Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
File: ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft (raw, json)
Hash identifier: IzQJ8JjzEiJ3lnMyJOT+Z+647wRdiwSruztekynoOms=
Subject key identifier: 76:71:95:E5:97:73:59:6D:D1:6B:3C:C7:F5:90:3D:3D:26:31:8D:84
Authority key identifier: 65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB
Certificate issuer: /CN=65226ee5ea0406592df975c6f4c84f10f14d15cb
Certificate serial: 01974A7B2C3116EF6C2045A8D79B7C8BFFF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
Manifest number: 14BD
Signing time: Sat 07 Jun 2025 13:01:15 +0000
Manifest this update: Sat 07 Jun 2025 13:01:15 +0000
Manifest next update: Sun 08 Jun 2025 13:01:15 +0000
Files and hashes: 1: ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl (hash: m71TtI5z3sQK8M8cK7TJaxbwJtg5FrbhrkYqkUTNmmg=)
2: _4Ndkg3UKi9vHxY0SVHFR9i7YHI.roa (hash: gVwQ/KDnz7z975mDXEiOOePjhBe/QBZrgXsjy6HuzNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:2c:31:16:ef:6c:20:45:a8:d7:9b:7c:8b:ff:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65226ee5ea0406592df975c6f4c84f10f14d15cb
Validity
Not Before: Jun 7 13:01:15 2025 GMT
Not After : Jun 8 13:01:15 2025 GMT
Subject: CN=767195e59773596dd16b3cc7f5903d3d26318d84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:bb:1d:9a:96:4b:7a:89:c2:64:b5:21:59:85:
ea:73:22:94:04:fc:c5:91:ab:a1:6a:af:c5:7d:54:
7d:d9:84:3d:4f:e2:6b:39:df:62:a9:c8:c5:bb:40:
98:34:d2:1e:f9:29:07:a7:3c:f7:81:d2:95:88:65:
58:97:75:e3:16:37:2b:06:25:8a:eb:14:56:43:e5:
6d:08:ec:f1:46:14:fc:35:61:19:3a:76:60:83:1a:
59:a2:4d:a8:47:6a:ab:df:0c:67:00:2d:01:86:ad:
e9:15:83:0b:9d:76:f5:1a:52:8d:13:85:44:75:65:
44:fd:e3:96:1f:f3:20:19:84:02:58:28:a9:a3:8c:
9f:6b:ef:e7:60:18:33:83:ff:00:b6:29:e9:0c:98:
09:21:4b:a1:c7:16:e1:ed:c5:6c:67:00:05:db:06:
e4:a3:01:29:4b:a4:f1:fe:0d:3d:2d:f5:f9:14:81:
85:fa:b9:69:8b:10:68:ea:32:e0:25:ee:17:a8:f2:
cd:f0:3d:2e:e9:c0:b8:fc:4b:95:a1:0c:fc:e4:f6:
de:6d:73:dc:e2:28:b2:29:c6:18:d6:dd:f7:7f:a4:
38:4b:15:b9:a8:47:f5:1d:b4:ab:d9:61:9d:ed:23:
93:78:e9:d1:db:a2:2a:93:79:99:45:90:ab:b4:53:
95:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:71:95:E5:97:73:59:6D:D1:6B:3C:C7:F5:90:3D:3D:26:31:8D:84
X509v3 Authority Key Identifier:
keyid:65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:33:3f:28:57:bf:af:b1:60:2e:5b:34:dd:8f:db:cd:f8:d8:
48:7d:53:a0:49:84:38:a3:c1:bd:3e:d9:05:ed:b7:02:09:9d:
2b:5d:0f:2b:2c:3a:35:60:f1:2e:6c:54:01:69:2a:00:2f:82:
54:6b:e7:a1:13:01:7e:e5:90:2d:e3:cd:49:31:3d:fa:8a:94:
f8:32:82:82:dd:c2:ec:24:67:73:cc:5f:8f:33:65:34:63:67:
81:77:59:05:81:1b:e2:84:4f:a1:01:eb:7e:f0:fb:76:40:c0:
81:e6:c7:96:0a:dd:ca:8d:74:08:36:73:62:52:cd:21:8c:d3:
21:f1:e6:85:94:29:aa:ac:0b:85:17:98:2b:13:10:aa:94:75:
cd:45:7c:1e:dd:d8:c6:b4:42:d0:97:e0:76:75:8d:2c:ad:4c:
6a:f3:c7:f0:2f:f4:45:73:3b:8b:32:e5:8e:6c:26:8e:97:0e:
28:5e:65:a9:ea:b6:8f:c5:f9:73:29:cb:96:7b:e4:e1:ec:1f:
01:e5:27:62:c0:50:b2:3e:16:c9:f6:00:fa:60:39:4a:e8:4e:
3c:46:cb:a3:7d:83:77:32:38:b3:e2:39:a2:38:99:05:9d:39:
c0:e9:56:ab:ac:69:e4:de:5e:a1:c3:a9:25:e6:68:12:5b:11:
da:4c:22:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:42:29 2025 by rpki-client