Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
File: ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft (raw, json)
Hash identifier: USiB+RVO9KuDLm+yXGvchc2VZ/dD1FeDLYb4zH6CXbY=
Subject key identifier: 06:55:76:F8:6F:FB:D0:DF:A0:47:16:A5:F8:61:22:7C:0F:C8:91:EC
Authority key identifier: 64:31:E9:60:CD:06:10:39:B3:B2:7F:D2:5D:41:60:77:1C:49:8B:AB
Certificate issuer: /CN=6431e960cd061039b3b27fd25d4160771c498bab
Certificate serial: 019751FD6A83506FB893E6E5922D41DC6E9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
Manifest number: 11D4
Signing time: Mon 09 Jun 2025 00:00:51 +0000
Manifest this update: Mon 09 Jun 2025 00:00:51 +0000
Manifest next update: Tue 10 Jun 2025 00:00:51 +0000
Files and hashes: 1: ZDHpYM0GEDmzsn_SXUFgdxxJi6s.crl (hash: 7yzRQpnD7pLqZ/A6g7KuDfW8eXGqqUx9R/ulgHlflTk=)
2: ZNva-8ABsvjJ6HrNFF7Xd55KW-w.roa (hash: nx2aCY2Bfbi+2/xFJXRwWrGYEeyRAMv/De92goZyeZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:fd:6a:83:50:6f:b8:93:e6:e5:92:2d:41:dc:6e:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6431e960cd061039b3b27fd25d4160771c498bab
Validity
Not Before: Jun 9 00:00:51 2025 GMT
Not After : Jun 10 00:00:51 2025 GMT
Subject: CN=065576f86ffbd0dfa04716a5f861227c0fc891ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2d:7e:d9:ed:7f:cf:d7:76:28:e7:7c:0c:3a:
c6:45:d5:4e:9e:17:66:5c:6b:ca:94:b6:68:0b:20:
b8:e3:a9:da:58:77:6b:aa:85:34:21:e6:eb:55:71:
91:09:b3:e9:27:6d:63:6b:d3:ce:94:7f:af:b3:60:
fd:af:05:64:90:90:7f:e4:c9:04:d8:d7:5e:eb:d0:
bf:3d:92:c2:86:d5:1d:b8:c9:15:e2:ce:86:c8:65:
98:20:59:80:e9:4d:65:75:54:2d:0f:d8:77:04:66:
e7:3a:1b:43:cc:1c:33:ad:4d:3a:25:4d:f7:d4:e5:
e3:59:3f:56:3b:07:3a:24:41:cd:ed:1f:ba:22:49:
42:75:dc:b7:a0:d6:68:50:47:48:6e:d0:7f:62:6e:
81:91:fb:f6:7b:c4:b5:3c:2a:50:22:bb:48:bb:29:
71:8a:35:00:af:ec:5b:e4:8b:e2:0e:73:54:1a:ab:
e2:ea:23:1c:a7:aa:f3:63:a1:6f:6a:d6:f8:c6:bf:
a3:62:c0:2d:da:31:67:45:03:1e:e8:f0:73:b1:e0:
fa:64:98:05:73:22:d2:28:a8:04:c1:e3:9d:ac:55:
38:08:18:5d:c3:9a:8c:f0:2c:7f:de:67:e7:b4:01:
75:9b:ed:91:1b:0d:24:c7:38:a3:55:77:96:94:48:
4b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:55:76:F8:6F:FB:D0:DF:A0:47:16:A5:F8:61:22:7C:0F:C8:91:EC
X509v3 Authority Key Identifier:
keyid:64:31:E9:60:CD:06:10:39:B3:B2:7F:D2:5D:41:60:77:1C:49:8B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:b4:09:42:e8:7b:98:3c:b1:b6:f8:b4:12:bb:f8:39:13:c4:
b5:78:30:c7:04:0e:13:d6:21:43:48:21:59:52:36:12:3c:c6:
62:83:f1:d7:9b:4b:05:29:f2:70:9e:12:42:39:ad:bc:2b:0f:
2a:3b:d2:ff:be:85:44:e8:83:4f:e4:c2:01:03:db:d7:da:c3:
ff:7a:fe:0f:af:a7:b1:1f:48:28:1e:d5:2c:b0:29:d3:a8:02:
a5:94:fb:66:4a:8b:f2:db:57:bf:10:d2:ec:6c:84:1d:7c:bd:
b9:05:a2:0f:6b:e7:7d:2e:7c:5c:41:73:97:9e:44:88:aa:d9:
50:36:aa:24:d6:97:c7:8d:ed:0f:c1:06:a4:9c:26:68:bf:fb:
46:6e:24:cd:d4:e3:1a:cf:57:33:e2:2e:4e:0a:5d:80:73:61:
78:51:2a:6d:ab:00:37:ca:92:13:77:4a:b1:ee:5a:d2:21:bd:
f3:8e:3b:cb:0d:f8:72:29:3f:75:49:0f:b7:0b:33:71:60:1c:
d8:c5:27:a6:40:83:19:19:44:73:27:0c:a2:9e:df:fc:d4:bd:
fa:22:fc:0f:40:4d:ef:d3:05:83:81:fa:70:66:82:ac:15:2b:
91:ef:81:d9:04:d9:78:ef:1d:df:54:d7:19:df:50:5c:88:b7:
70:cb:bb:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 03:15:19 2025 by rpki-client