Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
File: 0zsy4F0KhdvURQ83pz5_ofYQCvw.mft (raw, json)
Hash identifier: 2m9dj8opPjIdc4HY1CCjtYtVTGujyLNJlupfm6dz00k=
Subject key identifier: C5:9F:80:B3:B9:7A:DE:56:0C:48:A6:4B:92:AA:6F:51:20:23:2F:FD
Authority key identifier: D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC
Certificate issuer: /CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc
Certificate serial: 019752A2AC1BA64085580E5B25D8D0B1BC01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
Manifest number: 08A3
Signing time: Mon 09 Jun 2025 03:01:21 +0000
Manifest this update: Mon 09 Jun 2025 03:01:21 +0000
Manifest next update: Tue 10 Jun 2025 03:01:21 +0000
Files and hashes: 1: 0zsy4F0KhdvURQ83pz5_ofYQCvw.crl (hash: 6o719SEia4zOgienMm3mSV8zPJ56GAF02bZcP9vTSsk=)
2: PMHzHrS6vvRZOElfdDEFLn4owdU.roa (hash: UQqloSoHMyhRkRNOpx686QqPQutsxYq/mxr1bVAeLpo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:a2:ac:1b:a6:40:85:58:0e:5b:25:d8:d0:b1:bc:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc
Validity
Not Before: Jun 9 03:01:21 2025 GMT
Not After : Jun 10 03:01:21 2025 GMT
Subject: CN=c59f80b3b97ade560c48a64b92aa6f5120232ffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ea:9c:f1:69:ad:27:7b:96:25:ee:2d:e0:4f:
74:a5:0e:0a:fa:88:b4:7a:c3:eb:b7:b8:a9:0a:4d:
37:05:4a:52:ec:96:4b:2a:b9:dd:a2:5b:5f:07:a8:
4f:4c:eb:5b:d1:02:72:bb:7b:38:29:ed:e8:9c:58:
e0:b8:34:b3:a3:1c:05:b4:88:27:cd:11:9e:52:7f:
b2:91:56:2c:e3:05:dc:0a:42:c7:6c:64:87:dc:61:
fe:12:f4:05:88:d9:65:36:1d:8d:8b:c0:da:99:af:
ec:3b:85:fe:ed:6e:a2:7d:b7:7d:29:cb:78:8f:84:
35:32:7a:48:e6:28:cf:9d:2d:eb:f0:86:28:b5:75:
cb:74:9b:8a:3f:9e:f8:8a:5e:0e:92:73:92:ca:4f:
bb:88:b8:fa:fa:bf:95:06:c8:f0:f3:9e:14:7e:c7:
5e:4a:ea:df:9a:82:c5:14:d0:cd:da:ff:6f:88:da:
12:14:39:91:83:92:00:f7:11:a8:fe:df:53:4c:e7:
a6:c6:2b:10:b0:01:64:ff:f0:20:0c:a8:da:12:9a:
8a:29:9e:cb:35:a6:16:e6:85:27:4b:c2:a8:1f:e7:
12:35:ad:d2:50:5d:1e:5c:8a:b5:2b:77:d2:81:4b:
91:48:be:88:bd:ff:0f:c7:f2:a8:d4:18:f2:99:4b:
6a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:9F:80:B3:B9:7A:DE:56:0C:48:A6:4B:92:AA:6F:51:20:23:2F:FD
X509v3 Authority Key Identifier:
keyid:D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:ae:b7:88:5a:d4:75:b3:80:7d:02:f2:01:70:44:1d:a8:1d:
96:e1:71:1f:47:df:41:52:f4:ce:67:14:c0:49:c1:22:85:03:
d9:c3:75:12:cf:a1:21:76:24:8e:8d:a1:f0:3e:0f:8d:b9:24:
dc:94:0d:5a:d8:9b:26:3b:bb:0b:6b:4c:bf:c0:0d:09:a8:38:
4e:76:fa:7b:b4:b7:ab:8e:12:d7:7d:74:5a:8f:b7:a6:4b:db:
55:c3:61:cf:61:a3:9c:f3:c2:49:1b:c8:50:b8:6c:10:4b:a6:
87:fe:c6:95:d4:65:38:11:d3:45:66:aa:d9:85:5d:ae:b0:c1:
9f:11:22:60:7c:cd:28:d8:bf:b0:8f:8f:19:31:e4:8f:90:4a:
09:9c:88:c7:08:7b:6d:e0:66:27:db:34:5d:ed:af:0f:1c:40:
4f:aa:71:47:d3:ad:66:f2:66:00:28:14:04:89:59:10:c6:20:
dc:1d:3d:82:e5:c1:66:05:8e:17:07:c5:29:ef:af:a4:dc:37:
69:1a:7a:02:8a:01:2b:57:3a:67:09:19:0d:f8:a1:e5:b8:c1:
83:04:2e:06:06:77:ee:b3:a1:10:d8:66:cb:0c:4f:d5:41:a8:
3d:a2:ca:e8:f3:d6:bf:c4:46:a3:a4:88:fa:d4:b1:31:a5:0d:
0a:e0:34:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdSoqwbpkCFWA5bJdjQsbwBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzM2IzMmUwNWQwYTg1ZGJkNDQ1MGYzN2E3M2U3ZmExZjYx
MDBhZmMwHhcNMjUwNjA5MDMwMTIxWhcNMjUwNjEwMDMwMTIxWjAzMTEwLwYDVQQD
EyhjNTlmODBiM2I5N2FkZTU2MGM0OGE2NGI5MmFhNmY1MTIwMjMyZmZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvuqc8WmtJ3uWJe4t4E90pQ4K+oi0
esPrt7ipCk03BUpS7JZLKrndoltfB6hPTOtb0QJyu3s4Ke3onFjguDSzoxwFtIgn
zRGeUn+ykVYs4wXcCkLHbGSH3GH+EvQFiNllNh2Ni8Dama/sO4X+7W6ifbd9Kct4
j4Q1MnpI5ijPnS3r8IYotXXLdJuKP574il4OknOSyk+7iLj6+r+VBsjw854Ufsde
SurfmoLFFNDN2v9viNoSFDmRg5IA9xGo/t9TTOemxisQsAFk//AgDKjaEpqKKZ7L
NaYW5oUnS8KoH+cSNa3SUF0eXIq1K3fSgUuRSL6Ivf8Px/Ko1BjymUtqrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMWfgLO5et5WDEimS5Kqb1EgIy/9MB8GA1UdIwQY
MBaAFNM7MuBdCoXb1EUPN6c+f6H2EAr8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jZjg3OTEtOTk4MC00Yzc5LTljMjgt
MGUxNmJhZWY3MTEzLzEvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9jZjg3OTEtOTk4MC00Yzc5LTljMjgtMGUxNmJhZWY3MTEz
LzEvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKK63iFrU
dbOAfQLyAXBEHagdluFxH0ffQVL0zmcUwEnBIoUD2cN1Es+hIXYkjo2h8D4Pjbkk
3JQNWtibJju7C2tMv8ANCag4Tnb6e7S3q44S1310Wo+3pkvbVcNhz2GjnPPCSRvI
ULhsEEumh/7GldRlOBHTRWaq2YVdrrDBnxEiYHzNKNi/sI+PGTHkj5BKCZyIxwh7
beBmJ9s0Xe2vDxxAT6pxR9OtZvJmACgUBIlZEMYg3B09guXBZgWOFwfFKe+vpNw3
aRp6AooBK1c6ZwkZDfih5bjBgwQuBgZ37rOhENhmywxP1UGoPaLK6PPWv8RGo6SI
+tSxMaUNCuA0ng==
-----END CERTIFICATE-----
Generated at Mon Jun 9 09:39:18 2025 by rpki-client