Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
File: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft (raw, json)
Hash identifier: cCpNsekaRiVWAc6vcB0kKIGPPv4vBlD0SrQWnaP/+O8=
Subject key identifier: 9D:0B:70:C8:13:5C:94:C8:DF:AE:C5:2F:0D:CD:86:90:37:F0:7C:0D
Authority key identifier: CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
Certificate issuer: /CN=cddd902a1271270027e4577778ea35883b4515f6
Certificate serial: 01976214EE6F3203F572D3A4257FADF4DF1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
Manifest number: 158F
Signing time: Thu 12 Jun 2025 03:00:28 +0000
Manifest this update: Thu 12 Jun 2025 03:00:28 +0000
Manifest next update: Fri 13 Jun 2025 03:00:28 +0000
Files and hashes: 1: Ylu4oY650LeSLzKfRWZsKd7D6d4.roa (hash: at13Jjp52CyKiekCDznMGprsJGH6Ha6O/Aegpe9S1N0=)
2: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl (hash: njE6BkyWPDJzTMoye4cAHt8XcBg+mGk2Dw5vPSb+7n8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:14:ee:6f:32:03:f5:72:d3:a4:25:7f:ad:f4:df:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddd902a1271270027e4577778ea35883b4515f6
Validity
Not Before: Jun 12 03:00:28 2025 GMT
Not After : Jun 13 03:00:28 2025 GMT
Subject: CN=9d0b70c8135c94c8dfaec52f0dcd869037f07c0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c7:38:43:2c:29:57:0b:a7:60:ad:d5:60:18:
21:df:8a:07:ec:e5:6a:70:7a:ba:d9:c6:64:d4:98:
54:db:2a:34:f3:38:1b:d7:29:46:e5:d6:d9:80:17:
62:fc:25:ff:cd:61:44:8e:8d:26:83:fe:ee:a0:5b:
55:2b:76:a6:da:14:63:c0:87:39:1b:42:2a:5c:c7:
a9:32:88:8c:e6:3f:9a:b1:f9:fe:90:9b:ab:d5:94:
83:0d:11:9f:94:50:17:ee:23:35:6e:aa:f1:48:0b:
97:c7:50:ed:59:5a:75:ce:3c:d8:fb:c4:0d:6a:91:
c1:e7:9d:71:d4:df:84:eb:34:3f:0c:3d:99:39:ff:
9e:37:ae:58:80:93:23:ef:84:d8:9f:c8:97:78:59:
06:25:b8:59:13:b0:33:40:68:8c:d0:8c:cf:31:71:
d6:75:db:50:a8:f0:0e:3b:9f:71:1a:6b:3f:ca:07:
5a:94:73:8d:ec:06:70:ad:e6:3f:16:1f:57:80:83:
b2:3e:32:92:c9:68:10:4c:17:eb:6b:ed:f5:76:ec:
9e:3c:f6:79:13:27:73:88:71:64:a7:de:d3:ff:86:
a8:a9:af:de:c6:17:02:85:b0:db:93:b4:e8:c3:91:
81:4b:e7:44:92:c3:d1:cb:e9:5a:a4:8b:68:e0:72:
a6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:0B:70:C8:13:5C:94:C8:DF:AE:C5:2F:0D:CD:86:90:37:F0:7C:0D
X509v3 Authority Key Identifier:
keyid:CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:7c:f0:d2:8c:bc:0e:77:e1:c3:2e:a6:99:11:9c:93:01:f4:
44:29:7a:30:c3:df:9f:b2:ee:3d:f1:ce:c3:6b:ca:54:68:d3:
64:e7:9d:00:ed:ea:ba:62:15:b0:30:80:8e:68:49:1a:fe:b1:
8d:de:40:6f:2c:09:40:1a:75:0e:9f:6a:35:c2:6b:ee:bb:9f:
c1:4a:a8:f6:a8:01:18:8d:56:95:7a:29:e0:34:7e:b5:39:65:
49:f0:cc:be:f9:c9:4f:87:d2:2f:f1:59:08:98:b1:8a:33:be:
e6:23:e0:5f:ad:a9:61:b5:b0:88:48:9a:6d:ca:07:90:2c:c0:
50:fb:f7:6f:51:c8:7d:c6:f7:8f:57:51:02:49:76:1e:e0:a2:
a7:61:db:78:a3:f0:73:23:b8:e7:c9:68:ea:c0:c8:28:28:0c:
79:4a:ea:f5:c5:c8:ff:f5:87:c2:9f:92:73:bc:3d:64:0b:ed:
8e:b7:4c:aa:d0:78:87:d3:74:ce:7e:10:c0:e5:ae:fa:7e:6c:
ae:72:40:41:a8:91:49:2d:2d:b3:09:46:d7:fc:81:33:eb:83:
f9:27:01:1f:ef:6a:04:fc:e2:9b:4f:d0:9a:f9:b1:bf:3e:b9:
57:11:d2:93:54:32:3d:bc:15:b5:b5:b5:3d:84:dd:c3:fa:8c:
db:c8:28:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 08:39:09 2025 by rpki-client