Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.mft
File: zahD6BKxbexgu3CYykEzEX24R00.mft (raw, json)
Hash identifier: dv71FBRHpRWxTJeXz8ykES3TcDr7/gjIBhCGLWgorS8=
Subject key identifier: FD:B3:E4:CE:A3:7D:E8:47:4D:56:6D:C1:C2:22:6C:E2:C3:71:80:3B
Authority key identifier: CD:A8:43:E8:12:B1:6D:EC:60:BB:70:98:CA:41:33:11:7D:B8:47:4D
Certificate issuer: /CN=cda843e812b16dec60bb7098ca4133117db8474d
Certificate serial: 019745C22BCA495B48C5BBA559B1FF58E4B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zahD6BKxbexgu3CYykEzEX24R00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.mft
Manifest number: 157B
Signing time: Fri 06 Jun 2025 15:00:42 +0000
Manifest this update: Fri 06 Jun 2025 15:00:42 +0000
Manifest next update: Sat 07 Jun 2025 15:00:42 +0000
Files and hashes: 1: VJUoXBS9iPEfhSdXRvzqWIAuTX8.roa (hash: Nan6DQGHyzFA7VJDUyPb17ZowHybZxaUB4pA1mJmnaY=)
2: zahD6BKxbexgu3CYykEzEX24R00.crl (hash: MjkxqbieEUz06b6yZ6eXT5/agnp2FALBPRHnqTvQokk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.mft
rsync://rpki.ripe.net/repository/DEFAULT/zahD6BKxbexgu3CYykEzEX24R00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:c2:2b:ca:49:5b:48:c5:bb:a5:59:b1:ff:58:e4:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cda843e812b16dec60bb7098ca4133117db8474d
Validity
Not Before: Jun 6 15:00:42 2025 GMT
Not After : Jun 7 15:00:42 2025 GMT
Subject: CN=fdb3e4cea37de8474d566dc1c2226ce2c371803b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:42:db:d1:10:d5:aa:d2:d6:7b:fc:ff:fd:5e:
90:c0:3e:b1:25:e7:78:ca:a7:d4:6b:9b:bf:13:1a:
63:33:7f:6a:85:b4:39:4f:eb:02:18:4d:0f:85:6b:
92:10:09:24:6a:ec:06:ef:ea:6e:ad:94:6d:c2:64:
a6:a0:e7:a2:73:86:81:f2:e5:ef:ed:b9:5f:d8:3f:
9a:03:f4:23:76:e2:f9:24:82:28:4f:92:13:bf:d4:
57:51:80:42:b1:07:a7:77:82:d4:31:ac:39:a2:38:
71:08:ec:d2:4d:a3:3e:a4:96:ee:5d:43:02:ee:88:
2a:e6:26:85:21:21:cc:67:9f:de:13:14:cc:67:23:
52:2d:71:69:f0:d3:8d:cb:41:96:4d:3e:77:05:2c:
90:17:30:40:45:4b:9f:7d:55:df:c7:47:0e:76:f1:
da:d3:4d:60:cb:ed:51:89:d7:00:c1:d5:9e:3a:7a:
62:89:91:5c:8a:c9:59:1b:23:75:57:f0:b5:c2:47:
0a:5f:0e:56:07:df:3a:d3:57:4f:35:e2:1c:72:95:
f1:94:38:f3:29:9f:d8:26:2a:14:96:97:78:0d:01:
fb:68:5b:c8:9d:0f:f1:26:76:6d:4b:76:7b:5c:8e:
95:f6:52:43:de:a6:ad:c1:c4:80:3c:cd:ba:56:b8:
c5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:B3:E4:CE:A3:7D:E8:47:4D:56:6D:C1:C2:22:6C:E2:C3:71:80:3B
X509v3 Authority Key Identifier:
keyid:CD:A8:43:E8:12:B1:6D:EC:60:BB:70:98:CA:41:33:11:7D:B8:47:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zahD6BKxbexgu3CYykEzEX24R00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:56:a8:d4:3b:9e:93:c4:28:3a:b0:06:49:cc:83:ba:4c:12:
a1:a1:ff:8b:61:b4:d9:86:3a:4e:5e:05:fb:23:3b:1b:56:56:
27:4d:c5:f8:ca:8b:cc:e2:1b:cb:a6:b7:b7:75:7c:95:ac:b6:
d3:69:1b:35:0f:5f:7e:1d:99:90:d7:d8:4d:06:a3:b7:b1:58:
5a:20:75:2e:23:01:ae:ef:07:a5:b7:92:1c:85:ca:8e:b8:92:
f0:80:ab:31:77:11:b7:4d:70:ce:f9:d2:b3:77:97:51:b1:46:
e9:fa:47:70:51:69:46:09:86:4a:8b:4f:5c:dc:a8:62:c6:3b:
cc:c1:ca:28:a6:3a:d3:7c:a1:d6:a0:09:c4:45:d4:f4:cf:f7:
c2:4b:42:b4:f6:da:e3:1e:b6:ca:45:26:44:be:df:c9:4a:9d:
b4:15:5e:05:5f:3d:0d:c9:d6:05:fb:fb:b9:86:04:0f:50:3e:
0f:40:f1:0e:d6:85:50:2e:04:24:f7:7c:4e:78:37:2f:62:02:
ef:17:34:fb:a0:66:cd:0e:83:39:5b:34:7e:b9:90:9e:04:cc:
b9:24:e6:fd:24:1b:6a:57:a5:4f:d5:07:b3:90:e5:01:34:b6:
02:43:e4:5d:27:d4:12:60:3d:19:9e:bf:d8:7d:b7:98:ce:2c:
10:b6:2a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:25:29 2025 by rpki-client