Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft
File: zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft (raw, json)
Hash identifier: +BnRWkSraC2KX+i1woxKJVt2mq/MBYlUPNT6/5ce3f0=
Subject key identifier: 0D:83:DC:65:D4:FD:8F:E9:47:54:E6:C9:AB:AE:E7:5A:14:FF:18:22
Authority key identifier: CE:4D:DA:FC:2C:F5:65:8D:02:E5:68:28:C2:C9:13:53:52:9E:DE:8E
Certificate issuer: /CN=ce4ddafc2cf5658d02e56828c2c91353529ede8e
Certificate serial: 01974BFB90BA4069166A7C8C3FDA9C56022D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft
Manifest number: 033E
Signing time: Sat 07 Jun 2025 20:01:07 +0000
Manifest this update: Sat 07 Jun 2025 20:01:07 +0000
Manifest next update: Sun 08 Jun 2025 20:01:07 +0000
Files and hashes: 1: Kj9VfdUCgMk4aGgFNgZJ64WvAz4.roa (hash: B1YIPHashB6NFlEh7qNPbd/2OLMoFdhR39F9O5/IGts=)
2: zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl (hash: yiIfnvLlzY84JLVdl+S94fP5pgF9fxrUYfUx6OftmU0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:90:ba:40:69:16:6a:7c:8c:3f:da:9c:56:02:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce4ddafc2cf5658d02e56828c2c91353529ede8e
Validity
Not Before: Jun 7 20:01:07 2025 GMT
Not After : Jun 8 20:01:07 2025 GMT
Subject: CN=0d83dc65d4fd8fe94754e6c9abaee75a14ff1822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7b:89:f8:9f:44:c4:6a:2c:c9:cf:93:93:8e:
02:be:e0:3d:2a:e8:b0:b6:ad:5e:37:53:de:ae:72:
f9:63:04:8a:03:cb:36:28:19:34:f7:93:d7:6e:15:
56:ae:8a:f5:c8:bb:57:88:e1:3a:c6:11:28:69:e8:
06:e4:9d:a6:6a:6b:c7:d0:53:27:86:25:74:fb:7e:
32:9c:c0:e5:ae:8c:b9:97:39:36:0b:ac:d4:de:d2:
ac:8f:f7:9c:4d:cd:b5:2b:ce:5b:b3:71:eb:c0:6d:
73:43:4c:9d:76:47:f1:16:a2:0b:ee:6a:f7:68:66:
49:2a:4c:1a:a5:d3:1d:c9:47:ca:b0:63:61:f4:fd:
c2:12:de:77:88:e7:db:42:29:f6:8c:d8:ca:c6:cb:
03:9c:d5:90:dd:50:50:58:a9:b7:48:ab:08:86:a1:
2a:f0:8d:bc:43:06:3f:32:8c:cd:a2:50:03:77:ac:
b9:e5:ae:c3:b9:c7:30:f9:56:8c:8d:f7:ff:f0:ba:
4d:16:69:be:a1:3a:d8:7a:5f:6a:0f:68:54:ec:4e:
78:88:db:ca:55:4b:9d:a4:b9:29:70:fd:37:6d:c7:
5c:b0:b3:3c:5b:76:fc:db:dc:bb:89:e5:83:eb:85:
08:3d:94:5b:eb:78:b7:a7:f6:4f:dc:73:2e:0e:53:
8a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:83:DC:65:D4:FD:8F:E9:47:54:E6:C9:AB:AE:E7:5A:14:FF:18:22
X509v3 Authority Key Identifier:
keyid:CE:4D:DA:FC:2C:F5:65:8D:02:E5:68:28:C2:C9:13:53:52:9E:DE:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:1a:5b:f4:58:cc:91:78:75:22:bb:b9:e7:05:f4:1e:aa:46:
20:17:d6:19:a5:8f:33:02:2a:7b:39:e0:6d:47:ff:dc:c9:9e:
66:44:19:54:40:64:8f:cb:c0:9c:8b:04:d9:f3:e4:e6:11:36:
0c:63:a3:18:2d:0c:84:74:17:55:53:77:cd:2b:78:c9:9e:4c:
d5:4c:3a:7c:2e:17:74:01:88:af:a0:5f:9b:87:83:81:23:49:
56:37:06:66:be:c4:6f:64:1e:c6:13:a9:2d:cc:78:1c:de:e6:
85:27:9d:08:72:e9:eb:2a:5c:8e:43:f1:3d:78:6e:a0:b0:8e:
56:5f:6a:8e:6d:32:34:a2:3a:e3:fa:1b:c1:aa:73:56:6a:e3:
77:db:37:67:65:91:36:2e:3e:78:fb:5f:7b:11:40:d6:de:05:
73:d7:26:be:00:b5:62:21:6c:44:96:c5:de:1c:c0:13:02:6f:
0d:25:27:7a:9b:75:af:4e:25:27:9a:54:70:93:d6:dd:b5:dc:
32:db:1f:32:88:0d:64:d1:29:e5:bd:12:65:dd:65:e5:ea:9f:
96:0c:60:e1:6c:fd:7f:5d:08:55:04:58:77:44:bc:a3:a8:a5:
70:5c:96:9c:9c:8f:0f:2b:09:5d:42:38:52:a3:08:63:b4:41:
0e:8f:40:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:52:17 2025 by rpki-client