Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
File: sz3NILWulcFy0y7XKevzBhl7I-c.mft (raw, json)
Hash identifier: vExVTkJl8HL0gQNLcvXtqyS3lXjc9pejeZX3/RcCYjk=
Subject key identifier: 5E:66:96:08:77:CB:6C:4D:1C:71:22:16:6D:98:87:C7:02:AD:AE:92
Authority key identifier: B3:3D:CD:20:B5:AE:95:C1:72:D3:2E:D7:29:EB:F3:06:19:7B:23:E7
Certificate issuer: /CN=b33dcd20b5ae95c172d32ed729ebf306197b23e7
Certificate serial: 0197493187787A47EF5EB33F762C0E586562
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sz3NILWulcFy0y7XKevzBhl7I-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 07:01:12 +0000
Manifest this update: Sat 07 Jun 2025 07:01:12 +0000
Manifest next update: Sun 08 Jun 2025 07:01:12 +0000
Files and hashes: 1: CIm7PdRT4tGc0ohUd0vMkXyk2Z4.roa (hash: bKi9ERQ3HDvQWS3A9n+SnlJFymCAx7E6eQcIAFgcP7o=)
2: sz3NILWulcFy0y7XKevzBhl7I-c.crl (hash: pRwQiFVqCGp2OTLZhqd5QY8M6Imr+ZC0LVlpcXA7eR4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
rsync://rpki.ripe.net/repository/DEFAULT/sz3NILWulcFy0y7XKevzBhl7I-c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:87:78:7a:47:ef:5e:b3:3f:76:2c:0e:58:65:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b33dcd20b5ae95c172d32ed729ebf306197b23e7
Validity
Not Before: Jun 7 07:01:12 2025 GMT
Not After : Jun 8 07:01:12 2025 GMT
Subject: CN=5e66960877cb6c4d1c7122166d9887c702adae92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0a:c2:f7:87:9b:8e:12:f3:47:35:1a:70:38:
2a:7f:09:1b:58:4a:4d:7f:b2:30:ff:12:ae:29:d7:
84:47:9d:3b:20:90:16:02:aa:31:7b:84:5c:2e:91:
89:92:d6:4a:4b:bb:96:8b:39:36:d2:7f:ff:51:9c:
e9:ed:4f:71:01:11:38:d8:64:9f:4e:18:7c:7f:f5:
dc:aa:7d:79:c1:82:15:ba:35:6c:33:b4:21:1a:70:
b5:a6:18:06:27:54:66:52:fb:98:ba:1b:e1:f4:99:
eb:7f:5d:f9:80:3d:3e:f5:9d:d1:0a:d6:c7:81:ac:
4d:74:53:bb:00:34:d9:f5:d3:b6:41:42:d9:ab:d7:
8f:35:5e:48:e4:9c:91:89:5d:9e:7d:65:b9:a5:02:
b7:bd:6f:21:f0:f2:fc:d5:58:82:b6:43:d1:19:5d:
a7:b4:66:bc:ad:a0:f2:34:c4:61:b9:45:43:eb:01:
fa:3c:91:b0:c2:ef:34:44:36:22:84:5b:cc:ff:71:
a8:87:05:59:8b:86:7a:1d:5d:82:cd:9f:2b:14:ce:
4b:e7:7c:1f:6c:75:be:a8:57:eb:b5:7c:ab:64:f9:
38:db:b6:1c:f1:66:dd:46:0c:72:45:68:75:2b:dc:
b7:37:28:f9:80:df:14:ab:5d:ab:22:d2:10:a3:0d:
b4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:66:96:08:77:CB:6C:4D:1C:71:22:16:6D:98:87:C7:02:AD:AE:92
X509v3 Authority Key Identifier:
keyid:B3:3D:CD:20:B5:AE:95:C1:72:D3:2E:D7:29:EB:F3:06:19:7B:23:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sz3NILWulcFy0y7XKevzBhl7I-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:cc:a1:99:7b:f7:7d:e0:68:47:95:24:62:b9:d1:cd:c8:c3:
96:48:1b:8e:d9:9c:b2:12:48:ff:09:1c:3e:77:d0:75:6a:6d:
8a:f1:6f:2c:0a:c0:a5:fd:c4:df:e7:5a:c3:6c:97:93:ea:b4:
bb:8c:8d:c4:fc:b7:93:c5:23:ae:67:86:ae:c4:8e:72:49:cc:
6d:a8:c7:e7:bb:0a:f4:66:34:6f:0d:d5:13:9b:7a:75:5d:87:
86:e6:3e:a6:90:02:00:36:5f:cf:de:2d:5b:7a:fe:93:cb:bd:
36:22:76:9a:9d:f9:e2:29:e0:92:59:1f:13:a7:18:ff:e7:86:
8f:7d:ce:5d:fb:1e:f4:6a:70:5d:ca:de:51:0f:f3:db:12:a4:
43:58:0a:37:64:ca:3d:a2:c1:c9:ec:fd:26:44:ff:c6:72:f4:
df:51:49:31:a3:73:05:83:77:56:db:d3:b7:c6:65:4b:e4:03:
e4:55:35:55:ac:82:a6:dd:b8:44:8a:7a:d3:4b:23:84:a3:61:
5c:ef:ef:89:03:27:16:0c:da:94:ba:8f:f5:95:c3:9c:d9:bd:
7b:34:49:e3:3a:23:ee:dd:f8:07:91:3f:b9:1e:c9:c1:33:13:
05:e1:60:87:ba:5b:af:db:10:40:81:4f:96:8c:9d:e7:84:ff:
47:64:40:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJMYd4ekfvXrM/diwOWGViMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzM2RjZDIwYjVhZTk1YzE3MmQzMmVkNzI5ZWJmMzA2MTk3
YjIzZTcwHhcNMjUwNjA3MDcwMTEyWhcNMjUwNjA4MDcwMTEyWjAzMTEwLwYDVQQD
Eyg1ZTY2OTYwODc3Y2I2YzRkMWM3MTIyMTY2ZDk4ODdjNzAyYWRhZTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwrC94ebjhLzRzUacDgqfwkbWEpN
f7Iw/xKuKdeER507IJAWAqoxe4RcLpGJktZKS7uWizk20n//UZzp7U9xARE42GSf
Thh8f/Xcqn15wYIVujVsM7QhGnC1phgGJ1RmUvuYuhvh9Jnrf135gD0+9Z3RCtbH
gaxNdFO7ADTZ9dO2QULZq9ePNV5I5JyRiV2efWW5pQK3vW8h8PL81ViCtkPRGV2n
tGa8raDyNMRhuUVD6wH6PJGwwu80RDYihFvM/3GohwVZi4Z6HV2CzZ8rFM5L53wf
bHW+qFfrtXyrZPk427Yc8WbdRgxyRWh1K9y3Nyj5gN8Uq12rItIQow20hQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF5mlgh3y2xNHHEiFm2Yh8cCra6SMB8GA1UdIwQY
MBaAFLM9zSC1rpXBctMu1ynr8wYZeyPnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3ozTklMV3VsY0Z5MHk3WEtldnpCaGw3SS1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8wYWMzYmEtNTRkMy00OTFmLTkwNDgt
NTU1YTE5ODMzZDhlLzEvc3ozTklMV3VsY0Z5MHk3WEtldnpCaGw3SS1jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS8wYWMzYmEtNTRkMy00OTFmLTkwNDgtNTU1YTE5ODMzZDhl
LzEvc3ozTklMV3VsY0Z5MHk3WEtldnpCaGw3SS1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhsyhmXv3
feBoR5UkYrnRzcjDlkgbjtmcshJI/wkcPnfQdWptivFvLArApf3E3+daw2yXk+q0
u4yNxPy3k8UjrmeGrsSOcknMbajH57sK9GY0bw3VE5t6dV2HhuY+ppACADZfz94t
W3r+k8u9NiJ2mp354ingklkfE6cY/+eGj33OXfse9GpwXcreUQ/z2xKkQ1gKN2TK
PaLByez9JkT/xnL031FJMaNzBYN3VtvTt8ZlS+QD5FU1VayCpt24RIp600sjhKNh
XO/viQMnFgzalLqP9ZXDnNm9ezRJ4zoj7t34B5E/uR7JwTMTBeFgh7pbr9sQQIFP
loyd54T/R2RAZQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:02:59 2025 by rpki-client