Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft
File: ZCOaUQhPGytcaEZDysFGIXx5-NE.mft (raw, json)
Hash identifier: 0u0CIaF5/nZwkKlxKQW35y6FJM2wYT2bbUZW0l9ug4A=
Subject key identifier: 24:15:7F:8B:51:17:48:D4:69:A0:BE:B1:58:26:3D:C0:0E:60:C0:52
Authority key identifier: 64:23:9A:51:08:4F:1B:2B:5C:68:46:43:CA:C1:46:21:7C:79:F8:D1
Certificate issuer: /CN=64239a51084f1b2b5c684643cac146217c79f8d1
Certificate serial: 0197470C0FD1DA58B3C166FBD42B85BA902B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft
Manifest number: 08B6
Signing time: Fri 06 Jun 2025 21:01:02 +0000
Manifest this update: Fri 06 Jun 2025 21:01:02 +0000
Manifest next update: Sat 07 Jun 2025 21:01:02 +0000
Files and hashes: 1: 1WnsILYxjGfpft24w4cU0Z9HVy0.roa (hash: mXH7nwV2vIU6tKBb8bErNfD249HtR3Br3nGu9VJRl4A=)
2: ZCOaUQhPGytcaEZDysFGIXx5-NE.crl (hash: +mHfT/GAPVi6Met3TEOJ48DlPFTm45i0r4fJD1I8HdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 21:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0c:0f:d1:da:58:b3:c1:66:fb:d4:2b:85:ba:90:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64239a51084f1b2b5c684643cac146217c79f8d1
Validity
Not Before: Jun 6 21:01:02 2025 GMT
Not After : Jun 7 21:01:02 2025 GMT
Subject: CN=24157f8b511748d469a0beb158263dc00e60c052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bc:09:f6:bb:90:22:68:2b:93:60:78:a2:32:
e4:ce:f0:c5:f0:c0:33:df:9f:64:f3:3d:0a:53:e0:
ec:c2:ca:7d:76:18:62:82:2b:66:06:c9:f6:98:63:
48:54:30:33:93:5c:c3:c0:be:a3:4e:d7:12:4c:5a:
41:f7:6e:3e:49:d1:9c:82:21:da:27:4f:b1:12:51:
06:02:c7:e0:ff:fe:45:66:08:f5:37:1a:6a:8b:fe:
aa:d8:bb:a8:1b:5f:be:d7:af:86:cf:f0:7c:a1:37:
ad:21:67:71:b1:4e:ff:4c:7f:3b:a7:9a:46:ee:d1:
aa:fa:80:b7:69:e2:57:70:78:1f:a5:59:f8:87:cf:
00:02:1a:40:18:68:93:2f:83:1b:d8:4d:cc:6d:d4:
46:12:d7:7e:6b:d5:df:9f:f6:13:15:a1:bc:a4:52:
dd:7a:be:fb:25:0a:84:4f:31:60:5b:80:28:6a:99:
91:77:ca:81:6f:fa:d8:02:79:5d:52:c3:07:6e:68:
7d:40:ec:f7:d1:df:80:5b:86:37:ff:5f:3f:33:44:
37:71:a3:c5:d7:f2:61:f3:ea:9a:36:c5:23:7e:1e:
2d:a3:eb:88:a0:3a:7e:59:d4:07:e8:f3:b3:49:07:
73:a8:4d:de:fe:bc:05:2e:c5:7f:55:17:a7:cd:aa:
cb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:15:7F:8B:51:17:48:D4:69:A0:BE:B1:58:26:3D:C0:0E:60:C0:52
X509v3 Authority Key Identifier:
keyid:64:23:9A:51:08:4F:1B:2B:5C:68:46:43:CA:C1:46:21:7C:79:F8:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:50:b3:1e:75:53:56:4f:14:62:30:ff:96:33:a3:9f:a3:fe:
5a:1b:b0:46:18:2c:ef:cd:da:1b:01:7c:c6:27:c3:8c:17:86:
c1:19:74:5d:cc:48:4c:d7:bc:ca:4c:99:07:6f:bc:54:a9:71:
17:aa:bd:61:77:29:95:8b:a3:e8:8f:92:e4:db:01:c7:7d:67:
70:4a:5c:07:ce:58:53:83:1c:58:c8:36:61:20:2f:e0:ae:cc:
11:75:6b:b8:b6:a6:1e:e4:1b:9d:7b:49:ab:24:fb:0d:7e:44:
72:e4:07:5f:7e:18:16:8f:1e:2b:d4:76:98:11:38:5d:54:59:
fe:81:4c:e6:40:ad:dd:3c:28:e6:4d:1d:73:60:86:89:83:38:
23:ce:8b:d1:39:d6:0c:a3:e9:d2:69:90:27:45:1b:34:63:7c:
38:28:c6:1e:e7:07:4b:21:15:63:e6:09:20:da:ca:fe:fa:d5:
09:ce:43:52:23:e9:5e:65:51:e7:d2:9f:ba:f2:6e:43:9d:98:
11:2f:52:02:11:59:8e:44:e0:5a:ec:f0:d9:05:23:bb:41:ea:
a0:44:ca:8f:0a:a5:eb:b7:fd:2d:21:d4:ea:10:72:6a:bf:0b:
51:87:90:33:90:ed:ad:ad:35:2c:8b:9b:e3:42:2a:d5:93:c2:
55:65:09:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:26:17 2025 by rpki-client