Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
File: zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft (raw, json)
Hash identifier: LPi3CFY2mJfp2ewcAew+G8TlSBdI6pQgYPFS6wYPPAI=
Subject key identifier: CC:3F:37:AD:B2:2D:EB:86:34:35:54:CF:BF:F0:21:86:A6:72:7C:F3
Authority key identifier: CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E
Certificate issuer: /CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e
Certificate serial: 01974E2037E328CF50C372D647CAC7BB1A9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
Manifest number: 0EFD
Signing time: Sun 08 Jun 2025 06:00:23 +0000
Manifest this update: Sun 08 Jun 2025 06:00:23 +0000
Manifest next update: Mon 09 Jun 2025 06:00:23 +0000
Files and hashes: 1: 1r-YWbxqyiaEeQQe7XhCESQq4-A.roa (hash: whgT3ej9YeVcd8f315sOoiAQXSfv+O+qM97fjItvC5w=)
2: zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl (hash: 9hyKUNDkAEk37tNxRKXGRoP6Hn/xsnBMbnzjwtzrVfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:20:37:e3:28:cf:50:c3:72:d6:47:ca:c7:bb:1a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e
Validity
Not Before: Jun 8 06:00:23 2025 GMT
Not After : Jun 9 06:00:23 2025 GMT
Subject: CN=cc3f37adb22deb86343554cfbff02186a6727cf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:06:3c:ca:05:bf:23:67:8b:15:a8:98:13:63:
db:df:28:15:72:84:f1:73:e5:9e:7e:a0:18:a1:0e:
07:99:b0:95:79:80:75:61:17:f2:57:f3:21:e6:dc:
90:a5:a4:01:20:84:4f:fd:ec:72:40:26:c9:99:cb:
a8:ca:75:b4:46:52:e0:03:af:90:1a:71:4d:15:a7:
3d:01:28:80:2f:4e:30:9a:b8:5e:55:7b:99:f9:3b:
09:e1:5a:86:11:c2:94:36:6f:fd:1a:50:1f:69:92:
41:ac:01:ec:47:67:2a:72:ef:63:69:98:a1:1d:33:
71:fb:ae:d8:eb:29:fb:71:ec:42:74:f7:7d:10:b5:
20:2c:e7:73:95:00:77:fb:f2:f3:eb:a7:3d:20:10:
4a:19:ea:ba:18:c9:01:74:e9:c8:62:13:17:7f:e1:
b0:f8:6b:b3:cf:fb:3c:f9:6f:8f:d9:b6:f3:e4:ed:
f1:b5:ac:44:89:6c:6a:a6:03:8b:83:13:b6:2b:c0:
33:00:2b:b0:eb:89:db:9b:43:22:cf:80:18:09:d1:
d3:d2:a1:e6:5c:56:db:c8:66:44:a9:5f:6d:c0:80:
11:d2:bd:ac:e8:35:d8:1d:83:84:a4:65:eb:d5:77:
62:9d:ed:66:21:bf:81:d4:43:72:e9:54:dd:b3:f6:
8f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:3F:37:AD:B2:2D:EB:86:34:35:54:CF:BF:F0:21:86:A6:72:7C:F3
X509v3 Authority Key Identifier:
keyid:CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:47:b3:09:6f:b2:93:7f:24:d5:8f:3a:12:fb:68:33:27:74:
7e:76:be:83:01:77:a1:60:1c:49:61:18:91:db:42:ce:ab:af:
cd:8f:96:36:62:49:7a:b7:fa:84:a8:4e:47:75:d4:4a:02:1d:
3f:94:2a:0b:26:39:65:02:7b:4e:15:7d:af:eb:2b:f5:0f:9f:
56:2f:2d:7f:10:df:56:79:d1:b3:8f:fb:6b:9b:79:12:6a:ff:
e1:00:69:ba:c0:77:54:6d:5d:53:a7:86:5a:03:14:df:9a:d5:
e8:d4:47:74:cc:69:15:2a:b4:de:b7:10:37:9c:f4:d5:42:86:
3d:1a:de:3d:4d:e2:d3:08:0b:25:b4:c2:4f:aa:a6:e1:10:b5:
f5:6d:66:18:c8:e8:64:29:2e:79:5f:96:bf:a7:5c:b5:a9:2b:
f1:63:69:45:cd:22:59:ef:2a:89:b0:94:66:42:3d:bb:fc:31:
f8:a7:65:f7:f8:76:75:f9:f4:0b:6d:14:0f:05:2f:60:4e:29:
c9:2f:f1:0c:0c:b8:a4:d6:53:e7:31:3c:8d:1b:8c:58:c8:8c:
5c:b7:cb:ed:f7:ca:3a:c0:5f:3f:2a:83:b4:26:30:6e:7d:ac:
30:98:c7:ec:6b:24:62:d5:06:a4:92:09:55:29:d5:f8:63:cd:
72:54:24:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:05:09 2025 by rpki-client