Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
File: ZLMdzWu1MIApxCcyMFFPcmsbhro.mft (raw, json)
Hash identifier: 0ws42Z/gtK/AtkGhNFeqzOoIFYvf0a4f3TexOpK1xxE=
Subject key identifier: 80:2A:37:3F:CC:02:4D:BD:AF:8C:A5:1A:8A:AB:D1:C8:D9:88:65:D0
Authority key identifier: 64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA
Certificate issuer: /CN=64b31dcd6bb5308029c4273230514f726b1b86ba
Certificate serial: 0197470C408235702E6AAE8A4CF773A8E6A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
Manifest number: 1491
Signing time: Fri 06 Jun 2025 21:01:14 +0000
Manifest this update: Fri 06 Jun 2025 21:01:14 +0000
Manifest next update: Sat 07 Jun 2025 21:01:14 +0000
Files and hashes: 1: ZLMdzWu1MIApxCcyMFFPcmsbhro.crl (hash: 8DpXxqnUGcJlhxkqq+FN62T7rrlGvgnyfiGE7n4Ty7o=)
2: hgdnPYifylvEbRhPG5rcZMHgm-E.roa (hash: kVaA/BoHtOWfVS1UNUVlSYGZdZvXh/V05GtETEpyoE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 21:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0c:40:82:35:70:2e:6a:ae:8a:4c:f7:73:a8:e6:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64b31dcd6bb5308029c4273230514f726b1b86ba
Validity
Not Before: Jun 6 21:01:14 2025 GMT
Not After : Jun 7 21:01:14 2025 GMT
Subject: CN=802a373fcc024dbdaf8ca51a8aabd1c8d98865d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6d:27:d4:3d:08:3f:1b:62:e2:76:01:84:30:
8f:b9:4b:82:8c:b8:cc:ff:17:16:ed:c8:8d:37:df:
70:3e:04:f0:f1:dc:e3:7d:88:ab:d4:10:4e:c4:8a:
6c:70:8d:5e:9c:ae:54:97:78:19:d4:23:46:ba:70:
d6:e1:49:39:9b:01:21:b0:61:82:41:03:ec:dc:07:
bf:b6:84:4c:60:1a:58:ee:68:0c:c2:d8:d2:29:87:
de:42:83:c7:19:d7:8c:5f:b0:75:65:53:d2:13:59:
90:b7:7a:8b:17:c3:7e:77:bf:ca:84:9c:fd:c6:21:
ba:69:da:28:20:22:03:df:7f:e7:02:07:0a:c4:00:
51:4e:98:92:7c:14:73:d0:ad:8c:75:22:48:3a:96:
e5:24:72:a7:cc:76:79:e7:78:f1:3f:4f:cc:dd:72:
fd:39:41:64:88:15:7d:2b:3a:02:4f:d9:41:b1:b2:
b3:4a:b1:b8:99:8f:99:7d:f8:c7:19:82:83:8f:0a:
9e:68:33:07:27:1e:bd:9b:2a:32:33:b4:b7:8a:ac:
49:29:27:61:f9:e0:84:64:42:a4:f3:bb:b7:a4:6e:
b8:57:3c:0c:5d:e4:a7:eb:e1:a3:66:a6:43:87:b0:
91:61:ae:af:39:f1:aa:ae:0d:f8:31:9a:47:09:84:
73:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:2A:37:3F:CC:02:4D:BD:AF:8C:A5:1A:8A:AB:D1:C8:D9:88:65:D0
X509v3 Authority Key Identifier:
keyid:64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:f2:b5:17:ce:22:f9:4d:dc:ab:24:3d:df:79:9f:9d:98:df:
66:30:28:a3:2f:25:a1:bc:02:5e:59:63:57:e8:1b:82:75:c5:
a4:be:c4:9b:b6:5f:90:d0:9d:1c:4b:ec:b6:78:10:2d:4e:d3:
a0:ed:ef:ec:fa:28:ae:27:29:c8:23:bc:04:43:6c:10:ec:d3:
11:31:ed:b4:a8:88:2a:c3:c0:e3:a9:81:69:b8:aa:44:fc:0c:
25:89:07:78:13:ff:51:7d:bd:56:68:9c:98:52:9d:c2:d5:d4:
c5:cc:b6:38:53:7a:c4:f6:3c:1b:31:63:c6:77:5d:f5:30:71:
53:9d:b8:42:64:82:a5:43:c9:91:79:c5:90:7a:4d:14:40:7a:
cf:4b:81:80:6c:32:2a:8f:18:54:d0:13:59:c5:04:7d:9a:9f:
a7:f7:d3:6a:5e:36:63:8b:b0:0a:ae:13:9d:cf:1c:47:db:31:
b9:dc:11:bb:75:5f:79:31:f6:f0:d0:93:26:02:28:29:8c:f9:
06:6b:a1:ed:29:5e:e9:38:02:c0:27:d5:57:d1:74:70:8b:59:
78:48:46:9b:0d:b3:8b:77:2c:14:48:28:49:25:e0:44:8f:25:
b6:1c:0c:e5:4c:b5:d9:bb:e2:0f:6e:66:bf:2a:b6:66:b6:3b:
e7:ea:c8:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 04:36:22 2025 by rpki-client