Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/5ec30c-2aef-47ab-b0ec-5b15523bfcbb/1/ZCurhFmUi3l0dkjhPpm50KWCUGo.mft
File: ZCurhFmUi3l0dkjhPpm50KWCUGo.mft (raw, json)
Hash identifier: E/I5JMvPFSOCAJuwWpMcy97pXHz5NdYejSRi46zYdyw=
Subject key identifier: 5A:39:C3:B6:30:68:7A:CE:63:8F:C2:AA:21:03:7A:16:5A:E6:8E:12
Authority key identifier: 64:2B:AB:84:59:94:8B:79:74:76:48:E1:3E:99:B9:D0:A5:82:50:6A
Certificate issuer: /CN=642bab8459948b79747648e13e99b9d0a582506a
Certificate serial: 019847093C3B75E49F324696BA88C8922EEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZCurhFmUi3l0dkjhPpm50KWCUGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/5ec30c-2aef-47ab-b0ec-5b15523bfcbb/1/ZCurhFmUi3l0dkjhPpm50KWCUGo.mft
Manifest number: 0969
Signing time: Sat 26 Jul 2025 14:00:44 +0000
Manifest this update: Sat 26 Jul 2025 14:00:44 +0000
Manifest next update: Sun 27 Jul 2025 14:00:44 +0000
Files and hashes: 1: ZCurhFmUi3l0dkjhPpm50KWCUGo.crl (hash: JdZCm/4WsW0vQAygZ9L2uHxUGF9hQCQChw6h6yR32eY=)
2: paYy_Hhxnm4PBAs2Lf2_YVwZO6U.roa (hash: ATfmnjPDFCrMSy8LdJNeeiWeAqOBvNXLV0H5uqzb3IU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/5ec30c-2aef-47ab-b0ec-5b15523bfcbb/1/ZCurhFmUi3l0dkjhPpm50KWCUGo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/5ec30c-2aef-47ab-b0ec-5b15523bfcbb/1/ZCurhFmUi3l0dkjhPpm50KWCUGo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZCurhFmUi3l0dkjhPpm50KWCUGo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 06:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:09:3c:3b:75:e4:9f:32:46:96:ba:88:c8:92:2e:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=642bab8459948b79747648e13e99b9d0a582506a
Validity
Not Before: Jul 26 14:00:44 2025 GMT
Not After : Jul 27 14:00:44 2025 GMT
Subject: CN=5a39c3b630687ace638fc2aa21037a165ae68e12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:be:a3:57:c2:00:30:a9:48:89:a8:91:70:60:
b2:58:ce:9c:3b:12:c9:8d:06:0f:e6:27:11:33:c2:
8c:f5:a3:a2:3e:49:9d:d2:ca:a2:ae:f3:67:85:ac:
5e:b5:45:8a:dc:89:16:d2:54:56:1e:ee:56:9a:b0:
da:21:83:6e:ff:dd:6d:ba:b6:4e:47:0b:ed:82:48:
9d:b9:c4:21:c7:e6:dd:a7:f0:5f:bf:bb:3f:17:a8:
24:bb:76:8a:a1:a2:c3:c5:a5:ff:8c:00:17:24:9e:
30:76:a5:7b:d6:40:5e:0f:54:80:52:ec:7f:ed:6a:
04:bb:02:e9:75:98:e1:f4:1c:f3:37:2a:53:04:39:
70:1d:5b:89:18:64:0a:46:33:bd:f3:7a:df:d0:12:
41:8e:d1:3c:11:a2:79:b0:cf:b8:f6:e8:0f:d1:3b:
13:00:dd:9c:a4:0f:f6:6b:4c:4f:77:d0:06:f4:c2:
09:11:88:19:80:e2:cf:2c:8b:55:be:ea:99:87:99:
97:a6:3b:aa:77:83:e8:c1:bb:56:5d:36:e3:7a:a4:
5b:03:f7:e7:48:e0:3e:6f:c4:92:18:27:6d:69:fa:
e7:99:10:3f:9b:28:ac:78:d6:af:d0:ec:7f:aa:d9:
e3:71:08:73:6a:1e:35:ae:e7:f9:23:bc:b5:68:9f:
5a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:39:C3:B6:30:68:7A:CE:63:8F:C2:AA:21:03:7A:16:5A:E6:8E:12
X509v3 Authority Key Identifier:
keyid:64:2B:AB:84:59:94:8B:79:74:76:48:E1:3E:99:B9:D0:A5:82:50:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZCurhFmUi3l0dkjhPpm50KWCUGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5ec30c-2aef-47ab-b0ec-5b15523bfcbb/1/ZCurhFmUi3l0dkjhPpm50KWCUGo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5ec30c-2aef-47ab-b0ec-5b15523bfcbb/1/ZCurhFmUi3l0dkjhPpm50KWCUGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:45:7f:cc:d4:bc:9e:d3:97:1e:0b:de:ed:0b:eb:26:2a:e6:
cb:67:21:80:29:2f:d4:08:8b:21:e0:72:9e:5e:39:97:77:e3:
fa:53:50:6d:62:36:01:31:47:03:b9:5d:dd:c7:4d:6a:ac:b7:
cf:87:91:b1:6e:2c:4f:a0:5f:b1:a1:e4:99:0f:90:12:3a:82:
e8:82:d7:ec:3f:77:a7:4d:76:39:3f:78:cb:53:5a:1d:97:aa:
05:74:1f:72:47:4f:2b:63:bd:50:bf:99:a9:98:87:01:9a:dc:
99:85:1f:81:c6:61:3a:bd:bf:ee:a6:9d:95:46:f2:f2:a7:84:
bc:be:22:f2:4e:37:a5:06:95:ff:38:bb:84:dc:66:6a:16:8d:
80:10:e8:ca:18:4a:1e:77:c3:6a:3d:05:ba:dd:e7:cd:ca:d2:
b7:38:6f:35:60:74:2e:e4:0a:b2:86:60:b8:5a:f6:4b:f4:03:
21:5b:ca:8f:1f:c5:b8:84:a2:69:9c:f9:15:f5:67:42:c0:a6:
1e:ea:dd:20:64:11:ca:0b:30:e7:ad:0c:a4:bd:8b:38:1f:8f:
88:8d:4c:03:d5:2e:67:d9:5f:43:13:fa:04:e7:c9:ff:57:24:
3c:92:44:14:84:d2:d9:bf:7f:25:78:a7:3a:0b:2d:f6:92:4c:
29:26:d4:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 14:48:13 2025 by rpki-client