Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
File: pZyqKnNoBpiyyeGmyWQadPPOdug.mft (raw, json)
Hash identifier: QqQoldPHEY1o6s3Rg3qhBusPg2PRhBUhIk7vbv7vJeI=
Subject key identifier: F1:93:98:8B:07:27:A1:16:30:14:09:D6:35:6B:0F:E2:F1:DC:F3:C6
Authority key identifier: A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
Certificate issuer: /CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Certificate serial: 01974C31DD2FC25ACEF7FAF0D96246CBE564
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
Manifest number: 0A13
Signing time: Sat 07 Jun 2025 21:00:25 +0000
Manifest this update: Sat 07 Jun 2025 21:00:25 +0000
Manifest next update: Sun 08 Jun 2025 21:00:25 +0000
Files and hashes: 1: _c_c0M25UwpZ7eHBk4pzeagMlVQ.roa (hash: 8jqy4hlWYt18GsvMo6F88//T4bDxnnNcBAAfWfrvPK8=)
2: pZyqKnNoBpiyyeGmyWQadPPOdug.crl (hash: 7mZhPnOl8Yee49mzWvfii2fr1m2kRSDGmbs8rZ1nFnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:31:dd:2f:c2:5a:ce:f7:fa:f0:d9:62:46:cb:e5:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Validity
Not Before: Jun 7 21:00:25 2025 GMT
Not After : Jun 8 21:00:25 2025 GMT
Subject: CN=f193988b0727a116301409d6356b0fe2f1dcf3c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5c:f1:3a:a7:d8:c8:f5:05:7b:c4:52:01:62:
ab:a5:69:3d:98:1e:2e:c3:fe:7d:1b:f1:1a:9e:a4:
03:82:ab:f8:d6:78:05:6e:4e:94:69:8d:22:aa:24:
78:67:bb:e5:87:6e:11:13:9c:ac:fa:c1:2e:a9:d7:
a7:36:08:f6:5a:5b:3f:99:91:64:84:29:ec:1d:4a:
29:98:a2:e0:2d:2a:26:a6:87:73:bf:0f:0a:0c:47:
7c:8e:f1:86:2b:f4:f5:dc:71:c6:00:5f:d7:26:ca:
f5:73:81:cd:23:15:11:cd:b3:30:56:29:ac:a7:84:
25:1d:d0:1c:ed:43:04:c7:ef:53:06:95:90:e8:d6:
79:e9:03:83:48:a3:fe:83:57:2c:8d:06:7f:ed:a2:
7c:a4:89:8f:51:8d:e2:b8:60:ad:bc:7b:25:9c:a7:
3c:f2:3b:ca:f7:f0:6f:08:e6:be:2b:e3:a8:9f:65:
03:89:0a:69:d4:4a:72:89:dd:bc:00:06:dc:77:af:
29:fa:dd:37:8c:7d:4a:30:fd:4f:f9:8b:24:02:6c:
b9:92:16:ce:59:00:01:50:2e:c4:36:3f:ff:fe:72:
e3:04:fb:e0:8f:a9:28:2d:da:39:29:2e:86:6f:b0:
fe:88:23:de:1f:02:fc:e8:1e:3a:a6:1e:b6:65:aa:
5d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:93:98:8B:07:27:A1:16:30:14:09:D6:35:6B:0F:E2:F1:DC:F3:C6
X509v3 Authority Key Identifier:
keyid:A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:76:32:8d:a0:3e:80:dc:9f:5f:d2:3e:df:7f:69:3e:cd:88:
2b:cc:9a:a0:ec:7c:56:c1:8f:07:31:b1:67:4c:41:7d:01:4d:
90:73:97:44:b4:5a:43:44:ad:9c:1e:63:55:09:98:46:b9:5d:
0d:a2:e4:01:78:74:e5:32:6d:4c:80:af:83:d0:3b:fd:91:16:
09:ee:fb:7c:51:ff:e7:52:64:bb:d6:a2:d3:97:bb:70:56:71:
5d:6b:b2:9f:1c:1c:70:1c:a5:da:58:65:0c:57:30:87:f9:75:
e5:21:26:90:25:be:87:a8:28:57:d4:99:75:2a:f6:31:09:a0:
3f:10:ea:72:50:09:73:bb:1b:3a:b6:a4:5e:f1:1d:1e:f7:b1:
e4:31:f1:b6:7b:5a:41:75:44:d7:45:36:07:1e:91:4e:11:be:
38:96:be:82:a0:f1:6c:61:b3:7a:85:99:2d:d1:72:97:99:a5:
c2:65:25:4b:92:3f:cd:e7:d0:99:68:16:99:8f:df:fe:ea:bd:
a4:e0:79:9e:d4:8d:b1:1d:6c:e7:40:8f:61:64:9f:3e:a4:0c:
b5:89:8b:81:0f:13:13:85:4a:d0:1c:ce:1a:9a:e0:d0:f1:46:
ad:13:c6:70:33:d4:fe:67:12:eb:b6:44:bd:cc:ff:2f:c2:d7:
52:bc:3b:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMMd0vwlrO9/rw2WJGy+VkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1OWNhYTJhNzM2ODA2OThiMmM5ZTFhNmM5NjQxYTc0ZjNj
ZTc2ZTgwHhcNMjUwNjA3MjEwMDI1WhcNMjUwNjA4MjEwMDI1WjAzMTEwLwYDVQQD
EyhmMTkzOTg4YjA3MjdhMTE2MzAxNDA5ZDYzNTZiMGZlMmYxZGNmM2M2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlzxOqfYyPUFe8RSAWKrpWk9mB4u
w/59G/EanqQDgqv41ngFbk6UaY0iqiR4Z7vlh24RE5ys+sEuqdenNgj2Wls/mZFk
hCnsHUopmKLgLSompodzvw8KDEd8jvGGK/T13HHGAF/XJsr1c4HNIxURzbMwVims
p4QlHdAc7UMEx+9TBpWQ6NZ56QODSKP+g1csjQZ/7aJ8pImPUY3iuGCtvHslnKc8
8jvK9/BvCOa+K+Oon2UDiQpp1Epyid28AAbcd68p+t03jH1KMP1P+YskAmy5khbO
WQABUC7ENj///nLjBPvgj6koLdo5KS6Gb7D+iCPeHwL86B46ph62ZapdBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPGTmIsHJ6EWMBQJ1jVrD+Lx3PPGMB8GA1UdIwQY
MBaAFKWcqipzaAaYssnhpslkGnTzznboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9kZDY3MmYtNTMzNi00ZjM1LWIzZWYt
YWU5MWFiMzQyYmUxLzEvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9kZDY3MmYtNTMzNi00ZjM1LWIzZWYtYWU5MWFiMzQyYmUx
LzEvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPXYyjaA+
gNyfX9I+339pPs2IK8yaoOx8VsGPBzGxZ0xBfQFNkHOXRLRaQ0StnB5jVQmYRrld
DaLkAXh05TJtTICvg9A7/ZEWCe77fFH/51Jku9ai05e7cFZxXWuynxwccByl2lhl
DFcwh/l15SEmkCW+h6goV9SZdSr2MQmgPxDqclAJc7sbOrakXvEdHvex5DHxtnta
QXVE10U2Bx6RThG+OJa+gqDxbGGzeoWZLdFyl5mlwmUlS5I/zefQmWgWmY/f/uq9
pOB5ntSNsR1s50CPYWSfPqQMtYmLgQ8TE4VK0BzOGprg0PFGrRPGcDPU/mcS67ZE
vcz/L8LXUrw7YA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:33:07 2025 by rpki-client