Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
File: ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft (raw, json)
Hash identifier: rTn39z6sSq9Z4Hf5PCzNeKPybuw+ToiEqphD5KzYPqc=
Subject key identifier: CA:6D:46:23:5E:F7:B2:3B:81:C5:66:AB:C5:7A:B2:50:06:42:66:C0
Authority key identifier: 66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C
Certificate issuer: /CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c
Certificate serial: 01974AB1D98CDEFA2F73C7797C3594FF1195
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
Manifest number: 0BCA
Signing time: Sat 07 Jun 2025 14:00:58 +0000
Manifest this update: Sat 07 Jun 2025 14:00:58 +0000
Manifest next update: Sun 08 Jun 2025 14:00:58 +0000
Files and hashes: 1: 6uraY0RUo083dp6VRDIhaMr-XOw.roa (hash: 84hQ/Wr95yt1TasjhyzEMQBsJDQIG0TsCg+7NafRezY=)
2: ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl (hash: YL7Z8p8aWbV/e55boOor78iDzYsHjcYUMpILLRVvBow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 14:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:d9:8c:de:fa:2f:73:c7:79:7c:35:94:ff:11:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c
Validity
Not Before: Jun 7 14:00:58 2025 GMT
Not After : Jun 8 14:00:58 2025 GMT
Subject: CN=ca6d46235ef7b23b81c566abc57ab250064266c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:94:f5:39:1c:ff:52:ad:c1:f4:26:2d:91:e3:
7f:d4:87:b7:0d:ea:63:49:0c:5c:17:8b:e6:6c:17:
b8:ce:1a:21:23:ce:ec:15:25:54:94:8c:2f:dc:e1:
d1:bb:5d:25:cd:fc:70:b3:3e:96:60:89:f4:3b:7e:
6e:56:fe:81:25:51:2e:25:cc:9c:2a:d5:a0:33:2b:
ad:2b:ce:67:da:61:62:9b:0a:56:3d:e2:64:ae:47:
b5:d1:a2:a1:a4:e5:58:b7:b4:8c:12:d6:00:9e:97:
b9:a9:91:95:b7:ed:d3:95:0a:ae:71:4f:16:f2:4f:
83:3d:63:53:48:b6:ab:a7:bd:b4:bd:1a:f0:8c:6d:
96:8f:28:9b:49:1a:ce:b1:17:d7:f9:11:28:6e:dc:
ab:d4:f7:ee:43:df:12:48:ac:71:f0:f9:bf:8d:e9:
cc:aa:5f:b1:56:dd:97:3e:4f:1c:a8:1b:03:dc:d2:
75:11:b4:8a:93:38:21:bf:38:f3:f8:b9:4d:e6:e0:
08:19:00:b0:d1:7e:5c:2a:c4:47:95:a2:4e:c5:b5:
68:1f:05:d5:dc:2a:be:cd:b0:d3:76:bf:09:85:de:
79:de:0c:b8:67:3c:0e:8c:d4:e1:be:2a:6b:71:5f:
e5:bc:e5:ba:fe:36:61:dc:5a:29:c2:1b:ae:2c:99:
53:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:6D:46:23:5E:F7:B2:3B:81:C5:66:AB:C5:7A:B2:50:06:42:66:C0
X509v3 Authority Key Identifier:
keyid:66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:08:2c:10:00:ee:8b:96:1f:56:80:fc:fa:e2:9a:1a:5b:2e:
07:0b:46:1b:53:dd:69:59:e5:37:87:5a:27:64:28:e4:da:28:
c1:12:b4:24:df:45:1a:d7:59:cc:e2:05:83:d7:85:27:e4:b5:
03:9d:8d:02:26:00:7c:96:a5:7d:51:a9:99:47:c5:74:9c:4b:
50:b0:de:e7:b5:ee:f2:73:71:ed:50:ab:a6:f7:97:b4:06:a0:
31:d1:ea:85:d0:e2:4d:26:10:3b:31:ea:2d:27:ff:64:65:4f:
79:a7:50:d3:a2:b7:6e:d4:3d:9d:ba:9d:26:b5:cc:89:eb:bf:
77:5a:19:5d:eb:91:48:a4:3e:bc:fd:5b:f3:36:8b:7c:6e:f5:
05:26:d2:ec:d3:bf:0d:c0:c1:f3:39:60:3b:31:ba:17:59:f3:
06:77:4c:98:42:fa:20:ae:41:da:02:80:c1:9a:3d:f9:43:55:
38:a7:3b:a0:4b:99:e2:d6:95:d5:40:0a:43:d4:c0:cd:cc:d4:
74:74:77:0e:d5:69:3e:6e:af:30:13:a0:4a:56:10:04:30:61:
3f:9a:c8:d9:bb:01:ee:97:80:d7:76:07:cc:57:f1:43:49:13:
dd:dc:50:97:52:b8:64:45:80:14:9c:aa:29:1b:82:d4:57:7f:
e4:8f:af:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:09:46 2025 by rpki-client