Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
File: zTwRDf139XdXORwPrt7r42CGVx0.mft (raw, json)
Hash identifier: J4RITrRpDVOhBE8WPsEDqK05gFzYpdSGqBEELx3rnN8=
Subject key identifier: 0D:E0:E6:8A:B1:54:49:1A:C9:48:6D:3F:0D:10:94:25:13:95:F6:9B
Authority key identifier: CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
Certificate issuer: /CN=cd3c110dfd77f57757391c0faedeebe36086571d
Certificate serial: 01974D0E083512D47B141B176746532F1A70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
Manifest number: 0D9A
Signing time: Sun 08 Jun 2025 01:00:54 +0000
Manifest this update: Sun 08 Jun 2025 01:00:54 +0000
Manifest next update: Mon 09 Jun 2025 01:00:54 +0000
Files and hashes: 1: n79crWM-L0W_-YTIs0SA8x1g-4g.roa (hash: WTPugh0CrOL+7geJ0TTyRViJCXrCGCyNH+3nK4QxB48=)
2: zTwRDf139XdXORwPrt7r42CGVx0.crl (hash: /L6OWmgSQXDqPUzbIFpIJ+fBg7OGdG3YJBx9XPie9zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0e:08:35:12:d4:7b:14:1b:17:67:46:53:2f:1a:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3c110dfd77f57757391c0faedeebe36086571d
Validity
Not Before: Jun 8 01:00:54 2025 GMT
Not After : Jun 9 01:00:54 2025 GMT
Subject: CN=0de0e68ab154491ac9486d3f0d1094251395f69b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:51:87:75:58:5c:96:4b:cb:e8:98:3c:71:c0:
fa:8f:cd:8f:c3:b7:53:dc:35:7b:0c:3f:8e:5a:33:
08:e3:1b:32:57:9e:75:79:1b:be:dd:25:78:ad:ed:
98:63:67:8a:2b:4a:8c:e8:f9:1b:0d:30:bc:1a:08:
eb:75:c3:62:ce:2c:dd:ec:a0:95:a5:bc:00:f0:44:
6b:92:ae:22:90:b5:1e:49:42:ce:35:02:af:9e:8c:
6e:5b:e2:2c:cf:8d:68:bd:85:ad:31:c7:17:47:9d:
2b:85:bc:49:c1:07:f4:72:f3:60:5c:44:3c:8c:c5:
86:aa:1e:38:4c:9f:65:f0:11:82:df:ee:7c:a8:1c:
73:d7:c5:82:d9:38:e8:98:df:cf:67:29:92:cb:e1:
70:94:62:a3:5d:5c:2c:83:45:0d:08:25:1d:50:58:
c7:b5:30:3d:8f:69:51:42:f6:e3:b8:14:6c:de:b0:
c5:25:fc:6b:dc:15:cb:52:a9:40:4d:4b:13:db:67:
92:95:58:be:0b:ec:65:23:dc:47:9c:72:3c:86:2c:
5d:c5:ee:8a:3e:f6:32:b1:e5:2c:1c:73:42:b0:c5:
f5:78:d8:01:58:a6:d7:2d:56:68:cd:08:67:3e:90:
df:be:f1:78:0d:01:1a:07:f3:53:9c:c7:86:38:eb:
e2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:E0:E6:8A:B1:54:49:1A:C9:48:6D:3F:0D:10:94:25:13:95:F6:9B
X509v3 Authority Key Identifier:
keyid:CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:22:45:40:a3:60:f4:0b:a5:37:e3:3f:5a:6d:e0:d7:a8:25:
a0:fe:4b:de:cb:8f:77:2b:01:65:16:84:46:08:c1:36:2a:09:
a9:35:3c:d7:ec:30:31:c7:82:2d:b7:3a:f0:42:6c:c6:98:d8:
3a:62:fd:f3:b3:13:ba:9e:cd:fc:93:cb:2f:9e:28:f5:77:24:
ef:e2:fa:cf:e0:37:d7:26:07:58:74:30:1d:f2:50:aa:be:86:
fd:55:cd:cd:0f:ca:00:26:b8:ad:df:ab:0d:15:b0:49:97:ff:
87:ff:67:93:f8:cf:f4:39:5c:ba:2f:19:d9:ce:0c:b0:96:f8:
ee:18:dc:51:da:ea:04:4d:0d:e0:eb:90:47:f7:97:31:8c:6f:
2a:1f:b6:a3:b1:fa:ff:ef:ef:ff:e5:ef:6d:26:aa:dd:0a:bc:
25:13:92:89:f4:2b:00:d7:61:c4:44:93:d0:e9:55:aa:be:47:
4e:61:f8:ed:7e:21:be:a7:fd:bb:8a:03:5a:2f:1b:ea:9a:67:
8c:2b:35:32:f0:fe:03:fa:ca:60:fb:48:2b:d6:93:bf:fe:7d:
b3:ad:cb:dc:8d:e7:8d:da:a5:d5:be:64:60:7f:ed:9c:52:d0:
8c:bc:4d:fc:e8:24:4d:90:b0:12:ac:6b:0f:01:b4:9d:33:42:
53:be:2c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:42:19 2025 by rpki-client