Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
File: zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft (raw, json)
Hash identifier: CbsAmrle6QuBO3QXKnG7eAI7w7pempTZdnGgI/26ZBo=
Subject key identifier: D7:D1:A9:86:61:EF:1A:E7:BB:83:EE:94:22:B1:FE:2F:F5:01:B4:57
Authority key identifier: CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
Certificate issuer: /CN=cc8df88054060df685bba9739123e8342d479e84
Certificate serial: 019746301F22CD08E83368FA7E62A4D5EAAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
Manifest number: 1514
Signing time: Fri 06 Jun 2025 17:00:48 +0000
Manifest this update: Fri 06 Jun 2025 17:00:48 +0000
Manifest next update: Sat 07 Jun 2025 17:00:48 +0000
Files and hashes: 1: Kyq8dvDQCWTM4SDI01T-WEma_xs.roa (hash: csmuD1qBTRKUBvLNGvxDwNNOARNFB8rqYka6vl5ZQvQ=)
2: zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl (hash: 0lns8mTLMnuA51sugfv7bn5m52TjRvYSpwo0gTLIEo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:1f:22:cd:08:e8:33:68:fa:7e:62:a4:d5:ea:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc8df88054060df685bba9739123e8342d479e84
Validity
Not Before: Jun 6 17:00:48 2025 GMT
Not After : Jun 7 17:00:48 2025 GMT
Subject: CN=d7d1a98661ef1ae7bb83ee9422b1fe2ff501b457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:be:a6:02:5a:d8:d2:f4:34:2b:a0:96:2a:1f:
d9:3b:2b:82:68:09:ad:ca:16:4d:b9:7e:ff:26:16:
44:60:88:13:4f:c9:cf:2e:15:9d:7a:89:dc:f9:d4:
3e:71:b8:28:05:36:ee:28:a9:62:b7:1e:86:3f:71:
01:71:fb:5e:d8:7d:4a:55:f8:a1:02:ff:72:d4:75:
7d:6f:40:26:76:bc:18:22:f2:6f:cc:f3:f1:c6:24:
73:6e:cc:93:63:b2:b2:f7:3e:c0:57:06:ce:c7:92:
59:95:b3:f4:ff:9a:dc:0b:fa:d6:54:aa:6c:3c:04:
97:fd:4e:a9:c4:47:6e:ce:43:0f:fc:8f:04:17:d4:
7e:ed:52:6f:59:0c:c8:18:6b:fb:b7:f2:fb:87:7d:
f4:71:5a:7b:ef:0b:c8:2a:62:d1:ef:e6:ae:7d:24:
19:4b:30:e4:48:ef:25:ae:1b:c6:ab:33:45:c4:04:
3e:35:72:d0:57:38:75:95:68:26:cc:06:3f:13:90:
d1:46:a3:d1:c6:f3:48:21:38:31:3c:09:06:aa:08:
15:87:5a:67:f3:5e:3f:61:b9:51:5e:fc:a7:8a:b6:
46:a2:a4:eb:61:80:ea:ae:2b:5f:4f:e5:4e:56:b6:
43:0e:61:38:30:08:44:71:35:10:eb:26:46:b5:4f:
5b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D1:A9:86:61:EF:1A:E7:BB:83:EE:94:22:B1:FE:2F:F5:01:B4:57
X509v3 Authority Key Identifier:
keyid:CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:bd:57:df:22:a0:44:09:6d:74:12:21:b8:24:b2:89:7f:98:
9d:4d:ac:93:79:2c:4f:85:1f:c1:a5:c2:60:6b:6f:01:b5:af:
aa:94:3a:5a:81:85:a7:65:3d:50:88:d2:8d:94:cb:ed:b7:53:
8f:f0:2e:d5:b4:bf:3d:96:17:40:85:ee:70:70:88:83:33:7c:
96:39:0b:15:88:93:7b:db:8b:cb:85:e7:e4:24:ce:9f:15:aa:
2b:d7:b8:fe:49:2b:80:99:bc:ea:b3:43:90:1f:06:d7:a8:b6:
21:a0:44:94:41:3d:b8:79:e7:9d:fa:35:20:f7:c9:6d:4d:eb:
aa:68:c1:8a:c0:36:86:b4:56:0c:7b:d8:d7:17:6a:a2:f7:bc:
2f:cf:15:aa:34:79:b9:61:52:ba:a8:99:47:be:c0:9e:9b:af:
91:b6:d6:7f:81:aa:25:08:c1:98:00:21:76:e1:93:99:03:3f:
2e:54:ba:82:1e:fd:a6:78:61:fd:3f:e7:10:c2:85:a1:5d:0f:
64:83:c9:87:82:5f:1b:d6:84:a9:db:d8:e3:ac:96:0f:9b:1f:
5f:cd:a8:9e:8d:21:1f:9f:64:fc:0f:ad:77:94:71:17:4a:e7:
84:fe:16:1d:8d:58:33:16:7a:7a:58:97:fe:be:74:0a:15:17:
eb:db:91:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:10:22 2025 by rpki-client