Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
File: ZD4bqRxWmoshptLWf1271sBOQ-o.mft (raw, json)
Hash identifier: GoX8mbptXCGXQ+tPo8UNGA9j5fYGHoneA2yrjZRgUUk=
Subject key identifier: 94:4F:EA:27:66:48:A8:A8:8A:62:AC:03:52:EC:9E:85:33:7C:43:A0
Authority key identifier: 64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
Certificate issuer: /CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Certificate serial: 019747B0A5C57348F0FA94A2F24E2F932CB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 00:00:48 +0000
Manifest this update: Sat 07 Jun 2025 00:00:48 +0000
Manifest next update: Sun 08 Jun 2025 00:00:48 +0000
Files and hashes: 1: 1MBxY-L-G-PezNdSAum2Qznjvvk.roa (hash: WzqdlX3BQAdtrBN0mtz0qnp4BVXNCLlknuqqWLF2nEY=)
2: 64_MTb5KgxHA8ajybrrfkFaqSHo.roa (hash: 3HoEZ5o8a764cMBp72+Je8xSTOL3XWu1W9vfmUxztJY=)
3: NcFH54U_2J6k3O8FG01A4l3YkX4.roa (hash: /kjUMIh5yITP6UOhs7cpgkxUJuo6AlmV12M3gHqX+6U=)
4: QnTqLhMHC9T4AoMjaLap4QpmLDU.roa (hash: 7wNURJNL1VG5jzuYA7SYiM1RdZjO0wnh2b7/W3YMGs8=)
5: ZD4bqRxWmoshptLWf1271sBOQ-o.crl (hash: JENqiZ+oPtl5AIouPSLiE1K2+CBCRVzA6xzwdZvN0lQ=)
6: ZKwCytxQwb2lA8HdN2ItTa-nGFE.roa (hash: YVehp3VlkVUX9qY7Jk5F+8RNoRR+lbS+MAT+mCdr+Tw=)
7: ymZdEzMVegQJBBFPgdqPQzW1-gk.roa (hash: RX7+2wwGNp6bGJxI7GKZlbgjxbbHN4LNuKVuwi5foZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:a5:c5:73:48:f0:fa:94:a2:f2:4e:2f:93:2c:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Validity
Not Before: Jun 7 00:00:48 2025 GMT
Not After : Jun 8 00:00:48 2025 GMT
Subject: CN=944fea276648a8a88a62ac0352ec9e85337c43a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c9:ac:d7:29:70:23:ae:38:dd:c3:3d:9c:5f:
fd:9e:34:59:d8:e3:6d:ad:c1:34:fb:7e:4d:42:45:
36:a2:14:c3:9b:b8:47:d2:98:c7:f1:66:8f:5f:e4:
9d:31:f7:73:a6:fd:5d:33:73:66:64:65:12:bc:43:
d2:03:5e:21:17:6b:f7:d1:1e:7c:81:d0:93:e9:1d:
20:9f:b8:e9:61:66:c2:e7:06:80:eb:c1:09:1a:b3:
5b:80:cf:44:5a:c8:23:ad:c6:99:e2:96:09:7b:c2:
f2:13:d0:3a:ea:b9:3f:55:c4:d9:7b:19:72:2f:f4:
bc:28:96:81:25:45:54:fa:37:84:3b:ab:53:cf:fe:
39:62:cf:a2:62:9e:44:53:b3:a6:8b:41:50:e3:69:
07:b6:30:13:5f:de:ee:cb:a4:33:89:f4:e8:a2:7e:
4d:ea:09:8d:68:c3:53:a7:9b:ec:ac:c7:97:87:cb:
da:5c:8a:0b:3a:5c:41:4b:fa:10:d5:cd:6f:2d:33:
43:2d:6c:a0:8e:5e:7e:e8:8a:46:05:37:d0:8b:a6:
ce:85:7c:7c:3e:25:f6:99:f9:a9:15:90:25:47:41:
f9:89:b2:22:6e:47:39:89:3a:24:ef:db:61:b2:e7:
10:4e:0e:e6:d1:82:6b:85:a7:b9:f6:cc:7c:7d:85:
0a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:4F:EA:27:66:48:A8:A8:8A:62:AC:03:52:EC:9E:85:33:7C:43:A0
X509v3 Authority Key Identifier:
keyid:64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:9f:40:ad:e2:ea:53:01:a5:b5:ad:b0:cd:c8:a5:d3:0a:37:
71:8d:0a:40:e9:5d:e0:a7:b3:ff:dc:0a:07:48:93:b1:fa:f3:
8c:3b:a9:f1:0d:a0:85:4e:88:0f:63:c9:9b:1c:2b:0c:72:2e:
22:06:6e:7c:80:d3:a2:67:0e:3c:f2:a0:c0:87:ae:03:78:e7:
98:3a:6f:14:8b:91:12:6d:57:60:45:9c:0d:ee:2f:e9:a0:f1:
2c:fc:be:43:9d:5b:d6:67:22:e9:17:9a:ba:7c:b5:e9:40:ad:
f7:84:ee:dd:fb:fd:89:31:0d:89:21:65:a6:34:47:d6:fe:dc:
49:44:95:45:09:22:f9:e7:32:93:a7:49:0b:d5:fe:95:86:ab:
b7:14:12:54:01:6a:0c:6d:b3:32:a6:85:f4:0c:6b:b2:23:bb:
f6:45:37:da:95:57:6e:c5:eb:ff:47:b2:6f:98:8d:24:c8:fc:
ee:27:5d:bf:aa:76:dc:93:68:aa:99:17:20:9e:d3:ad:b6:f6:
f1:3d:08:35:bb:4c:b8:d8:da:35:ef:6a:3f:38:4b:14:ad:fe:
cf:b8:e3:42:a4:99:f8:50:c2:31:9f:c0:61:f4:02:fb:12:2c:
3f:36:e0:63:62:84:a6:e2:80:5c:dc:08:cf:c8:bc:52:8d:14:
ae:80:f7:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:20:49 2025 by rpki-client