Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/caa385-b2a5-4323-adc5-46603de805ec/1/ZSXYt_GeL7dct_lXidkRj2sblwU.mft
File: ZSXYt_GeL7dct_lXidkRj2sblwU.mft (raw, json)
Hash identifier: GMLGq7EFCP7fOe7BZlj6Z+RlDHaxWeWQfh65HARSWeM=
Subject key identifier: AA:42:43:93:8D:25:1B:A7:61:B7:74:14:6A:15:11:67:87:12:BE:81
Authority key identifier: 65:25:D8:B7:F1:9E:2F:B7:5C:B7:F9:57:89:D9:11:8F:6B:1B:97:05
Certificate issuer: /CN=6525d8b7f19e2fb75cb7f95789d9118f6b1b9705
Certificate serial: 0197488CE2AE7DC6F2936040796568C986EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZSXYt_GeL7dct_lXidkRj2sblwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/caa385-b2a5-4323-adc5-46603de805ec/1/ZSXYt_GeL7dct_lXidkRj2sblwU.mft
Manifest number: 0ACF
Signing time: Sat 07 Jun 2025 04:01:22 +0000
Manifest this update: Sat 07 Jun 2025 04:01:22 +0000
Manifest next update: Sun 08 Jun 2025 04:01:22 +0000
Files and hashes: 1: LsPOYMRIkwCviikK1SggYlQsE6c.roa (hash: C4ntpCFi4UgQNTh+MTX375uysoH85gdlFAEV6hZ2Gtw=)
2: ZSXYt_GeL7dct_lXidkRj2sblwU.crl (hash: J8wiVx2OD70A6NGYvu4dd+drgUTiqHdfIbIut72BgTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/caa385-b2a5-4323-adc5-46603de805ec/1/ZSXYt_GeL7dct_lXidkRj2sblwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/caa385-b2a5-4323-adc5-46603de805ec/1/ZSXYt_GeL7dct_lXidkRj2sblwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZSXYt_GeL7dct_lXidkRj2sblwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:e2:ae:7d:c6:f2:93:60:40:79:65:68:c9:86:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6525d8b7f19e2fb75cb7f95789d9118f6b1b9705
Validity
Not Before: Jun 7 04:01:22 2025 GMT
Not After : Jun 8 04:01:22 2025 GMT
Subject: CN=aa4243938d251ba761b774146a1511678712be81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:42:d7:f7:33:be:7a:9a:20:22:5a:58:6b:ce:
02:5d:55:d5:f7:88:ec:8b:20:87:a5:23:cd:95:e2:
1f:76:85:98:ff:3c:29:03:f0:02:f0:88:45:e4:a2:
70:94:6e:fd:ff:54:3f:4f:db:b3:85:a5:8a:5e:4e:
d3:e0:7f:55:22:ee:04:15:8c:ff:05:5d:c1:6f:30:
7e:81:01:6a:68:2c:a5:41:c8:c3:db:3b:6c:f3:e0:
c4:00:67:2f:6e:3f:30:66:c1:b3:b8:9a:b3:c8:b1:
c6:a9:fd:9d:5b:c3:a8:9b:86:43:ab:f4:de:b8:3e:
fd:01:df:0b:05:93:18:4d:7e:20:7c:64:fe:b5:99:
6b:3a:58:ba:2f:31:7c:34:a9:19:45:8e:2f:38:80:
d9:19:82:27:f5:ef:ce:9c:63:14:f5:ee:d9:63:e5:
1c:d7:8a:68:52:5e:40:67:f6:3e:af:30:49:f2:9c:
39:a3:c9:57:32:08:6b:f5:a9:00:ee:b8:57:ac:c5:
14:2a:16:84:db:a0:a7:9b:df:48:c9:a6:69:3a:96:
9e:90:e5:7e:fb:2c:77:db:fd:a4:9a:f5:bd:90:49:
33:94:78:82:4e:24:a6:50:89:5c:0d:f4:b6:27:cf:
dc:d3:cf:9a:18:eb:1b:f2:47:79:8e:a0:f5:a6:37:
e9:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:42:43:93:8D:25:1B:A7:61:B7:74:14:6A:15:11:67:87:12:BE:81
X509v3 Authority Key Identifier:
keyid:65:25:D8:B7:F1:9E:2F:B7:5C:B7:F9:57:89:D9:11:8F:6B:1B:97:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZSXYt_GeL7dct_lXidkRj2sblwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/caa385-b2a5-4323-adc5-46603de805ec/1/ZSXYt_GeL7dct_lXidkRj2sblwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/caa385-b2a5-4323-adc5-46603de805ec/1/ZSXYt_GeL7dct_lXidkRj2sblwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:12:a7:5b:d5:b4:f9:f9:cf:da:d7:61:c2:b4:37:7a:e7:4c:
c8:5b:99:4d:0a:a9:06:d3:46:97:1a:a0:ff:19:35:36:24:d6:
15:09:49:a6:f4:f0:85:bb:3a:8d:8d:cb:2e:5c:e2:82:82:8f:
46:b7:a3:ee:91:81:10:6f:74:aa:1b:ba:b8:57:55:c9:1f:0c:
93:fe:87:9b:f2:d1:89:f3:6b:ca:b7:1f:ef:00:82:4d:5e:cb:
b8:e9:be:1b:05:05:f1:b3:da:50:57:87:13:17:01:57:73:60:
ea:4b:e3:8d:5b:54:c1:c9:f1:7a:cf:09:4a:dd:3e:9b:ff:41:
6c:be:2c:2b:65:06:88:24:ca:ff:77:f3:1d:2f:72:9b:fc:0e:
4f:a6:b1:79:39:a6:c7:10:0a:2e:69:f3:d9:db:eb:a8:41:82:
dc:b5:0b:31:8a:97:b9:c4:3c:25:bd:cd:28:9e:34:5c:bf:ac:
7d:5f:af:36:df:ca:01:b9:13:70:d4:98:5d:49:b9:32:ff:03:
2c:7a:34:03:08:36:7b:bf:93:39:46:b9:c5:8e:62:3d:95:66:
e4:e8:29:00:4c:3b:28:f8:9c:31:af:91:b4:28:67:73:69:3c:
df:aa:87:57:9f:cf:38:69:95:ac:51:6a:60:69:3e:3c:0a:35:
26:f8:c2:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:24:54 2025 by rpki-client