Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
File: RoZEuS85TK82Z722rz44aZxU8xU.mft (raw, json)
Hash identifier: G44rIFGAWM2Y5JvBhEmrbUbmAhj0ISfrWng/0CthK8M=
Subject key identifier: 1E:BA:0A:C6:A7:B0:6B:5F:78:1E:EF:C7:A0:A9:E1:5F:C3:70:40:D9
Authority key identifier: 46:86:44:B9:2F:39:4C:AF:36:67:BD:B6:AF:3E:38:69:9C:54:F3:15
Certificate issuer: /CN=468644b92f394caf3667bdb6af3e38699c54f315
Certificate serial: 01974C320BF7317873C51E8EA56436D95EC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
Manifest number: 0585
Signing time: Sat 07 Jun 2025 21:00:37 +0000
Manifest this update: Sat 07 Jun 2025 21:00:37 +0000
Manifest next update: Sun 08 Jun 2025 21:00:37 +0000
Files and hashes: 1: RoZEuS85TK82Z722rz44aZxU8xU.crl (hash: 7zLPZznhfAqCi/9TySW0eLTcXbAavRhCtxcTdRFtSuc=)
2: UDnOw3yx7p_S6g0u-gxFkiQH6Ow.roa (hash: pt8gQb/ZyizTIVjVAR2lPtfMoGj527YNLleTVGkzd88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:0b:f7:31:78:73:c5:1e:8e:a5:64:36:d9:5e:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=468644b92f394caf3667bdb6af3e38699c54f315
Validity
Not Before: Jun 7 21:00:37 2025 GMT
Not After : Jun 8 21:00:37 2025 GMT
Subject: CN=1eba0ac6a7b06b5f781eefc7a0a9e15fc37040d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0e:8e:dd:40:f8:9b:79:32:15:7e:68:e6:7b:
e5:7e:cf:32:75:cd:ea:f2:e8:8f:f8:dd:a4:9a:a0:
f4:26:3a:5d:06:db:05:77:da:5d:04:ac:7e:eb:ea:
4d:bb:4d:d5:e0:af:b9:c9:74:93:ba:f9:c1:b9:3f:
b7:ef:f6:a4:86:30:a0:76:5d:d2:25:2d:2f:eb:07:
0b:9a:0e:b0:03:9e:99:36:9a:ce:9e:f5:2f:52:c1:
58:ff:96:38:44:16:8d:62:91:2a:38:fc:1b:5b:20:
c7:7a:50:01:74:c3:c3:48:ce:e2:58:cf:2d:93:36:
07:1d:ee:c0:51:a5:52:de:8b:e0:48:e2:6a:04:08:
5b:1b:42:1e:57:67:e5:bb:b7:b7:9b:e7:fb:33:43:
2b:3c:1d:a1:cc:f3:16:5e:c5:ef:ce:10:68:a6:42:
3b:8b:fe:89:29:fa:aa:4d:55:2c:a3:25:d2:1e:db:
55:82:38:77:fa:d0:16:cc:28:a7:62:50:41:c1:0b:
1d:77:63:0c:79:aa:fc:83:cf:d6:6d:66:ec:26:fc:
6f:0e:45:de:1a:a5:35:9e:98:1f:8b:94:e8:2b:1d:
71:4d:2c:89:58:fc:2c:aa:79:0d:04:93:c2:fc:3d:
aa:77:2c:7c:34:29:7b:03:64:82:c0:76:39:d6:52:
cc:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BA:0A:C6:A7:B0:6B:5F:78:1E:EF:C7:A0:A9:E1:5F:C3:70:40:D9
X509v3 Authority Key Identifier:
keyid:46:86:44:B9:2F:39:4C:AF:36:67:BD:B6:AF:3E:38:69:9C:54:F3:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:d0:9e:52:4d:7c:81:fa:3b:de:b9:60:33:cf:93:97:95:39:
72:67:e7:8b:e1:56:f4:04:f3:f8:bd:4f:17:7c:bf:72:f0:c4:
0b:d0:bc:e8:41:b7:08:72:4e:f4:12:c8:2f:af:59:3f:ff:d4:
a5:fb:ad:b6:49:b8:99:3b:12:27:04:dd:c0:6f:b3:70:a8:4f:
1b:21:ee:a0:64:d9:d4:38:6d:85:e0:c7:78:ef:0a:8d:f9:3c:
72:a3:4c:2c:24:de:72:57:bc:7a:ec:5e:cb:4a:7c:61:22:8a:
39:27:ea:7a:5a:8b:0d:92:b0:40:a6:c3:c0:0a:c3:8d:28:08:
ab:3d:6e:a6:bf:c4:27:88:82:8f:52:78:7f:f4:6a:80:d6:e0:
92:e0:a8:2d:af:b5:5e:09:b3:d1:e5:d6:34:10:96:59:f3:a5:
7e:c9:d8:50:60:68:82:6e:18:38:b8:58:06:67:f3:73:ad:53:
14:96:4b:d4:6e:42:94:7f:ca:4b:69:61:aa:04:50:db:c8:f0:
63:e1:8e:48:4b:ff:1b:71:1b:43:27:7b:5e:48:47:a3:c7:f6:
44:07:c6:e8:75:7f:58:c6:6a:7c:9b:d0:23:93:b0:98:07:51:
da:de:0e:90:9f:14:d9:86:ea:7c:09:ca:36:55:6c:57:52:65:
47:91:64:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMMgv3MXhzxR6OpWQ22V7GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2ODY0NGI5MmYzOTRjYWYzNjY3YmRiNmFmM2UzODY5OWM1
NGYzMTUwHhcNMjUwNjA3MjEwMDM3WhcNMjUwNjA4MjEwMDM3WjAzMTEwLwYDVQQD
EygxZWJhMGFjNmE3YjA2YjVmNzgxZWVmYzdhMGE5ZTE1ZmMzNzA0MGQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2g6O3UD4m3kyFX5o5nvlfs8ydc3q
8uiP+N2kmqD0JjpdBtsFd9pdBKx+6+pNu03V4K+5yXSTuvnBuT+37/akhjCgdl3S
JS0v6wcLmg6wA56ZNprOnvUvUsFY/5Y4RBaNYpEqOPwbWyDHelABdMPDSM7iWM8t
kzYHHe7AUaVS3ovgSOJqBAhbG0IeV2flu7e3m+f7M0MrPB2hzPMWXsXvzhBopkI7
i/6JKfqqTVUsoyXSHttVgjh3+tAWzCinYlBBwQsdd2MMear8g8/WbWbsJvxvDkXe
GqU1npgfi5ToKx1xTSyJWPwsqnkNBJPC/D2qdyx8NCl7A2SCwHY51lLM0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB66CsansGtfeB7vx6Cp4V/DcEDZMB8GA1UdIwQY
MBaAFEaGRLkvOUyvNme9tq8+OGmcVPMVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUm9aRXVTODVUSzgyWjcyMnJ6NDRhWnhVOHhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8wOTE4NDEtMDJmZS00NGRiLWJhMTYt
YTVlMTNiNGZiMTJiLzEvUm9aRXVTODVUSzgyWjcyMnJ6NDRhWnhVOHhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8wOTE4NDEtMDJmZS00NGRiLWJhMTYtYTVlMTNiNGZiMTJi
LzEvUm9aRXVTODVUSzgyWjcyMnJ6NDRhWnhVOHhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJtCeUk18
gfo73rlgM8+Tl5U5cmfni+FW9ATz+L1PF3y/cvDEC9C86EG3CHJO9BLIL69ZP//U
pfuttkm4mTsSJwTdwG+zcKhPGyHuoGTZ1DhtheDHeO8Kjfk8cqNMLCTecle8euxe
y0p8YSKKOSfqelqLDZKwQKbDwArDjSgIqz1upr/EJ4iCj1J4f/RqgNbgkuCoLa+1
Xgmz0eXWNBCWWfOlfsnYUGBogm4YOLhYBmfzc61TFJZL1G5ClH/KS2lhqgRQ28jw
Y+GOSEv/G3EbQyd7XkhHo8f2RAfG6HV/WMZqfJvQI5OwmAdR2t4OkJ8U2YbqfAnK
NlVsV1JlR5Fkqw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 23:19:04 2025 by rpki-client