Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
File: 0zWMPscfwZpqyYRrr03lmDY1cpM.mft (raw, json)
Hash identifier: Y7tnTUBvPoBgnVFr+eT5pf+2Ahv+2fTRtGbyvyPW5q4=
Subject key identifier: 9B:70:62:A0:AD:1C:3E:16:6A:2E:CD:80:A2:EA:7C:FE:2F:CC:36:28
Authority key identifier: D3:35:8C:3E:C7:1F:C1:9A:6A:C9:84:6B:AF:4D:E5:98:36:35:72:93
Certificate issuer: /CN=d3358c3ec71fc19a6ac9846baf4de59836357293
Certificate serial: 019752348D219D18AFBD001A2DA919637550
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
Manifest number: 1512
Signing time: Mon 09 Jun 2025 01:01:05 +0000
Manifest this update: Mon 09 Jun 2025 01:01:05 +0000
Manifest next update: Tue 10 Jun 2025 01:01:05 +0000
Files and hashes: 1: 0zWMPscfwZpqyYRrr03lmDY1cpM.crl (hash: TIhMkclSQFRY+CMdzs7NVXbi81JrYD1u+IbCZOhAbF8=)
2: LYl-ckZTCA5UyIouoIve31n38qY.roa (hash: vPSTPP2+IXPu60S6+w3ugZNedqIYo00aGNP955WAY1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:34:8d:21:9d:18:af:bd:00:1a:2d:a9:19:63:75:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3358c3ec71fc19a6ac9846baf4de59836357293
Validity
Not Before: Jun 9 01:01:05 2025 GMT
Not After : Jun 10 01:01:05 2025 GMT
Subject: CN=9b7062a0ad1c3e166a2ecd80a2ea7cfe2fcc3628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8f:7e:a6:72:21:7c:0e:73:3b:c0:12:a3:43:
fa:8e:c6:26:d8:f2:4b:92:0b:68:8e:34:29:51:44:
d4:b4:e9:1e:ce:09:ad:52:40:8f:93:d5:42:34:8d:
2e:76:b3:52:db:b0:9c:a7:63:a4:cf:1d:96:36:85:
35:aa:53:72:bc:6e:e1:b8:e2:80:36:bf:0a:cf:e8:
79:79:29:fe:7f:7d:f8:0e:83:06:b6:81:a7:0f:bc:
74:d1:1f:e1:74:bf:e8:e7:af:bd:b9:08:93:a5:ca:
5b:53:5f:89:f7:79:a4:35:cd:c7:23:61:62:90:7d:
29:d7:6f:f7:0f:ac:57:dc:c8:bf:39:cd:2d:c5:df:
5f:c4:06:55:6e:14:21:4b:5b:ee:06:b8:bc:bb:99:
c5:c1:d8:fb:43:e4:57:0f:30:b2:eb:74:c6:36:8d:
56:0e:dd:c4:77:72:63:bb:71:59:ac:ef:c1:3d:22:
8d:38:ba:a8:2d:0d:4c:91:8d:57:ff:fc:c8:d7:15:
0e:1e:e1:ed:3f:ad:b4:e7:c5:aa:19:10:68:ef:72:
a8:d0:06:73:1b:b8:36:c0:f6:4d:ec:4a:ee:5c:62:
38:bb:2c:61:2c:15:63:20:be:5c:6b:1b:6f:a0:c3:
cf:05:41:1b:7e:ff:c7:da:81:bd:4e:47:f8:90:c0:
5f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:70:62:A0:AD:1C:3E:16:6A:2E:CD:80:A2:EA:7C:FE:2F:CC:36:28
X509v3 Authority Key Identifier:
keyid:D3:35:8C:3E:C7:1F:C1:9A:6A:C9:84:6B:AF:4D:E5:98:36:35:72:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:83:69:c7:54:72:22:aa:a2:16:72:1b:fc:34:52:4e:fe:76:
7d:89:e3:64:97:01:28:60:68:0c:23:42:26:c3:ba:3a:e6:ad:
f6:33:db:c6:79:6a:01:dd:5d:b0:87:9b:b3:32:cc:00:80:46:
63:cc:b9:45:98:36:8c:bc:32:b6:84:35:19:c7:86:8f:1c:77:
fc:d8:2d:c8:0a:94:dc:12:82:1e:94:4e:80:3b:80:dd:a7:42:
34:6e:3d:b8:a9:35:4a:12:e0:c5:fc:fc:46:8b:53:5e:39:1e:
9b:0e:e6:64:5d:a9:36:39:ff:f2:cd:ce:d8:10:f9:8a:8e:e7:
86:28:01:f2:45:56:25:2b:c9:fb:72:55:94:27:f1:2f:e7:48:
8e:57:81:b6:51:ed:7e:31:6a:a7:3d:05:11:0c:2b:eb:df:e0:
e5:df:e3:f4:a7:c9:23:da:04:de:83:b3:f6:37:db:ad:e0:88:
16:d1:be:db:8b:b1:9c:e4:0c:32:b0:6b:ce:d4:fa:1c:b0:5c:
8e:03:1a:d3:03:63:f3:11:2a:c3:76:81:92:a5:44:61:bf:5a:
fe:1b:41:c1:ef:11:2f:80:b4:bb:3e:b0:a3:db:ff:3a:ed:98:
f1:c3:28:25:66:43:3e:ef:36:80:4b:44:37:86:e4:f8:a2:58:
01:2e:65:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdSNI0hnRivvQAaLakZY3VQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzMzU4YzNlYzcxZmMxOWE2YWM5ODQ2YmFmNGRlNTk4MzYz
NTcyOTMwHhcNMjUwNjA5MDEwMTA1WhcNMjUwNjEwMDEwMTA1WjAzMTEwLwYDVQQD
Eyg5YjcwNjJhMGFkMWMzZTE2NmEyZWNkODBhMmVhN2NmZTJmY2MzNjI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxI9+pnIhfA5zO8ASo0P6jsYm2PJL
kgtojjQpUUTUtOkezgmtUkCPk9VCNI0udrNS27Ccp2Okzx2WNoU1qlNyvG7huOKA
Nr8Kz+h5eSn+f334DoMGtoGnD7x00R/hdL/o56+9uQiTpcpbU1+J93mkNc3HI2Fi
kH0p12/3D6xX3Mi/Oc0txd9fxAZVbhQhS1vuBri8u5nFwdj7Q+RXDzCy63TGNo1W
Dt3Ed3Jju3FZrO/BPSKNOLqoLQ1MkY1X//zI1xUOHuHtP62058WqGRBo73Ko0AZz
G7g2wPZN7EruXGI4uyxhLBVjIL5caxtvoMPPBUEbfv/H2oG9Tkf4kMBfCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJtwYqCtHD4Wai7NgKLqfP4vzDYoMB8GA1UdIwQY
MBaAFNM1jD7HH8GaasmEa69N5Zg2NXKTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHpXTVBzY2Z3WnBxeVlScnIwM2xtRFkxY3BNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9kMDFkNTgtNTQxOC00MjE3LTg5YWUt
MjNhODRlZWRkOTU2LzEvMHpXTVBzY2Z3WnBxeVlScnIwM2xtRFkxY3BNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9kMDFkNTgtNTQxOC00MjE3LTg5YWUtMjNhODRlZWRkOTU2
LzEvMHpXTVBzY2Z3WnBxeVlScnIwM2xtRFkxY3BNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ4Npx1Ry
IqqiFnIb/DRSTv52fYnjZJcBKGBoDCNCJsO6Ouat9jPbxnlqAd1dsIebszLMAIBG
Y8y5RZg2jLwytoQ1GceGjxx3/NgtyAqU3BKCHpROgDuA3adCNG49uKk1ShLgxfz8
RotTXjkemw7mZF2pNjn/8s3O2BD5io7nhigB8kVWJSvJ+3JVlCfxL+dIjleBtlHt
fjFqpz0FEQwr69/g5d/j9KfJI9oE3oOz9jfbreCIFtG+24uxnOQMMrBrztT6HLBc
jgMa0wNj8xEqw3aBkqVEYb9a/htBwe8RL4C0uz6wo9v/Ou2Y8cMoJWZDPu82gEtE
N4bk+KJYAS5lIA==
-----END CERTIFICATE-----
Generated at Mon Jun 9 03:14:04 2025 by rpki-client