Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.mft
File: ZKDbECcDCCx8pVSrtbInYAGNVj8.mft (raw, json)
Hash identifier: ncERzzY+MVQt8wmpT5oOAnFzTBzjwSTvxFD6oBAM1dA=
Subject key identifier: 36:02:37:41:08:DE:CF:C6:F0:D3:52:08:DE:46:06:71:C5:27:40:EE
Authority key identifier: 64:A0:DB:10:27:03:08:2C:7C:A5:54:AB:B5:B2:27:60:01:8D:56:3F
Certificate issuer: /CN=64a0db102703082c7ca554abb5b22760018d563f
Certificate serial: 019748C31565473E7862BBA57256AE040947
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKDbECcDCCx8pVSrtbInYAGNVj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 05:00:33 +0000
Manifest this update: Sat 07 Jun 2025 05:00:33 +0000
Manifest next update: Sun 08 Jun 2025 05:00:33 +0000
Files and hashes: 1: ZKDbECcDCCx8pVSrtbInYAGNVj8.crl (hash: GRSaGKqFgJrgJZrjl5EEWapXOGnTNjFAXzCmHzUK2Us=)
2: tClIzpB8AXYvJfeCisA8HxpOd74.roa (hash: sXbqNinLjTETFbK42QOaktsLVCyYHDlotZvPtCRaxBU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKDbECcDCCx8pVSrtbInYAGNVj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:15:65:47:3e:78:62:bb:a5:72:56:ae:04:09:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a0db102703082c7ca554abb5b22760018d563f
Validity
Not Before: Jun 7 05:00:33 2025 GMT
Not After : Jun 8 05:00:33 2025 GMT
Subject: CN=3602374108decfc6f0d35208de460671c52740ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d8:cb:ee:e9:fa:70:03:ca:45:bc:f3:b0:88:
9e:64:35:bb:ef:ca:2e:67:31:2d:3a:47:d1:3c:c1:
0f:c9:3c:7b:25:87:1e:5b:c6:2e:e8:76:35:fb:bf:
c2:dc:31:ab:df:67:3c:b7:87:3d:c7:9f:3d:96:df:
91:0c:5d:ad:15:04:58:e6:a8:64:26:f1:3e:9a:a1:
ce:b7:e8:6d:f5:ad:26:03:1f:d1:cf:66:7a:1e:89:
b3:50:4e:b7:6f:82:5f:a4:d3:a6:bb:6f:f8:fd:76:
94:17:28:d8:3f:93:43:15:31:b5:2e:86:48:13:63:
5a:5c:6a:52:13:82:c7:1b:00:a7:61:07:5e:94:31:
5c:bb:62:b4:ec:86:9d:3e:5f:71:a2:bc:9a:ea:90:
dd:31:f5:fa:7a:d0:0a:c2:8e:a8:b4:5f:a1:b7:09:
2d:68:78:e9:ba:7d:35:ef:98:33:7f:53:1b:71:6d:
21:e7:d4:88:d0:74:76:0d:48:22:a8:f9:d5:f9:ea:
f6:10:ec:d8:38:ff:6a:63:52:22:37:4a:a9:ad:da:
61:cc:78:8c:dc:c3:0a:4c:7d:c4:dd:35:e0:20:3e:
19:dd:1e:c4:16:1a:d0:ce:da:bd:2a:85:2e:bd:d2:
af:ec:74:14:a7:70:a4:91:ee:da:46:20:15:f5:51:
b1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:02:37:41:08:DE:CF:C6:F0:D3:52:08:DE:46:06:71:C5:27:40:EE
X509v3 Authority Key Identifier:
keyid:64:A0:DB:10:27:03:08:2C:7C:A5:54:AB:B5:B2:27:60:01:8D:56:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKDbECcDCCx8pVSrtbInYAGNVj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:a2:e1:fe:4c:86:ce:4f:2c:c2:f1:0e:0d:1b:35:67:42:b1:
21:83:f7:17:56:e7:2d:2c:58:a9:79:dc:7a:28:6c:74:24:0d:
fc:e7:00:c2:13:3f:f3:eb:5c:57:99:30:6d:f8:6e:d8:c3:fc:
a2:95:b2:ee:83:a1:ed:b5:09:f7:bc:f4:e4:94:68:1a:dd:cb:
9a:58:2a:b8:2b:37:fa:ac:01:0a:0a:ec:ad:ef:9a:7d:e5:d9:
ce:17:83:74:b6:d9:ec:df:af:ec:9f:02:f3:f0:06:90:ac:58:
a1:4c:9c:a3:81:31:66:07:6d:bf:a7:78:6b:d1:29:05:f1:b6:
43:a4:a2:94:47:3c:94:6d:f4:4d:b2:5b:ca:63:a3:4a:87:87:
5c:35:d8:f1:5a:5c:0d:99:aa:3e:71:12:60:9e:0d:59:7c:da:
8a:2b:51:6d:63:f4:43:7b:63:3a:a9:04:6f:64:07:8a:13:c2:
24:bc:89:5e:ef:4d:85:20:73:8e:db:70:05:2c:b1:c1:8b:54:
67:d5:5a:5a:9e:05:62:78:f6:90:8e:e5:7a:50:94:6f:0f:08:
75:02:d0:f7:ee:78:78:d3:d4:2c:ff:b5:88:6f:d0:14:09:6a:
2b:65:2d:50:9d:cb:29:7b:bc:e8:4c:1a:65:c3:2c:e8:71:df:
f3:80:3f:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:03:01 2025 by rpki-client