Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
File: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft (raw, json)
Hash identifier: 5N6carLxcdcF4cZN1klvLpgFSK9H8shS4GAUCrMHxKw=
Subject key identifier: 03:B1:F9:05:26:FB:EE:F1:7E:5E:5C:31:DA:2F:A6:5B:C5:7D:A4:54
Authority key identifier: 66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
Certificate issuer: /CN=66ba8d64e901b39b501ed3693ec27430713886e3
Certificate serial: 01975CEF08EB6A764936E134A9D56560040D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
Manifest number: 0EF4
Signing time: Wed 11 Jun 2025 03:00:58 +0000
Manifest this update: Wed 11 Jun 2025 03:00:58 +0000
Manifest next update: Thu 12 Jun 2025 03:00:58 +0000
Files and hashes: 1: Fg0QsDS_oIn0AHFloFbOWLXLPYw.roa (hash: PCZ0sNE5BS8dEXbU+ksvDG3w1iOi7xIBrn9yDW7TZ/U=)
2: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl (hash: nj0+97dMBwEEpjtgvE0unmBR1jydtbwVdJresptLAB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 03:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5c:ef:08:eb:6a:76:49:36:e1:34:a9:d5:65:60:04:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ba8d64e901b39b501ed3693ec27430713886e3
Validity
Not Before: Jun 11 03:00:58 2025 GMT
Not After : Jun 12 03:00:58 2025 GMT
Subject: CN=03b1f90526fbeef17e5e5c31da2fa65bc57da454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9f:07:b5:42:49:b0:7b:b7:f6:aa:2b:f1:79:
58:f9:bd:b7:d6:ca:26:ef:d2:78:8a:22:62:c3:5e:
7c:96:1c:45:3b:f7:08:12:80:8a:f0:70:c5:a7:23:
c6:81:62:cf:b2:85:48:1e:c1:27:69:71:fe:3c:89:
b6:5d:8b:fb:96:d7:0c:d1:ff:9b:ce:ca:48:5d:c2:
84:2b:76:08:29:95:1c:35:da:cd:9f:7d:9f:6e:4e:
91:d4:b6:92:1e:45:93:13:cf:5f:72:1f:de:3d:fa:
00:5e:cf:90:2f:9e:cf:6e:06:bd:96:8e:98:b3:37:
8d:90:19:85:9f:24:f7:52:cd:86:70:68:a7:9b:93:
90:ad:67:c1:fa:0f:30:c3:8c:99:cf:27:41:1d:67:
e8:b6:b4:78:22:26:b4:61:34:4d:d2:87:10:f4:0c:
4b:30:52:62:ba:5c:7d:63:be:7b:c8:c1:ac:b2:49:
66:0a:a5:32:55:55:21:26:9e:fb:2c:0f:37:63:3a:
66:8c:2d:3f:e8:9c:de:5c:f2:22:80:74:d0:f4:cb:
50:97:85:07:00:ff:b5:de:47:08:4b:20:ec:6c:42:
cb:bf:5a:12:f2:b5:d8:2f:1a:43:27:b7:7a:5d:5b:
8d:2c:99:54:02:18:ee:e1:99:01:25:f7:ba:44:23:
02:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B1:F9:05:26:FB:EE:F1:7E:5E:5C:31:DA:2F:A6:5B:C5:7D:A4:54
X509v3 Authority Key Identifier:
keyid:66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:78:43:a1:5f:c7:ad:b5:9d:35:9f:6c:91:b9:b0:39:b5:a2:
93:cb:b3:d8:0a:25:f0:8a:c0:2c:ea:ed:3e:58:d7:d8:9a:84:
f0:0b:20:09:a4:ae:90:c5:96:83:ce:4c:bb:27:c5:4b:e4:a9:
db:8f:04:0b:1f:46:a7:90:1b:75:5f:d2:64:68:21:c2:98:de:
db:90:1a:79:92:65:c3:c8:a6:94:ff:1a:bf:2f:1d:ea:53:06:
8f:48:50:7d:c5:2b:d3:c8:c5:2b:ed:84:89:91:53:a9:37:ac:
bb:93:1b:64:25:82:f3:f4:03:72:92:8c:8b:ef:ee:4e:6d:6e:
c3:d2:4e:6d:0e:29:56:55:ad:69:73:8b:a5:9d:7d:27:c2:28:
1d:05:08:90:13:4c:39:96:80:cc:dc:05:ba:b4:b7:70:36:28:
c2:ed:53:8b:a8:10:ca:b5:13:98:a3:10:3c:3a:7f:e7:59:fa:
c8:36:f4:8d:ee:a2:42:33:f0:79:25:60:2e:f3:c5:1c:bf:f9:
61:8b:02:3d:be:42:fe:16:d4:df:73:58:03:9a:53:84:a0:82:
fe:78:0b:7d:f4:b3:f4:b4:1e:56:31:0e:d7:a0:f6:b0:0e:5a:
ab:13:91:6f:9c:8e:eb:4c:d9:08:ed:5b:d2:35:84:b6:20:e3:
20:63:39:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 12:57:49 2025 by rpki-client