Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft
File: z65GEYj_we8vOhR0VxqUOaVTdKw.mft (raw, json)
Hash identifier: qhHtbcaZpTkSEKE6SWtcgweyojh+sPCcAQxZrPMXFjk=
Subject key identifier: 15:06:B8:F7:86:79:EF:7D:BE:D0:5F:E5:96:DA:6A:A4:C8:AC:0D:35
Authority key identifier: CF:AE:46:11:88:FF:C1:EF:2F:3A:14:74:57:1A:94:39:A5:53:74:AC
Certificate issuer: /CN=cfae461188ffc1ef2f3a1474571a9439a55374ac
Certificate serial: 019748FAA64B0B6774801256200FBBF73A89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z65GEYj_we8vOhR0VxqUOaVTdKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft
Manifest number: 0295
Signing time: Sat 07 Jun 2025 06:01:15 +0000
Manifest this update: Sat 07 Jun 2025 06:01:15 +0000
Manifest next update: Sun 08 Jun 2025 06:01:15 +0000
Files and hashes: 1: 1k7B6OZhB1CFcx64eFikJ90IArY.roa (hash: BObzQX0NmXL+SkwyifLtayjL5iVc0jp/QAmHV8ZAgNM=)
2: z65GEYj_we8vOhR0VxqUOaVTdKw.crl (hash: ke3bQiBWPtOaXkycEvhw7bErLZDYgZmjATX3/8COeXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z65GEYj_we8vOhR0VxqUOaVTdKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:a6:4b:0b:67:74:80:12:56:20:0f:bb:f7:3a:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfae461188ffc1ef2f3a1474571a9439a55374ac
Validity
Not Before: Jun 7 06:01:15 2025 GMT
Not After : Jun 8 06:01:15 2025 GMT
Subject: CN=1506b8f78679ef7dbed05fe596da6aa4c8ac0d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d9:cb:20:b9:7a:19:16:2e:df:93:fe:87:e6:
98:d3:33:8e:3f:b0:8f:18:0a:bc:3a:39:a7:6e:73:
a8:7e:2c:14:8c:4b:cb:99:46:97:e8:59:36:bb:cc:
5d:1f:88:74:6c:05:61:2f:07:2c:9a:ee:b6:63:d6:
5f:5e:fb:31:14:25:93:58:e8:b0:28:7c:ce:29:6e:
35:b1:09:4e:ea:bd:8c:b7:a4:57:e1:d0:90:1f:96:
d2:03:cd:4c:4f:83:b2:2f:27:6f:aa:7e:e6:2f:c8:
88:e5:9d:ee:c9:79:b4:13:4f:56:61:40:06:8d:0b:
ad:cd:03:93:d2:f4:e4:f0:21:6a:f3:1b:f5:7c:5f:
d4:ad:e1:71:4e:d1:51:b1:6c:b2:96:89:5c:77:0c:
45:11:5c:4f:e1:33:6c:f1:cd:8a:35:34:21:52:24:
8a:78:ed:7c:76:0d:45:04:28:b5:fd:cd:71:a5:69:
20:3b:3e:b5:e7:c4:0c:55:ff:af:eb:58:6b:f0:72:
78:75:d6:2b:04:28:f9:ef:8b:56:3e:73:4a:d3:96:
d9:8a:a5:31:8b:45:8e:fa:b2:d0:0d:9d:66:82:00:
46:f3:48:f5:7f:aa:7b:25:13:71:76:ff:83:fb:e2:
02:19:6d:01:4a:a2:17:29:0b:ff:f5:2a:c4:c5:84:
24:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:06:B8:F7:86:79:EF:7D:BE:D0:5F:E5:96:DA:6A:A4:C8:AC:0D:35
X509v3 Authority Key Identifier:
keyid:CF:AE:46:11:88:FF:C1:EF:2F:3A:14:74:57:1A:94:39:A5:53:74:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z65GEYj_we8vOhR0VxqUOaVTdKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:70:53:7c:2e:89:32:8c:d8:aa:cf:a3:14:fc:d4:72:bb:65:
fa:1c:05:cb:f9:8e:17:16:d5:c6:1b:7b:3d:ed:14:1d:b5:aa:
cd:4d:7b:b6:0f:cf:10:74:54:13:69:a6:c9:91:7c:9a:40:58:
fc:fc:fb:72:c8:f4:a2:5b:df:bd:6e:06:a1:cb:1b:b9:cb:2c:
0a:fd:a4:33:87:62:0a:fb:3f:38:54:df:b7:64:2d:02:40:c1:
27:4a:67:ec:89:7a:9a:28:49:1e:c1:83:5b:cb:e3:9b:9b:e8:
3e:99:6d:62:6c:45:39:67:35:ab:f5:22:69:bb:50:ae:0e:4a:
d7:a0:69:f8:a8:5b:da:e7:80:bc:d6:f4:77:27:53:f9:3b:7c:
4f:9a:14:f4:a9:60:8b:c6:2a:95:11:25:79:86:99:b7:14:79:
5a:9f:3d:61:8d:15:dd:6d:5d:24:3d:4a:3a:c8:36:6c:52:8b:
53:4d:22:86:a5:c3:9c:be:d4:6c:27:a2:c3:a2:fc:e7:3a:29:
41:1b:05:b1:f7:1b:20:ae:d3:53:98:a9:17:cc:e8:1c:c4:06:
5e:c4:c9:bc:29:9e:71:a9:f9:5e:ed:e2:08:6b:14:67:8f:4e:
9c:27:6e:04:4f:a8:ab:31:9a:0c:0a:02:9d:eb:95:0d:35:33:
a9:ab:16:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:04:58 2025 by rpki-client