Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
File: ZAqiwHn96HpUUV0B3iG8LoXeExo.mft (raw, json)
Hash identifier: KHfTuBZsKHosXtctLQm0emS5bJ48+sf7tB972PoVmwg=
Subject key identifier: 54:57:7A:87:A0:22:69:EB:7D:83:18:E9:0A:F6:5E:D6:A4:B5:9F:82
Authority key identifier: 64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
Certificate issuer: /CN=640aa2c079fde87a54515d01de21bc2e85de131a
Certificate serial: 01976471B39D2EEEDF7C401F49E6FDDA2AB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
Manifest number: 1588
Signing time: Thu 12 Jun 2025 14:01:02 +0000
Manifest this update: Thu 12 Jun 2025 14:01:02 +0000
Manifest next update: Fri 13 Jun 2025 14:01:02 +0000
Files and hashes: 1: ZAqiwHn96HpUUV0B3iG8LoXeExo.crl (hash: 2vlBoOYe5gFojptnREgrEGUjNLbJ13WUVvmtYbKrvCk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:71:b3:9d:2e:ee:df:7c:40:1f:49:e6:fd:da:2a:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640aa2c079fde87a54515d01de21bc2e85de131a
Validity
Not Before: Jun 12 14:01:02 2025 GMT
Not After : Jun 13 14:01:02 2025 GMT
Subject: CN=54577a87a02269eb7d8318e90af65ed6a4b59f82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e7:aa:33:7d:eb:69:2b:bb:39:71:aa:82:94:
1b:46:10:3c:28:43:4d:7e:e9:d6:d0:0e:9e:e0:31:
8f:61:cc:c4:18:ac:f9:82:39:a7:9e:35:52:c9:16:
59:90:b8:33:20:22:05:e2:f8:18:79:4e:01:24:2e:
6c:c7:a8:37:4d:14:4f:29:17:ce:9a:2e:9d:db:de:
37:06:19:ce:4d:6f:a4:1f:dc:3c:a6:62:07:43:24:
fb:d2:4a:77:54:bc:d9:7b:40:ea:64:fb:3e:94:d2:
8a:50:8c:6c:0c:4b:42:d7:29:9c:85:91:ec:39:ef:
0a:af:6e:0c:98:9a:5b:80:88:ad:13:f1:e7:66:35:
9c:59:42:b9:48:59:52:8e:52:e6:88:04:fc:5a:99:
2e:ac:bf:0b:00:13:55:ba:de:71:14:e5:0b:6a:5d:
4c:1a:b9:0b:0b:1b:e3:66:61:a0:c3:8a:95:84:6e:
6b:af:63:11:38:08:9d:77:b9:24:07:3f:57:c8:be:
a8:dc:41:90:4a:41:76:e6:05:2d:b8:99:fb:36:58:
bd:60:20:74:d4:2a:1a:a6:5a:c1:8c:37:91:28:f1:
b0:78:83:83:ec:fb:bc:13:20:45:06:72:56:52:41:
09:74:22:ba:0b:23:07:c6:81:97:8d:a2:1b:d8:9d:
62:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:57:7A:87:A0:22:69:EB:7D:83:18:E9:0A:F6:5E:D6:A4:B5:9F:82
X509v3 Authority Key Identifier:
keyid:64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:39:45:d4:10:8e:c8:27:78:1c:ca:46:b8:bd:42:3d:0e:6c:
94:2e:94:29:c1:02:f8:33:1f:d1:b3:31:3d:b1:aa:40:0f:b0:
57:55:db:1f:c7:b0:a9:6e:14:59:d1:0a:ac:8d:66:1b:22:c5:
e7:ad:81:a0:fe:6f:0e:36:7c:d4:9c:b4:3b:ef:5e:78:55:ba:
04:3f:e6:c9:92:64:14:3c:f9:67:d3:be:98:fe:e5:76:98:a1:
ec:55:61:68:ef:50:4c:de:4d:5c:03:28:18:a8:61:78:0a:74:
31:ed:00:9a:2b:81:f7:ad:50:8a:c5:8f:df:66:03:c6:26:85:
25:94:33:d9:63:6e:a1:95:58:68:2c:a7:fd:94:5c:2f:ce:06:
f0:5e:92:c0:f8:02:72:8d:98:f1:5e:35:b8:a6:0c:75:5d:61:
7f:91:a5:b2:bc:3d:fb:c9:43:30:04:c7:7c:60:6f:0a:7a:c6:
e3:62:0c:16:e9:b6:5a:5f:02:03:d5:15:4c:49:58:78:7e:d1:
23:c6:75:eb:15:0e:f1:8a:ff:94:94:f3:f3:98:5d:3c:e9:89:
3e:b1:0d:e9:a1:a1:84:a6:78:38:f7:97:c9:54:6f:62:da:6e:
4e:2b:50:36:a6:54:6b:d1:47:ad:37:5f:c5:bd:c6:ba:af:27:
2c:8d:9d:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 22:02:47 2025 by rpki-client