Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
File: zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft (raw, json)
Hash identifier: 7PL0ErTsWXG0GPSYA7NxekLijKNQI6OzHK2zMWC+flA=
Subject key identifier: FB:1C:16:5F:F6:9B:69:73:14:21:03:73:F7:4E:DA:2A:61:32:5E:B0
Authority key identifier: CC:AC:37:2F:7A:9B:81:71:DC:BF:C1:16:0C:AA:22:C8:FD:C6:8B:7B
Certificate issuer: /CN=ccac372f7a9b8171dcbfc1160caa22c8fdc68b7b
Certificate serial: 0197470BE8EB8F82FEDA46078DA1D97B2F47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
Manifest number: 0D0D
Signing time: Fri 06 Jun 2025 21:00:52 +0000
Manifest this update: Fri 06 Jun 2025 21:00:52 +0000
Manifest next update: Sat 07 Jun 2025 21:00:52 +0000
Files and hashes: 1: zKw3L3qbgXHcv8EWDKoiyP3Gi3s.crl (hash: MoftV7+2FCuoYafnCM7GW1rxoYPcXi/AmYw3CpTSJNA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
rsync://rpki.ripe.net/repository/DEFAULT/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:e8:eb:8f:82:fe:da:46:07:8d:a1:d9:7b:2f:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccac372f7a9b8171dcbfc1160caa22c8fdc68b7b
Validity
Not Before: Jun 6 21:00:52 2025 GMT
Not After : Jun 7 21:00:52 2025 GMT
Subject: CN=fb1c165ff69b697314210373f74eda2a61325eb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:bc:0e:e8:d1:d0:8c:b2:52:5c:cc:44:4a:87:
e4:4b:7f:45:49:bc:6a:3b:aa:ba:85:7a:5e:b0:62:
ba:a8:b1:0e:4a:df:c0:47:79:3e:9d:41:cc:3f:54:
88:c2:17:76:30:b7:38:49:85:ba:73:78:df:0c:d0:
1c:ac:d1:00:f2:9a:16:47:e7:96:6a:4e:9b:8a:28:
4f:f4:a1:26:8f:a6:c5:b6:db:aa:c1:e3:33:d6:02:
60:67:85:d5:34:83:8e:84:fd:08:ad:61:83:c3:1e:
24:35:ae:07:78:85:03:7f:0f:14:e2:15:6a:51:be:
02:c4:d3:30:aa:38:45:a5:a4:16:32:52:82:c5:5f:
44:6c:8e:9a:2a:c2:73:f1:49:be:9f:23:30:d9:e2:
2f:59:4a:b8:e9:9e:ba:89:4d:c2:03:6f:ea:4b:26:
d4:c3:00:e1:98:b7:ed:fd:07:43:6c:04:c0:d4:87:
fc:9c:b6:36:fb:5b:c9:ac:04:17:0b:20:61:0e:bb:
ad:57:73:3f:a7:4f:36:3c:b9:08:14:96:46:3c:3a:
f4:ca:84:eb:5d:d5:d5:ff:ee:83:f6:09:f8:0c:a5:
44:ea:f9:2b:b9:e2:28:47:df:67:19:51:da:f2:e6:
a8:9a:70:8c:70:78:91:5a:84:6b:d7:9f:24:96:0f:
fe:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:1C:16:5F:F6:9B:69:73:14:21:03:73:F7:4E:DA:2A:61:32:5E:B0
X509v3 Authority Key Identifier:
keyid:CC:AC:37:2F:7A:9B:81:71:DC:BF:C1:16:0C:AA:22:C8:FD:C6:8B:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:12:44:91:f6:5e:85:ed:59:7d:07:6d:33:86:2a:22:24:a2:
1b:9d:8a:4a:7a:8f:34:40:3e:ae:4c:5f:ce:10:3b:c9:5c:6c:
b2:f5:82:f7:dd:14:d0:e1:8a:9c:08:18:90:b4:d7:be:62:28:
f5:0c:73:da:ad:28:c7:f2:35:4b:9d:53:b6:7d:f3:e0:7c:93:
78:cb:50:0e:1c:00:84:40:a5:68:f6:89:3b:b0:d7:20:44:9a:
32:af:1c:01:17:24:6b:ea:64:56:c5:20:a4:be:22:26:ec:56:
ab:7e:b9:5c:95:53:bd:31:18:7d:25:11:6f:31:da:b8:84:d8:
42:e7:fd:d5:6b:7c:a7:b5:c8:47:ee:bb:1b:2f:73:f5:07:cb:
29:3b:ac:60:fe:7b:7b:38:e6:6c:02:4b:a5:44:ef:44:52:a5:
d1:93:c4:4e:42:68:40:59:52:01:38:4a:6b:45:ec:76:96:4e:
f4:dc:33:df:97:8c:c5:55:84:6e:58:02:a9:96:08:0e:b8:f8:
bc:f1:eb:61:ac:b9:22:d1:18:dc:3f:68:06:03:8a:b2:57:86:
0d:b5:62:9a:38:bc:64:56:70:47:ff:06:84:9f:34:d6:a6:8d:
56:1e:e1:1d:ea:7d:c0:5e:af:e8:22:8e:0f:5c:8e:70:df:ad:
ab:4b:1c:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:16:24 2025 by rpki-client