Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
File: ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft (raw, json)
Hash identifier: 6R8A1Yi7iGp5dzFddjB4GoOvQSKrTJfzTj5JZM6vC58=
Subject key identifier: C2:07:1F:CE:BD:D2:A8:4E:03:94:B2:41:9D:2D:F2:36:E7:BC:0F:D7
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 01974FD7967468DFA8A11E902EC572DCDBDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
Manifest number: 0C64
Signing time: Sun 08 Jun 2025 14:00:18 +0000
Manifest this update: Sun 08 Jun 2025 14:00:18 +0000
Manifest next update: Mon 09 Jun 2025 14:00:18 +0000
Files and hashes: 1: RA9kR943QDfswVQ2De2E5cFSYaU.roa (hash: jCT5nXHXTc0Nn3QbV8+Qje22n9CHMzdTyZ/tDlKS5Ck=)
2: ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl (hash: nqMIgici0J85KtbSh7boCmhnEgbdTb9xhi6LC60UQic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 14:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d7:96:74:68:df:a8:a1:1e:90:2e:c5:72:dc:db:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Jun 8 14:00:18 2025 GMT
Not After : Jun 9 14:00:18 2025 GMT
Subject: CN=c2071fcebdd2a84e0394b2419d2df236e7bc0fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:87:c2:37:13:83:18:eb:21:c6:65:e4:ab:ef:
86:61:08:ff:29:22:b4:ed:01:03:2d:56:c3:b2:a4:
76:6c:61:66:6f:f7:12:d0:27:d4:7d:a4:30:d8:cf:
8c:df:60:d9:eb:1c:d8:af:fb:38:3b:56:13:70:ba:
d1:ff:33:16:09:c3:35:48:32:e6:2a:bb:0d:a7:7f:
a5:7e:28:4f:02:2c:ea:4d:8a:2c:c5:ce:e5:2a:06:
79:bb:2d:fd:de:95:55:01:cd:dc:b9:5a:6c:43:75:
71:46:b7:0a:92:0d:37:cb:b1:7d:df:72:c9:74:0d:
fa:03:25:73:3c:26:31:fa:2b:54:0a:d3:b6:00:3e:
d5:34:6a:27:82:8e:48:e4:3c:4a:26:8a:58:40:8d:
e9:b7:d8:ac:c4:0d:10:d4:f4:c5:45:38:17:ad:b3:
14:92:cc:52:83:43:c5:ee:59:49:42:9a:fc:7f:8b:
04:11:88:4d:9d:e0:dd:32:3c:b8:a0:80:21:7c:2f:
08:c5:a0:de:7e:dc:41:5b:82:ec:39:b3:55:09:49:
fa:35:9c:87:23:3d:fa:9f:0c:5b:b8:65:ec:0c:0e:
c3:97:d9:c5:e1:9d:24:d0:a5:09:34:47:bd:6e:ae:
d1:13:a2:9c:d2:6f:51:b4:21:5a:31:c4:1a:44:0f:
64:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:07:1F:CE:BD:D2:A8:4E:03:94:B2:41:9D:2D:F2:36:E7:BC:0F:D7
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:54:98:5f:3f:63:91:cc:17:78:58:ac:4e:b3:82:05:41:e4:
58:cf:73:fb:50:4f:bc:01:8c:30:bb:c5:d1:ee:65:b8:46:b6:
78:35:7c:79:30:20:89:92:cd:5d:9e:92:1b:3e:6d:0b:0b:3c:
6c:07:8e:0d:37:0a:f7:fb:81:f4:e9:b1:69:0c:ab:b7:64:d9:
2c:f4:a1:1e:57:21:fd:04:47:11:e8:2b:8e:ef:86:0e:2b:4a:
a2:f9:84:8d:ef:ea:c6:a3:d6:0d:e1:3b:a1:df:bc:4e:b1:53:
4d:75:4e:67:6b:8b:66:e0:a7:70:70:7b:ad:05:54:4d:97:2a:
8c:fe:1d:bc:49:d1:a3:cc:fb:2f:ba:76:83:ca:36:6d:8b:48:
d0:23:b8:64:95:d9:cd:21:f6:4c:51:6e:f5:d5:e5:17:dd:34:
13:2c:a5:68:7e:e7:50:b2:36:96:b1:ed:72:ab:dc:84:7d:10:
4d:81:b2:df:43:d8:c0:3b:f9:74:23:89:3c:fd:9d:b3:eb:ad:
60:c1:8b:9a:3f:c1:b9:3e:98:b4:92:66:58:81:e3:b0:98:f9:
76:c0:69:ed:cb:02:39:58:46:03:35:9c:56:cd:42:cc:7c:1d:
ef:88:8a:5b:be:9d:0e:7c:01:bf:d0:b9:a6:e0:ab:64:25:91:
3a:2f:a3:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:18:47 2025 by rpki-client