Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
File: zK1o9-irrfRHJiM0OjJWFQciQYk.mft (raw, json)
Hash identifier: BEJnSo3N+2SnAHSx0DJ1CTqp39pgghpAxgleXduPbeM=
Subject key identifier: 22:CA:ED:61:F6:08:F2:20:D8:91:79:13:DB:DA:7E:DC:11:6A:B8:8B
Authority key identifier: CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
Certificate issuer: /CN=ccad68f7e8abadf4472623343a32561507224189
Certificate serial: 01974C325D620A12F7BDCAF635C9E7A40E67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
Manifest number: 06EE
Signing time: Sat 07 Jun 2025 21:00:58 +0000
Manifest this update: Sat 07 Jun 2025 21:00:58 +0000
Manifest next update: Sun 08 Jun 2025 21:00:58 +0000
Files and hashes: 1: UD4cQq7SyCABLCZHHC1Ou_EeL6M.roa (hash: tfgZKXi2rZuQqy6q4ZM+ZUGFDVqdyYkcUnUVHT5tgpI=)
2: zK1o9-irrfRHJiM0OjJWFQciQYk.crl (hash: pzAdwptjLEiIP2gAN1/J5FWWm8eccezax9KoHHkXHf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:5d:62:0a:12:f7:bd:ca:f6:35:c9:e7:a4:0e:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccad68f7e8abadf4472623343a32561507224189
Validity
Not Before: Jun 7 21:00:58 2025 GMT
Not After : Jun 8 21:00:58 2025 GMT
Subject: CN=22caed61f608f220d8917913dbda7edc116ab88b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:54:39:e9:42:85:09:3f:73:17:04:51:9b:db:
89:c0:3d:9a:e6:d4:42:6b:bd:c1:12:0f:d5:f0:d9:
02:71:a9:54:84:75:da:c7:b5:90:f2:e3:a1:bd:bd:
55:74:b3:60:7e:16:f6:22:67:fd:68:27:72:ad:d8:
6b:c8:2a:b6:d3:ab:1f:5e:4d:f6:75:58:47:dd:41:
2c:f5:79:db:9f:22:c2:fb:06:5d:a2:8b:87:4f:90:
b9:a9:19:10:7e:13:0c:72:ed:1a:fa:37:26:76:dc:
5e:cc:32:ab:52:6a:47:1b:40:67:b8:64:34:3c:74:
74:f0:c6:ed:eb:b9:75:bd:c5:40:e0:3c:52:a6:b9:
8f:f8:ca:b1:81:93:fc:e3:82:d9:76:1c:3e:ef:62:
a2:89:4f:f5:82:34:d8:46:49:8a:c9:c3:39:a4:3b:
0e:6f:1a:5e:bd:5a:ba:f8:ef:60:58:77:53:c5:37:
2f:84:1e:e3:31:40:08:09:bb:34:d6:30:7a:4e:8e:
e9:8c:9e:f5:ad:76:66:3a:62:b8:72:29:65:78:c2:
a0:f1:30:38:c9:57:f3:90:36:a6:af:24:bc:8c:e2:
e3:bf:08:28:e4:42:78:c7:eb:1c:b0:72:1f:ac:ad:
f5:41:a4:4c:85:2b:8e:3c:a9:f0:0e:90:11:ba:3e:
bd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:CA:ED:61:F6:08:F2:20:D8:91:79:13:DB:DA:7E:DC:11:6A:B8:8B
X509v3 Authority Key Identifier:
keyid:CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:9b:87:9b:38:c6:e4:52:24:cd:78:08:1b:5a:2b:3a:89:46:
28:b6:27:a2:b4:10:ed:64:52:ce:22:53:09:27:21:38:50:26:
23:43:f6:21:04:39:ef:7d:be:22:44:4c:b1:0d:38:75:bd:ce:
ae:99:93:42:9a:f8:dd:69:52:4f:ca:fe:29:00:13:cb:20:15:
64:d5:98:95:5f:a3:76:9f:76:5e:d0:aa:12:23:55:d3:ee:df:
f4:e4:56:13:f3:70:59:60:f4:ed:01:ac:03:4d:fc:f6:02:9a:
54:c3:cd:c4:87:01:05:7c:48:f9:59:6f:03:73:71:40:ea:0e:
e1:f4:98:3c:81:cd:a7:48:e2:88:8f:f4:f1:07:de:53:b7:ce:
a0:f5:37:d1:64:9e:bd:85:50:38:37:dd:44:ac:a0:40:03:a1:
84:a9:7e:63:e5:c8:32:b2:1c:7d:70:fa:6d:7d:29:8a:b5:17:
79:dc:71:d1:30:b2:55:14:1e:78:06:fa:e3:79:d2:c4:82:11:
ae:4a:22:ce:95:5d:ad:16:bc:78:45:1e:0e:08:d2:0b:a4:5d:
10:a3:1e:08:5c:44:9a:d0:d0:9f:ed:f3:d1:f3:ff:94:d1:0d:
82:18:9a:fe:c4:6e:04:5a:c2:44:02:25:bb:78:17:33:74:6e:
b0:26:5e:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:15:32 2025 by rpki-client