Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/8ca655-1e8c-4243-88df-47febb0ac259/1/Z3NwPrTqs2ernekaKsQe4yAUAw8.mft
File: Z3NwPrTqs2ernekaKsQe4yAUAw8.mft (raw, json)
Hash identifier: +aHk/AF3xtVx0UQDGNPbFxmWuJVhgf9SJfX0ytzvry4=
Subject key identifier: CC:7A:C8:41:9A:16:1F:4D:45:E3:2F:0E:0A:75:D2:5C:58:B7:C6:6A
Authority key identifier: 67:73:70:3E:B4:EA:B3:67:AB:9D:E9:1A:2A:C4:1E:E3:20:14:03:0F
Certificate issuer: /CN=6773703eb4eab367ab9de91a2ac41ee32014030f
Certificate serial: 0197469EE321774AA87A8CB71E48414DD602
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z3NwPrTqs2ernekaKsQe4yAUAw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/8ca655-1e8c-4243-88df-47febb0ac259/1/Z3NwPrTqs2ernekaKsQe4yAUAw8.mft
Manifest number: 0843
Signing time: Fri 06 Jun 2025 19:01:47 +0000
Manifest this update: Fri 06 Jun 2025 19:01:47 +0000
Manifest next update: Sat 07 Jun 2025 19:01:47 +0000
Files and hashes: 1: Z3NwPrTqs2ernekaKsQe4yAUAw8.crl (hash: D4OHs6Kyu/a03d3oDrtnqYCn8xygindWPfEX/jMBCEs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/8ca655-1e8c-4243-88df-47febb0ac259/1/Z3NwPrTqs2ernekaKsQe4yAUAw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/8ca655-1e8c-4243-88df-47febb0ac259/1/Z3NwPrTqs2ernekaKsQe4yAUAw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z3NwPrTqs2ernekaKsQe4yAUAw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:e3:21:77:4a:a8:7a:8c:b7:1e:48:41:4d:d6:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6773703eb4eab367ab9de91a2ac41ee32014030f
Validity
Not Before: Jun 6 19:01:47 2025 GMT
Not After : Jun 7 19:01:47 2025 GMT
Subject: CN=cc7ac8419a161f4d45e32f0e0a75d25c58b7c66a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f7:ef:d0:71:b9:1f:41:28:b6:0a:96:a9:e0:
01:4b:7d:8a:d9:f1:0a:08:b3:ba:f4:0c:90:a9:fa:
09:71:c6:9f:33:78:45:6c:01:66:97:a5:c6:bb:3f:
41:a8:fa:8d:3f:4d:30:53:ed:09:52:b5:92:73:bc:
af:b7:02:e0:f0:4d:78:b6:c5:33:2c:00:14:d3:92:
ff:36:39:c5:db:0d:d9:41:f4:6e:a4:0b:41:ba:75:
1b:35:dd:70:cd:97:12:b5:e5:e9:8f:89:ec:99:5e:
11:a2:22:87:b3:c1:f0:b7:af:fb:d1:ba:1c:43:56:
9c:f1:de:0b:5e:4b:38:47:69:0b:c6:9d:af:02:23:
e2:7b:d4:4c:96:25:09:66:58:ed:2a:14:30:ee:17:
23:cd:68:8c:dc:92:9b:8b:70:58:32:c7:b7:ec:a7:
26:1d:ce:0c:32:97:3c:20:f0:22:7e:84:e2:2e:a8:
f4:c6:18:b4:b7:fd:05:6b:e4:3c:6b:ac:dc:9e:8e:
a7:43:ad:2e:b1:10:da:a9:53:91:75:8c:e0:37:00:
23:5a:ad:66:39:31:d1:5a:ac:c7:30:2a:37:56:98:
92:4c:30:6c:50:eb:85:b9:e0:56:81:a2:7a:b6:bc:
25:b8:27:63:46:79:f6:63:54:98:8b:f9:f0:0e:77:
e8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:7A:C8:41:9A:16:1F:4D:45:E3:2F:0E:0A:75:D2:5C:58:B7:C6:6A
X509v3 Authority Key Identifier:
keyid:67:73:70:3E:B4:EA:B3:67:AB:9D:E9:1A:2A:C4:1E:E3:20:14:03:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z3NwPrTqs2ernekaKsQe4yAUAw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/8ca655-1e8c-4243-88df-47febb0ac259/1/Z3NwPrTqs2ernekaKsQe4yAUAw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/8ca655-1e8c-4243-88df-47febb0ac259/1/Z3NwPrTqs2ernekaKsQe4yAUAw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:d3:88:8b:ea:85:68:09:b5:9f:4d:13:37:b8:d3:1d:51:6d:
3c:f9:2a:af:cf:a3:b6:b7:93:ad:58:e8:8a:bc:c0:eb:99:8c:
2f:26:2c:b7:0c:e9:99:d0:84:f9:8d:bb:d4:d7:dd:8b:da:7d:
d8:7a:f1:08:fb:69:99:5a:f5:90:7d:5c:4e:db:60:b0:ff:6c:
2d:48:14:3a:68:08:71:73:f7:1c:06:a0:05:48:e3:2e:c5:c6:
29:7c:27:71:ad:60:3d:15:c7:86:9a:8d:b5:d9:2d:7e:e7:ad:
f6:ba:f5:a5:2d:15:07:eb:34:33:81:8e:b9:be:ea:c7:4f:a1:
bd:51:ad:49:ee:47:c6:5b:12:3a:7c:d4:ca:e1:df:f4:49:cc:
a3:53:03:69:35:ff:88:cf:96:cb:2d:99:b9:b0:f9:75:93:cb:
99:ca:8c:87:de:51:3c:58:42:17:d7:c8:73:61:42:e7:13:33:
31:49:2f:1c:7b:06:db:e3:38:95:85:dd:0f:ad:d0:52:ec:30:
0b:66:ff:81:6d:9f:17:49:46:47:43:5f:51:81:30:61:d3:e2:
6d:69:eb:3c:bc:6a:20:03:3c:c9:e0:a3:52:91:c3:17:b5:3a:
53:1d:35:3d:3d:a2:31:b1:75:dc:a9:83:e5:9d:3d:02:dc:47:
2b:ba:2c:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:54:33 2025 by rpki-client