Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
File: ZKPnXG0KuryTHChHzaqGX7jX-c8.mft (raw, json)
Hash identifier: T6pAtfAbmqrAz2svqB1Uy7Wv3ja1GO6IR74Ognoxfjk=
Subject key identifier: A3:2C:D2:A8:9E:A3:CC:46:44:53:77:DB:05:8F:FA:5F:FD:C2:C3:46
Authority key identifier: 64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
Certificate issuer: /CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Certificate serial: 0197481E309FA8A5909794FB7CE0C5983062
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
Manifest number: 150D
Signing time: Sat 07 Jun 2025 02:00:27 +0000
Manifest this update: Sat 07 Jun 2025 02:00:27 +0000
Manifest next update: Sun 08 Jun 2025 02:00:27 +0000
Files and hashes: 1: ZKPnXG0KuryTHChHzaqGX7jX-c8.crl (hash: 8brUK+TGPKSEs9dx/Kr5rrZdAsr39GjrB6YH8uPVTjo=)
2: y9vY7PQkblV9_5mGvnjpI_1sy2c.roa (hash: IUOwXFsA4FATdHPgwe2EY1C0pHGXri80WzQO/bHofMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:30:9f:a8:a5:90:97:94:fb:7c:e0:c5:98:30:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Validity
Not Before: Jun 7 02:00:27 2025 GMT
Not After : Jun 8 02:00:27 2025 GMT
Subject: CN=a32cd2a89ea3cc46445377db058ffa5ffdc2c346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9b:c0:29:3b:49:17:d5:5f:86:05:25:30:99:
6c:b6:5e:5d:eb:cd:48:c1:54:e9:20:09:1c:da:e7:
08:cd:87:79:c1:84:ed:84:a3:b0:00:ce:06:ed:e3:
46:0b:dc:86:c1:42:0a:96:2c:3e:7e:9b:a3:fd:4e:
c8:4d:06:f0:bc:ee:39:2a:eb:ab:6a:52:eb:68:b7:
3d:45:cd:82:30:fd:a4:ff:98:71:3f:13:1a:0a:8b:
9d:92:34:80:d7:55:62:6a:f4:f1:b2:95:49:5b:c1:
0f:89:19:e0:6c:3d:71:de:be:98:4d:31:69:7b:c9:
fc:31:91:e9:54:42:a6:3d:c4:ec:9b:29:23:41:37:
a2:69:6b:03:5d:70:52:70:4c:68:10:5e:01:42:17:
e0:e9:3e:2f:b6:e5:52:86:e7:a5:42:47:db:4e:e8:
bb:17:8e:8e:7e:a7:38:01:13:fd:75:27:ab:57:33:
bf:e1:22:c1:03:0b:ad:d4:f6:16:a9:14:e6:c4:22:
ca:7b:d2:04:72:ba:84:cd:e1:a2:3f:f3:df:da:5e:
8b:1f:41:1c:65:15:c6:14:ea:21:3b:de:bb:a7:b7:
bf:96:ce:3f:3a:95:e3:ae:6a:9e:1e:d0:40:43:92:
bb:84:66:53:22:06:81:b2:8f:d7:62:8e:e6:f1:c2:
cb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:2C:D2:A8:9E:A3:CC:46:44:53:77:DB:05:8F:FA:5F:FD:C2:C3:46
X509v3 Authority Key Identifier:
keyid:64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:0d:32:9e:84:dd:b5:aa:db:98:eb:12:c0:f8:31:42:eb:97:
5b:ec:62:21:df:f1:6c:bf:82:87:8d:34:9b:a7:94:a3:5c:8a:
2c:5d:8c:d7:f2:3f:d9:de:b8:1f:3d:a8:7e:34:f0:08:25:b1:
db:29:93:d5:0c:cb:89:dd:7b:9e:4a:40:bf:df:0e:7a:d2:a6:
96:b5:bc:bb:7a:fe:0a:70:70:f5:f5:25:40:e5:bb:61:82:4c:
37:b8:ce:01:d3:e5:e6:c1:da:44:44:46:a4:e5:07:88:c4:a8:
af:35:16:d1:9f:3c:b2:3b:ee:35:f4:c6:4e:17:6e:6c:80:54:
ec:f9:e6:55:ce:1a:44:c9:04:21:bf:cc:1b:75:d8:45:8a:9d:
0c:6c:93:2e:2b:26:b8:a4:0d:ec:4b:7c:8f:98:de:22:cf:87:
e6:ad:9f:32:2b:99:6f:3c:9f:82:b8:1a:de:c0:0a:56:19:f7:
7c:12:e0:ae:0c:22:14:3b:ae:af:8e:33:eb:2d:2c:56:e9:fb:
b8:3d:bd:a5:ec:b2:59:0b:2f:51:8e:08:11:08:81:97:05:f7:
18:27:46:40:71:50:7c:f6:c3:b5:fc:79:cc:8e:1f:07:d7:74:
be:d2:eb:b0:c1:49:65:cd:97:76:14:a4:08:87:1b:54:66:68:
7e:df:e2:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIHjCfqKWQl5T7fODFmDBiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0YTNlNzVjNmQwYWJhYmM5MzFjMjg0N2NkYWE4NjVmYjhk
N2Y5Y2YwHhcNMjUwNjA3MDIwMDI3WhcNMjUwNjA4MDIwMDI3WjAzMTEwLwYDVQQD
EyhhMzJjZDJhODllYTNjYzQ2NDQ1Mzc3ZGIwNThmZmE1ZmZkYzJjMzQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5vAKTtJF9VfhgUlMJlstl5d681I
wVTpIAkc2ucIzYd5wYTthKOwAM4G7eNGC9yGwUIKliw+fpuj/U7ITQbwvO45Kuur
alLraLc9Rc2CMP2k/5hxPxMaCoudkjSA11ViavTxspVJW8EPiRngbD1x3r6YTTFp
e8n8MZHpVEKmPcTsmykjQTeiaWsDXXBScExoEF4BQhfg6T4vtuVShuelQkfbTui7
F46Ofqc4ARP9dSerVzO/4SLBAwut1PYWqRTmxCLKe9IEcrqEzeGiP/Pf2l6LH0Ec
ZRXGFOohO967p7e/ls4/OpXjrmqeHtBAQ5K7hGZTIgaBso/XYo7m8cLLlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKMs0qieo8xGRFN32wWP+l/9wsNGMB8GA1UdIwQY
MBaAFGSj51xtCrq8kxwoR82qhl+41/nPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWktQblhHMEt1cnlUSENoSHphcUdYN2pYLWM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80MGMwN2EtMDMyMy00NDI0LWFlYjMt
ZjY1ODI2ZmZjYmY4LzEvWktQblhHMEt1cnlUSENoSHphcUdYN2pYLWM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS80MGMwN2EtMDMyMy00NDI0LWFlYjMtZjY1ODI2ZmZjYmY4
LzEvWktQblhHMEt1cnlUSENoSHphcUdYN2pYLWM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfg0ynoTd
tarbmOsSwPgxQuuXW+xiId/xbL+Ch400m6eUo1yKLF2M1/I/2d64Hz2ofjTwCCWx
2ymT1QzLid17nkpAv98OetKmlrW8u3r+CnBw9fUlQOW7YYJMN7jOAdPl5sHaRERG
pOUHiMSorzUW0Z88sjvuNfTGThdubIBU7PnmVc4aRMkEIb/MG3XYRYqdDGyTLism
uKQN7Et8j5jeIs+H5q2fMiuZbzyfgrga3sAKVhn3fBLgrgwiFDuur44z6y0sVun7
uD29peyyWQsvUY4IEQiBlwX3GCdGQHFQfPbDtfx5zI4fB9d0vtLrsMFJZc2XdhSk
CIcbVGZoft/iVQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:24:57 2025 by rpki-client