Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
File: 2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft (raw, json)
Hash identifier: b/imati6nowAH9PyfNSzqDeGxDWUHOsfp0UaC2EMdeY=
Subject key identifier: 69:C7:6B:F0:FC:4E:71:88:D0:6D:81:7F:85:A8:60:C5:03:5E:D8:52
Authority key identifier: D9:91:D6:89:0F:91:FB:2C:D7:79:31:B8:09:BD:B1:EB:05:09:13:49
Certificate issuer: /CN=d991d6890f91fb2cd77931b809bdb1eb05091349
Certificate serial: 01974E57F444716C0F256A499EAD9ECEE478
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
Manifest number: 101A
Signing time: Sun 08 Jun 2025 07:01:16 +0000
Manifest this update: Sun 08 Jun 2025 07:01:16 +0000
Manifest next update: Mon 09 Jun 2025 07:01:16 +0000
Files and hashes: 1: 2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.crl (hash: tG/mjYy++VFoOyX9loXupsLBqXK8VTprMJI9deM+nv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:f4:44:71:6c:0f:25:6a:49:9e:ad:9e:ce:e4:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d991d6890f91fb2cd77931b809bdb1eb05091349
Validity
Not Before: Jun 8 07:01:16 2025 GMT
Not After : Jun 9 07:01:16 2025 GMT
Subject: CN=69c76bf0fc4e7188d06d817f85a860c5035ed852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:07:bd:0c:ca:c0:0c:f7:2e:04:03:9a:7a:ec:
49:6d:97:b5:a4:5b:f5:3f:7d:cb:d6:8d:4f:16:3c:
81:ac:bc:34:01:2c:ce:12:57:1c:78:84:46:d1:63:
a7:8d:a8:9f:b0:bc:2a:e5:7c:df:5b:7a:f3:7b:54:
8f:6f:54:a7:e0:d0:43:b1:4d:78:c1:70:ce:81:b3:
67:83:da:bd:ab:0c:32:c7:24:83:5f:4a:06:6c:29:
ee:80:f6:41:14:8a:af:91:80:81:1c:57:f8:21:99:
dd:21:98:ab:93:fb:7f:bf:d3:b9:77:35:62:59:92:
3d:7e:de:7d:5f:32:06:53:40:aa:e4:fb:31:4b:01:
52:0a:e1:8a:d0:fd:5d:55:47:32:c9:5c:81:ae:ec:
f5:3e:d0:55:d4:f0:29:c3:2c:f5:ea:ec:49:f9:68:
83:49:6e:5a:61:a1:b6:79:00:8d:09:29:95:8d:58:
56:21:f4:2c:fc:97:69:1e:db:c0:79:58:83:54:7d:
e0:cc:d2:ed:83:1a:07:e8:a8:14:cb:96:fe:44:79:
dc:bd:71:f2:55:dd:2e:2c:e2:70:f4:03:61:c0:f8:
90:43:3c:97:cb:95:c8:49:41:22:f4:d2:b7:9c:bc:
e0:ca:26:d0:ed:ab:ed:77:e0:6d:c2:4c:d5:9d:02:
3d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C7:6B:F0:FC:4E:71:88:D0:6D:81:7F:85:A8:60:C5:03:5E:D8:52
X509v3 Authority Key Identifier:
keyid:D9:91:D6:89:0F:91:FB:2C:D7:79:31:B8:09:BD:B1:EB:05:09:13:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:5c:03:a1:b2:71:a5:af:19:40:07:2c:a9:23:38:87:80:04:
39:5a:2c:73:ca:66:4c:b0:8f:7f:c5:b5:9b:7a:3b:39:cc:da:
6b:30:84:9a:cf:30:2d:9c:58:e9:5a:6b:55:ea:b7:e4:21:20:
19:3d:17:25:eb:57:3f:ac:fd:89:2e:fe:39:67:aa:7a:34:4d:
be:95:89:b5:ab:d8:6b:e8:ff:cb:ed:55:d9:7c:8e:cf:01:a3:
1e:fb:be:6c:ba:be:c1:6e:e2:1f:bb:22:a5:70:9a:39:76:7d:
57:70:72:d4:e6:0b:5c:26:cb:1d:64:e6:20:1a:85:83:52:61:
a2:62:97:b3:b1:6b:d7:6a:40:88:5e:41:cb:10:b0:ac:99:e5:
1b:b0:7a:dd:b7:2e:ad:f5:33:f5:ea:19:2c:b7:c8:bd:64:dd:
b5:9a:87:d6:d9:b0:29:b4:9a:2d:4c:39:05:54:35:7f:a0:4b:
c1:5f:7e:1e:cc:95:12:02:88:de:bf:ef:de:9f:14:88:7e:b7:
8e:94:c9:12:9f:2e:d1:b7:b9:c4:ed:f3:e9:eb:99:ce:c7:64:
d1:34:d9:02:b5:52:47:92:d1:22:4b:e6:ca:82:6c:8d:25:ac:
22:09:9d:9b:61:63:c4:26:a4:07:68:f2:63:96:f1:ef:e6:e2:
ba:4b:ab:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 10:06:59 2025 by rpki-client