Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
File: zE1IcI2lBUlZ5hilguKMFV_vET8.mft (raw, json)
Hash identifier: ohsyp/s0+fbaaErKbN/qh4BLH4zr5ww/5r4p/T/rYV0=
Subject key identifier: 50:FE:0F:D7:E4:FC:5B:20:AE:CD:DB:01:9F:ED:79:D7:CB:EE:CD:C5
Authority key identifier: CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F
Certificate issuer: /CN=cc4d48708da5054959e618a582e28c155fef113f
Certificate serial: 01974F6A5FD9CBCDAEBF3CA34C9D93D47072
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
Manifest number: 04DB
Signing time: Sun 08 Jun 2025 12:01:00 +0000
Manifest this update: Sun 08 Jun 2025 12:01:00 +0000
Manifest next update: Mon 09 Jun 2025 12:01:00 +0000
Files and hashes: 1: r9Ux985jnVmfKHLZzNH9_T06wzU.roa (hash: SP4ahRSwbqs6nOlIBz3rDf0O3m+DJabQsDxWQ8oLOwM=)
2: zE1IcI2lBUlZ5hilguKMFV_vET8.crl (hash: KiVCN3zk0BQDLle2WsQYXpdlteXRd57YY44aYj7K71A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:6a:5f:d9:cb:cd:ae:bf:3c:a3:4c:9d:93:d4:70:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc4d48708da5054959e618a582e28c155fef113f
Validity
Not Before: Jun 8 12:01:00 2025 GMT
Not After : Jun 9 12:01:00 2025 GMT
Subject: CN=50fe0fd7e4fc5b20aecddb019fed79d7cbeecdc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f0:e3:a7:95:29:46:38:a2:a1:6a:e0:32:3d:
aa:52:20:40:09:c0:56:bd:ca:ef:f8:ed:a8:ca:34:
a2:58:1c:66:6e:d6:b9:a3:33:92:b7:3b:73:70:36:
55:d9:94:b3:9c:ec:92:19:a2:59:57:ff:7a:22:8a:
33:b6:c2:87:f6:61:f1:8b:e0:7d:f4:52:f1:31:27:
fc:f6:8c:1e:30:3d:ab:02:c0:2e:15:97:46:de:a1:
56:27:cf:a4:c2:37:2c:10:cc:03:00:bf:10:0e:af:
76:fc:ca:4d:9a:dc:73:1e:92:61:fb:d1:1d:be:ee:
45:e3:27:a3:b2:89:21:9d:d7:bb:8a:f9:f2:3e:44:
5b:30:e7:00:2f:1d:e1:58:fc:0d:f2:02:f3:3c:3c:
01:92:e8:fe:1e:6d:f2:bd:8e:3b:18:59:43:ae:2a:
cf:95:8d:7e:0b:db:83:33:22:45:27:6c:58:56:b8:
03:6e:90:dc:13:23:02:b9:56:2c:5e:9f:d0:7a:c4:
05:4c:96:bf:0b:89:e0:9b:16:74:c9:06:a0:f8:dd:
71:92:ea:26:2d:4a:b0:ce:b0:0f:5a:f4:45:08:ad:
56:26:3c:fd:e3:83:c4:6b:13:d8:e4:15:f6:93:21:
7e:b6:f6:4a:88:19:e2:89:12:ce:d7:2d:5e:6f:7f:
91:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:FE:0F:D7:E4:FC:5B:20:AE:CD:DB:01:9F:ED:79:D7:CB:EE:CD:C5
X509v3 Authority Key Identifier:
keyid:CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:8a:21:01:42:5a:25:0c:4b:29:da:f1:0a:56:18:8a:74:38:
df:3e:ad:90:7d:9e:a6:ca:8c:c9:27:ff:da:c1:47:97:82:47:
3b:93:f6:52:aa:e7:d2:c8:03:6c:4f:06:e8:06:fa:23:7e:66:
eb:c5:8b:6b:11:0a:32:83:31:d1:5a:b9:f6:57:34:52:0f:d8:
a5:cd:e2:39:f1:7d:a2:db:59:51:24:64:37:d3:25:7b:e4:47:
3a:a2:bf:de:52:53:4c:e8:36:fd:9e:14:e3:73:96:e1:82:a9:
40:74:52:35:13:12:5c:34:a8:93:a2:2a:bf:cb:12:0f:09:31:
ff:35:cd:84:62:06:1e:9b:24:aa:e1:75:7c:a5:5f:fd:4e:44:
fc:00:76:33:ff:6b:5f:fc:be:e0:ad:82:8c:2e:ec:cb:ce:86:
70:4a:c2:bc:9a:0d:6e:53:77:ac:e8:37:fd:6c:dc:00:83:74:
f0:f6:f5:0e:ae:e7:ad:56:f1:83:88:d4:af:2f:05:ef:7b:5e:
da:02:a3:91:49:2f:76:d0:e2:fd:dc:52:ae:6a:85:bd:55:c0:
e4:db:87:a5:ad:a1:e9:71:10:78:0f:0e:c2:5e:c7:93:b6:36:
5d:08:af:df:02:3c:ca:b6:e7:f1:b5:16:e7:a9:aa:7e:3c:1a:
e1:d6:40:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:34:06 2025 by rpki-client