Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
File: ZhBOT32fONjiKi0yvgGQMZMMGkc.mft (raw, json)
Hash identifier: R8k5gY1OdAeXLklL7xG+RRHVOcBwvUBCBfqL3yY1nyA=
Subject key identifier: 78:89:B1:5A:15:20:53:29:4F:34:B7:28:D5:8A:09:9A:65:14:59:B1
Authority key identifier: 66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47
Certificate issuer: /CN=66104e4f7d9f38d8e22a2d32be019031930c1a47
Certificate serial: 01974CA011853017124303F884A5C2CED092
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 23:00:47 +0000
Manifest this update: Sat 07 Jun 2025 23:00:47 +0000
Manifest next update: Sun 08 Jun 2025 23:00:47 +0000
Files and hashes: 1: CBx-FeJj7z4oTrZiVmY-MbHnzM4.roa (hash: 1bONPKFzyDS/3APoxZR25vqyDAsgCQifSMXpTfL4F0s=)
2: WxxzockSF-0jbEBubYwjKIfgtaw.roa (hash: uNom3cZ42KKzlsjBXTYNfCi+Ksse/PrjCfplRbo7jWE=)
3: ZhBOT32fONjiKi0yvgGQMZMMGkc.crl (hash: dyMLXd00prxLvzdl0ACXJwJDmGGmWD702Z41939GRRs=)
4: hAuohYiSHygUFUxTjuX1SWN5QDE.roa (hash: MotGMSUysnMBdzXEwoyDH1EBq/l4jrQRez7lyisrMeA=)
5: n6ANVJpjfADW-mInHpVlhLdkL5w.roa (hash: E28ZlsfhOnBkyIyOKkYfx6xyMrKE5R52d/SAANOKtIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 23:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:a0:11:85:30:17:12:43:03:f8:84:a5:c2:ce:d0:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66104e4f7d9f38d8e22a2d32be019031930c1a47
Validity
Not Before: Jun 7 23:00:47 2025 GMT
Not After : Jun 8 23:00:47 2025 GMT
Subject: CN=7889b15a152053294f34b728d58a099a651459b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2c:ab:a7:7f:ca:17:6b:a1:7c:b1:68:f5:88:
9c:b0:47:39:68:d3:3c:42:ee:6b:cf:36:b3:04:bf:
98:95:0a:24:10:3a:45:4b:a1:2d:eb:90:f3:83:50:
66:fc:7b:de:f5:3d:85:47:14:d1:41:e3:ff:14:e4:
23:60:1b:56:81:d0:1f:5e:aa:56:3b:79:41:fe:29:
33:8c:a1:0c:54:41:28:ce:6b:51:7b:0a:a5:8d:13:
34:95:ea:63:9f:f0:af:85:0a:b2:92:ee:02:b1:99:
5a:66:66:2c:b4:72:3b:da:7f:c1:98:24:89:71:43:
b8:2a:1e:b5:46:dc:9c:3a:aa:c7:9d:64:db:d6:a3:
42:ce:0f:ca:8c:9e:2a:0c:be:08:0e:dd:47:20:91:
d1:9a:dc:71:d1:e6:3b:f3:34:7a:d9:4e:71:42:74:
db:a3:57:d1:26:49:b0:c1:15:ce:6a:84:28:72:0f:
42:a8:27:4d:f3:14:c4:e7:15:25:01:4c:15:a4:bf:
45:92:12:59:52:05:0c:d2:06:87:a5:ec:e7:ff:4c:
20:0a:57:1e:98:68:8d:98:ce:a5:64:93:8a:7d:16:
67:8d:b6:a1:36:fb:88:e8:6b:c0:c8:8c:0f:26:9b:
48:73:a5:71:3c:42:6e:28:c3:28:be:46:75:9c:5c:
1f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:89:B1:5A:15:20:53:29:4F:34:B7:28:D5:8A:09:9A:65:14:59:B1
X509v3 Authority Key Identifier:
keyid:66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:1c:84:1b:37:b9:69:b5:30:bc:e1:ee:66:f4:ec:83:22:f1:
1d:46:68:6f:f8:b3:da:e4:98:37:ff:ec:1b:af:69:99:3a:75:
ca:56:5b:96:bd:15:f4:90:ed:03:f4:db:24:09:48:b3:c5:4b:
0c:0a:1f:3b:a9:af:4e:91:15:4d:95:d9:e9:b2:3c:41:b2:96:
df:e1:1a:21:f5:02:0d:3a:e5:ac:ad:71:29:f8:ea:dd:b8:84:
f9:2b:4d:b3:61:bc:e0:a1:f8:7b:44:ba:08:cc:64:04:16:93:
3b:8f:8f:ef:25:9a:b0:bc:0b:57:e3:23:a4:8e:52:ca:b3:36:
05:f4:00:4d:2d:e2:c6:27:1a:80:d6:73:2f:7f:50:7b:51:b9:
6f:29:0c:e7:b9:90:62:cf:88:d2:42:33:36:9b:57:ab:76:c4:
c2:af:8d:ce:e4:ae:e5:85:83:46:0a:92:42:8d:03:e2:e7:c7:
be:6a:a4:cd:33:78:71:20:29:3c:57:08:83:16:65:42:ea:91:
7a:0f:eb:86:9b:3f:f9:36:52:37:c1:29:2e:ce:16:a2:f5:33:
ee:4a:f6:c3:5e:cf:c8:02:70:bf:c0:8f:90:c9:fb:05:5d:0e:
5d:d9:b8:d6:5e:6d:94:3b:25:eb:f9:6c:4b:29:a3:b1:59:f5:
fb:6d:8d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 08:21:01 2025 by rpki-client