Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
File: zZFzvIKKtx2i68r6f4mOxqoe6nY.mft (raw, json)
Hash identifier: vlkmjwH9K6xKhNKealYT6ykoYzByRYTEqfazlU7Sp1o=
Subject key identifier: 78:29:5C:9D:BB:7C:34:A8:77:8C:E5:EE:E5:28:1C:B5:0C:87:06:03
Authority key identifier: CD:91:73:BC:82:8A:B7:1D:A2:EB:CA:FA:7F:89:8E:C6:AA:1E:EA:76
Certificate issuer: /CN=cd9173bc828ab71da2ebcafa7f898ec6aa1eea76
Certificate serial: 01974E8E393EFAA58C770ECEE78C77C02742
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
Manifest number: 040D
Signing time: Sun 08 Jun 2025 08:00:33 +0000
Manifest this update: Sun 08 Jun 2025 08:00:33 +0000
Manifest next update: Mon 09 Jun 2025 08:00:33 +0000
Files and hashes: 1: RtwNd0kIIB4fJfHreOuMYKMR7lc.roa (hash: qbEtbkjwEQIcvAZsD7fY24iBMXF9LqUeMZOAB812XzU=)
2: zZFzvIKKtx2i68r6f4mOxqoe6nY.crl (hash: +FVofnNpgFP57Bm/V7Pqt/zuamcvJxt4S0aWgIZBUHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:8e:39:3e:fa:a5:8c:77:0e:ce:e7:8c:77:c0:27:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd9173bc828ab71da2ebcafa7f898ec6aa1eea76
Validity
Not Before: Jun 8 08:00:33 2025 GMT
Not After : Jun 9 08:00:33 2025 GMT
Subject: CN=78295c9dbb7c34a8778ce5eee5281cb50c870603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b1:b6:85:6e:c9:42:f9:4f:f3:64:35:81:33:
a1:6a:c2:db:64:36:3e:53:5e:01:99:9b:d3:b3:72:
26:0e:3f:c0:2b:6f:c9:19:79:65:10:aa:c4:4a:7a:
18:1b:c5:59:92:67:f8:b3:9c:41:21:5c:a2:da:c2:
9e:14:6c:b2:e9:78:7a:bc:05:e2:5a:b8:06:a8:85:
f0:8c:33:f8:68:94:22:82:7f:b8:5b:ef:0d:67:d9:
9d:57:85:48:60:1f:30:03:cb:c8:25:43:0c:75:d3:
5a:df:1f:c6:ea:e3:41:77:0c:13:fd:55:1b:87:e3:
e7:4b:ab:ee:59:31:34:d5:7a:63:91:72:9c:8f:a1:
86:fa:55:0b:ec:0b:96:3f:4f:c6:5f:b5:b0:79:c4:
f0:03:c9:c4:6f:f7:41:83:28:88:5d:8f:63:f1:32:
9b:89:70:bc:e6:50:f3:ae:62:ae:0c:62:fa:79:cb:
41:9d:61:7d:5c:28:69:2c:6d:05:53:59:63:59:c1:
87:d5:fd:5b:95:c4:5c:d0:a1:ff:c1:24:47:93:cf:
27:86:82:20:48:d3:29:5e:09:d2:ba:7d:e1:72:f6:
27:d3:a4:46:60:aa:22:6a:d1:cf:de:33:a5:0b:7f:
7b:09:38:86:15:31:6d:6b:99:b4:e0:99:fc:1f:6d:
ac:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:29:5C:9D:BB:7C:34:A8:77:8C:E5:EE:E5:28:1C:B5:0C:87:06:03
X509v3 Authority Key Identifier:
keyid:CD:91:73:BC:82:8A:B7:1D:A2:EB:CA:FA:7F:89:8E:C6:AA:1E:EA:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:33:00:ae:53:3e:53:a5:e1:f7:f5:49:f9:6d:c7:db:b9:96:
7e:8b:f4:41:19:0b:f9:e9:58:e9:c8:3b:fc:8d:d1:6a:2b:b3:
37:99:77:d8:61:41:0a:03:bc:60:4a:a7:63:ae:7c:fb:ae:fa:
82:30:57:51:de:e8:61:29:9c:31:45:b8:57:da:3a:12:c1:6f:
8a:1b:b5:c5:0a:30:55:db:18:19:5c:71:86:6f:d4:5a:b6:8f:
d4:a7:93:f3:73:ae:12:21:67:d7:23:83:41:4b:25:33:9e:cd:
92:a4:24:31:f3:72:0f:cf:6e:f9:cf:76:23:39:49:b0:69:9d:
5e:79:eb:1f:b5:43:ce:21:dd:43:a8:e8:03:40:09:b8:9d:86:
7d:3e:69:e5:29:05:f3:e4:03:fe:74:76:35:95:2e:af:40:0e:
f8:d7:8e:2e:49:1c:6a:6b:9a:9f:83:ea:d3:9c:63:4d:87:15:
50:55:3a:b7:2e:28:15:a4:9c:c3:73:28:4e:5d:65:42:7c:58:
b5:9f:9a:2b:f4:c9:8c:09:7e:19:41:e7:96:6f:63:78:84:98:
a4:2c:12:ba:d2:c8:d4:32:53:63:0d:35:9f:84:f9:11:82:de:
9b:1b:9d:a1:b7:1d:ea:43:7c:17:99:3d:b2:1b:0e:5f:ef:81:
f4:72:84:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:12:25 2025 by rpki-client