
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
File: zkn8E0twZULK8aHvvgNPcBG0lDY.mft (raw, json)
Hash identifier: rWPgGVLvJLffEFIQnn1RrJcCmyU8EFDki3ydeL8xpwc=
Subject key identifier: C6:CE:27:9D:0C:E6:5F:8A:7C:BA:15:E9:80:C8:69:04:F8:B6:22:F9
Authority key identifier: CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
Certificate issuer: /CN=ce49fc134b706542caf1a1efbe034f7011b49436
Certificate serial: 01975CEEC1A7DE1FCE31B1FEA963D79E30B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
Manifest number: 04AE
Signing time: Wed 11 Jun 2025 03:00:40 +0000
Manifest this update: Wed 11 Jun 2025 03:00:40 +0000
Manifest next update: Thu 12 Jun 2025 03:00:40 +0000
Files and hashes: 1: SGAPHhpCJa9JFOb_Zf20G8kvkhI.roa (hash: 27D8nmxY/4y8rMryghx5LNMAGS+7aTblTkGND6PBRy0=)
2: zkn8E0twZULK8aHvvgNPcBG0lDY.crl (hash: 9uDdLWlxrOnEw6HbyX4/LKHpgPqCeStQyjSh5zt8+3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5c:ee:c1:a7:de:1f:ce:31:b1:fe:a9:63:d7:9e:30:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce49fc134b706542caf1a1efbe034f7011b49436
Validity
Not Before: Jun 11 03:00:40 2025 GMT
Not After : Jun 12 03:00:40 2025 GMT
Subject: CN=c6ce279d0ce65f8a7cba15e980c86904f8b622f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:74:3d:57:b3:dd:75:1d:ff:15:18:94:e6:b1:
43:4d:8e:57:b0:69:d4:da:53:5e:0b:f3:44:ad:75:
56:85:ff:92:35:4a:b0:01:61:23:ac:12:3a:45:89:
9a:ed:d2:3f:d6:e8:18:86:b0:ec:f7:0a:6b:4a:12:
fd:68:82:88:c1:c0:ef:b7:ed:89:cb:8e:13:73:4f:
ed:f6:e0:8e:e4:a8:94:eb:6c:93:cc:80:d8:5a:3d:
b3:ec:96:a4:b3:48:79:84:16:25:f7:3b:86:15:23:
ed:98:42:e3:a3:fb:07:a6:56:0a:dd:e4:3b:92:f4:
96:30:78:f4:20:5f:e0:5e:c8:bc:4d:96:24:5a:b0:
09:dc:8b:d1:c2:3d:9a:9f:58:d0:d0:97:fa:52:11:
0a:e3:f8:d5:66:33:dd:43:e4:00:ac:07:33:46:61:
de:29:c2:18:9f:aa:80:92:1c:1f:10:4d:6e:33:79:
fe:21:3b:67:bb:f4:23:6f:8c:bc:41:18:44:cf:e1:
5e:01:17:66:60:f4:31:84:89:14:3e:ca:b4:95:c9:
3e:e9:a0:ba:ce:2f:b0:a3:f3:72:3d:b7:13:16:89:
6b:04:34:fe:d4:44:26:54:ae:20:02:36:c5:ca:dd:
c2:91:fe:b5:95:04:00:a7:f1:29:af:8c:a8:1d:03:
1b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:CE:27:9D:0C:E6:5F:8A:7C:BA:15:E9:80:C8:69:04:F8:B6:22:F9
X509v3 Authority Key Identifier:
keyid:CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:19:e6:c0:f1:4c:e9:c5:e2:77:a7:d2:16:6a:8f:25:26:99:
7f:20:d0:df:fd:19:4d:8a:bb:17:61:50:fd:82:54:34:b0:79:
c5:b2:bb:a4:9a:0a:08:6a:4f:f3:8e:c4:db:8b:f1:e0:81:4f:
95:80:30:47:0c:23:df:57:13:73:bf:62:d9:72:cd:1a:be:e4:
97:f6:2f:8b:6c:92:0c:ce:3e:45:aa:75:ca:98:de:66:78:b8:
3e:d8:46:21:a1:6c:c2:69:d1:9d:7e:e1:ee:03:df:c5:6a:e1:
7c:c7:11:54:e7:2a:c9:84:ce:7f:ab:4d:f6:29:9d:96:d4:98:
1a:e7:41:d6:88:e1:24:ac:6d:05:f5:78:5e:c3:47:1c:24:01:
56:d0:fe:cb:6e:90:7f:c7:e7:dc:c4:cf:3d:72:24:ae:fb:65:
50:14:1d:a5:92:b8:30:47:50:19:0d:28:b2:7a:a2:cd:c1:3b:
4e:96:9e:71:45:d2:a2:32:19:08:2e:1e:fd:5d:a7:d0:02:8c:
36:d4:ad:f2:b1:f2:15:be:17:ad:eb:46:1a:4f:80:65:3f:8e:
9b:f5:c0:de:ce:a5:96:b5:03:88:ce:f7:ab:f1:40:10:a0:40:
39:66:10:10:1f:32:62:ef:de:a1:31:52:90:64:ca:b2:63:66:
64:c9:36:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 07:29:42 2025 by rpki-client