Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
File: Zhao67AREZsvaVMn-xblH4hwRHk.mft (raw, json)
Hash identifier: MivJUIxwtNnCwhuq/hSncbfP4a/RF+HV1X/UZ/DqP8Q=
Subject key identifier: 05:B9:7E:11:DE:91:02:D4:E0:A0:F7:2B:EC:9E:5F:82:47:D3:24:8E
Authority key identifier: 66:16:A8:EB:B0:11:11:9B:2F:69:53:27:FB:16:E5:1F:88:70:44:79
Certificate issuer: /CN=6616a8ebb011119b2f695327fb16e51f88704479
Certificate serial: 019749312D021A2EA5A0A4AD851D247E8EC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
Manifest number: 38
Signing time: Sat 07 Jun 2025 07:00:48 +0000
Manifest this update: Sat 07 Jun 2025 07:00:48 +0000
Manifest next update: Sun 08 Jun 2025 07:00:48 +0000
Files and hashes: 1: Zhao67AREZsvaVMn-xblH4hwRHk.crl (hash: s5aDNY8UVxTda5ek66mUC201ZTqHm1iSUgchBCzB/BU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:2d:02:1a:2e:a5:a0:a4:ad:85:1d:24:7e:8e:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6616a8ebb011119b2f695327fb16e51f88704479
Validity
Not Before: Jun 7 07:00:48 2025 GMT
Not After : Jun 8 07:00:48 2025 GMT
Subject: CN=05b97e11de9102d4e0a0f72bec9e5f8247d3248e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:68:4f:e1:0e:dc:87:42:b7:fd:5b:92:c7:41:
b4:11:af:03:67:e5:ec:99:a2:7b:21:ec:3f:f4:9a:
e1:ba:dd:0d:b4:62:8f:ff:a5:b0:ff:21:cf:b7:64:
55:37:a0:90:08:7d:76:b7:18:4a:ad:75:6e:06:f6:
76:b3:fe:f7:c4:62:c6:e1:00:ea:74:cc:52:90:ac:
72:44:cd:98:54:ec:d5:1e:03:de:68:a0:2e:b9:8e:
22:25:dd:90:14:9c:5c:32:6d:d9:c9:d5:e8:8a:d1:
c1:2f:c5:7c:77:eb:52:ff:87:df:dd:c1:07:40:ca:
ec:66:1d:3f:66:c0:f5:59:a6:21:0d:ab:3e:f6:18:
6c:73:ed:20:f4:4c:a2:1a:db:44:c7:72:ad:11:66:
e6:f7:53:e5:8a:9d:ad:20:6d:ef:55:e6:50:b4:3c:
8d:65:a0:60:9b:8f:3b:79:a2:b4:b2:42:23:e8:6a:
bd:da:54:8b:c5:e5:1a:48:7c:3a:74:5c:cf:46:a9:
44:e9:e8:61:84:9e:f7:44:ff:91:5d:f6:71:4a:54:
a3:7c:52:ed:76:d7:0c:c7:0f:09:74:85:0b:ba:64:
4a:ef:d6:77:72:c3:b5:e7:d1:bd:1b:4e:5f:7f:7b:
07:93:51:52:f1:28:16:8a:f1:55:97:f3:0a:64:10:
84:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:B9:7E:11:DE:91:02:D4:E0:A0:F7:2B:EC:9E:5F:82:47:D3:24:8E
X509v3 Authority Key Identifier:
keyid:66:16:A8:EB:B0:11:11:9B:2F:69:53:27:FB:16:E5:1F:88:70:44:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:b3:ab:4c:0c:f2:61:73:ac:d8:21:93:02:d1:d0:88:a5:f5:
cb:36:e5:89:40:e5:e9:73:ea:89:1d:c4:96:0f:f8:5f:5a:63:
4c:97:e1:ad:7f:28:bc:0c:b0:64:e7:0d:74:bb:01:b5:f0:c1:
d2:20:39:04:9a:38:bd:af:32:5c:36:46:06:b2:cf:44:3d:9f:
44:04:53:d8:c4:49:72:2f:e0:b1:75:8c:05:fa:5b:8f:8e:06:
8d:42:6d:72:f0:9c:d4:d4:95:85:5a:64:3d:47:7f:1a:f5:74:
f8:a5:77:20:42:61:30:c2:54:b5:71:1e:68:31:2b:d0:f8:cb:
02:ed:a4:46:4d:18:4a:d8:b9:17:d1:b2:ad:e4:30:db:33:46:
02:16:3c:d5:0c:56:ff:57:02:7f:1a:65:0e:2b:6c:ae:99:04:
3e:9c:91:b0:9d:c9:e0:7b:52:3d:26:e5:da:3a:d3:b8:00:e7:
c3:16:25:83:d5:d3:4e:9c:83:f9:75:1d:a6:58:3d:5c:fa:89:
c0:5a:da:10:cd:92:0c:27:ef:f0:4c:4e:20:90:1a:2a:2d:be:
f6:2e:72:27:59:8c:b5:dc:61:92:94:97:13:c9:b0:7f:61:7a:
2a:64:35:aa:40:87:18:cb:0d:10:5f:f3:14:08:e8:37:f9:ca:
3e:59:77:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:00:21 2025 by rpki-client