:3d:61:39:3d:80:
df:6d:26:00:a9:74:d6:22:72:23:d4:4b:1b:53:b5:c6:6f:c4:
a2:85:64:3c:3c:ce:cf:60:02:15:b5:43:63:03:6f:65:23:63:
a8:5d:60:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZB6ErmTGn/RjisrmELuGbwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3NjI0NGRlMDE5MGE2ZGQ1YTg5OWEyYjM3YjAwMmI5YWU2
MzJjODYwHhcNMjUwNDE3MDQwMTA0WhcNMjUwNDE4MDQwMTA0WjAzMTEwLwYDVQQD
EyhlODEyODdiOTFiMjExMmUxMTRiOGRkYjNmMDM1Y2YzNjI4M2IyOThiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCWgxTK5bzks8ME4wELsHb0yBPxc
pCHv52MOGd8WMZmdZxLql4GPAkNzxTkOGAEJt1N1+X/yc5Eemazgu3oKSveJrKnf
kP5Ma0301yaYVVlZ5wbpC7KSRNTMIlCS1qXer8tPquQNAEUmVGZ6UFBZRG5e5235
NPk70a8gJI3nkSJFGgz/Ms82xIZsJKEeADzP5Pcj/Gprm9FqWjYje8pRvt6JxsZ9
PnVHF3xclhHQifCI7LftP91ai+Z3yT288bQJ7DfizL80oo3pyvosyuqaOUgXj8BZ
+4AxB+PRZNAf/sOltRbK1iK1ZurZyQETD2wZtGvicWKdpL8KK6IBfEJSOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOgSh7kbIRLhFLjds/A1zzYoOymLMB8GA1UdIwQY
MBaAFGdiRN4BkKbdWomaKzewArmuYyyGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjJKRTNnR1FwdDFhaVpvck43QUN1YTVqTElZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9kY2Q4N2YtNGFhNy00NGZmLTk3YmYt
Y2UzMmQ2NmYzMGE4LzEvWjJKRTNnR1FwdDFhaVpvck43QUN1YTVqTElZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS9kY2Q4N2YtNGFhNy00NGZmLTk3YmYtY2UzMmQ2NmYzMGE4
LzEvWjJKRTNnR1FwdDFhaVpvck43QUN1YTVqTElZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADcVLVFus
bxoyhseCtZ7KUcSXGVc3bss1YIrvmMvLJhcUisaZqSSa8rOOTBp8cjwEnMC9Ru44
EK257qgiB4z6blMGzGmcPRYYRWF0cLCrIVUzcMu3iD9oFtSjp5PzVhRStnOteF7D
LWmDbca4FDYXtMuPEIzJmI6CO03LnpP3O+Tmn3p3dqJ0mRy877y3rdE2ECe8qiSe
Xhwl10wdVD7IA85xkl1CyC87N+gXOQ1hC/hnv/AA2sY8vHDzD1Irn5D81pahkUiq
rbzHyAKB7EKRoIRecz1hOT2A320mAKl01iJyI9RLG1O1xm/EooVkPDzOz2ACFbVD
YwNvZSNjqF1g1Q==
-----END CERTIFICATE-----
Generated at Thu Apr 17 07:00:56 2025 by rpki-client