Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
File: z6ExZhMNKdWtimB9gUmNpmAm0DY.mft (raw, json)
Hash identifier: oF2eSWL+LakSYogGnt2THkHNxhy/zG2OT6KS4NwniOE=
Subject key identifier: E8:45:B2:15:B5:51:B0:1C:08:EC:2E:6C:E4:4A:0F:02:5F:62:6C:E3
Authority key identifier: CF:A1:31:66:13:0D:29:D5:AD:8A:60:7D:81:49:8D:A6:60:26:D0:36
Certificate issuer: /CN=cfa13166130d29d5ad8a607d81498da66026d036
Certificate serial: 019746670649F8EBD8B1E2D5691DD5D869C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z6ExZhMNKdWtimB9gUmNpmAm0DY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
Manifest number: 0289
Signing time: Fri 06 Jun 2025 18:00:46 +0000
Manifest this update: Fri 06 Jun 2025 18:00:46 +0000
Manifest next update: Sat 07 Jun 2025 18:00:46 +0000
Files and hashes: 1: 8NRIip7PRvYkRKm_8iGpYTYG-fQ.roa (hash: baP/2HoWmnxywqu4ozYPStRBgvEVcCSlNjY9VrvxlOY=)
2: z6ExZhMNKdWtimB9gUmNpmAm0DY.crl (hash: DhGAjCXlKvGbiSm3W6fXMgJqrU5JKBIrWZVH/C2zKT4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
rsync://rpki.ripe.net/repository/DEFAULT/z6ExZhMNKdWtimB9gUmNpmAm0DY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 18:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:67:06:49:f8:eb:d8:b1:e2:d5:69:1d:d5:d8:69:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfa13166130d29d5ad8a607d81498da66026d036
Validity
Not Before: Jun 6 18:00:46 2025 GMT
Not After : Jun 7 18:00:46 2025 GMT
Subject: CN=e845b215b551b01c08ec2e6ce44a0f025f626ce3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a2:d4:6f:0d:d9:5d:a7:58:85:a7:32:f4:3f:
bd:80:4d:96:ae:47:ff:b6:9e:b9:63:36:c1:f9:1c:
07:be:2d:d1:ee:be:2e:fc:21:47:9a:8a:ee:85:4d:
23:6e:81:e2:56:37:bf:f8:38:91:b9:ad:6e:9a:f4:
65:45:00:2b:bf:af:16:c2:d2:8a:4f:69:7d:90:9f:
58:a2:13:81:d9:2e:20:38:47:65:95:85:25:54:ef:
c4:ed:7b:d6:c2:2d:2c:17:ba:64:39:3e:a8:9a:eb:
a8:5d:a8:9a:75:19:e6:37:b9:3b:ce:d8:89:de:5a:
9c:3c:e7:17:af:8b:92:a7:70:04:ad:91:37:b7:d6:
ca:8a:dc:4e:ce:52:ea:db:6f:eb:1a:e0:70:0c:27:
29:98:f3:88:8b:eb:c3:b6:61:65:ff:fa:00:8a:8f:
96:7a:80:f2:d4:8d:f5:d2:1f:b0:cb:6a:1b:31:dd:
b9:1e:09:2a:be:cf:06:ef:a1:a0:1b:5d:b8:06:d3:
13:33:3a:89:ba:2e:db:9f:85:32:53:43:63:08:a1:
7b:bd:43:23:82:92:6c:de:41:9c:69:26:9a:bd:02:
9d:38:17:a3:df:44:90:53:d8:ac:09:e8:32:9e:69:
87:e1:07:31:42:d3:dc:e9:08:0b:d1:06:71:43:a0:
ea:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:45:B2:15:B5:51:B0:1C:08:EC:2E:6C:E4:4A:0F:02:5F:62:6C:E3
X509v3 Authority Key Identifier:
keyid:CF:A1:31:66:13:0D:29:D5:AD:8A:60:7D:81:49:8D:A6:60:26:D0:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z6ExZhMNKdWtimB9gUmNpmAm0DY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:e9:35:bd:9e:5a:a8:14:84:5c:43:a1:54:bd:e2:98:0b:41:
c0:dc:11:71:8b:5c:47:10:97:de:aa:a1:dc:d9:23:cf:c5:69:
40:fb:e8:48:a2:4b:58:69:19:01:82:39:c5:c0:e0:31:f6:ee:
b9:22:86:a2:b4:ae:5e:f4:a7:d5:47:8e:67:3b:97:75:79:1a:
9b:7a:eb:67:32:39:3b:43:36:b4:63:16:ee:81:72:3d:08:e1:
c1:02:a9:ae:38:eb:b9:4c:d9:23:07:3b:30:41:68:56:e3:90:
79:bb:47:3b:06:d4:a3:02:61:d1:85:1a:83:be:97:4f:5c:1c:
d5:54:f1:e5:42:57:7f:57:fd:d7:be:9c:87:13:0b:e1:d7:0b:
9e:21:40:1e:0e:50:3c:ff:af:c2:17:2e:23:4f:b9:bc:f2:9d:
25:41:15:e6:f7:fe:90:df:7a:3b:6d:f9:b1:3e:5b:9c:1c:b8:
14:90:96:f9:88:8c:cf:ff:c6:01:c0:1f:1c:73:d2:49:69:ab:
d0:ac:40:39:60:69:ad:26:67:9e:d2:28:99:dc:7d:ff:33:de:
7b:9d:a6:b7:18:83:ff:eb:78:16:ed:74:a0:6e:a4:c6:b3:0e:
59:62:4a:57:43:49:7a:aa:3c:87:7b:e2:de:b4:b5:97:df:90:
dc:25:ca:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:36:28 2025 by rpki-client