Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
File: 1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft (raw, json)
Hash identifier: TtlHi5WOicf6utzjuH+YqGFoAO5mgRNuX82myd08k9E=
Subject key identifier: F0:D2:0D:82:62:D1:F5:F6:CA:1F:CF:E6:A7:18:A1:91:95:6E:B6:E1
Authority key identifier: D7:36:7F:C2:4D:00:4F:71:DD:2A:EF:03:F9:CB:4F:2E:3F:90:86:AA
Certificate issuer: /CN=d7367fc24d004f71dd2aef03f9cb4f2e3f9086aa
Certificate serial: 0197499EF43D6A596139FB1272AE087E5D74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 09:00:43 +0000
Manifest this update: Sat 07 Jun 2025 09:00:43 +0000
Manifest next update: Sun 08 Jun 2025 09:00:43 +0000
Files and hashes: 1: 1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl (hash: NoxcDUqvhgN72Q+83edt077UzVsPOxpzasCHvnjjF9c=)
2: qflKZTF3zhSp7clCgQY6deaVcuQ.roa (hash: YrrT0H2VFpPiuVpFBvUMkkYVOwRQGbWJWicWDvr4Ns0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:f4:3d:6a:59:61:39:fb:12:72:ae:08:7e:5d:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7367fc24d004f71dd2aef03f9cb4f2e3f9086aa
Validity
Not Before: Jun 7 09:00:43 2025 GMT
Not After : Jun 8 09:00:43 2025 GMT
Subject: CN=f0d20d8262d1f5f6ca1fcfe6a718a191956eb6e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:81:ea:12:da:93:7e:eb:68:f2:92:d5:30:4e:
e6:b7:a2:82:b2:04:05:13:bc:af:98:81:52:e0:45:
08:76:e5:10:c7:02:ca:87:14:b2:13:ce:75:c5:ca:
63:da:23:29:e7:b1:73:01:5f:73:81:fb:71:23:d6:
4f:21:2f:0c:1a:b8:cb:8b:e1:8e:41:2b:ad:9c:85:
ed:c4:55:6a:5a:b6:14:a2:d5:14:94:73:24:c6:23:
3d:be:f8:15:26:f9:25:9e:0b:64:d2:89:be:26:df:
0d:ef:90:42:f7:27:22:2f:6b:6f:2c:27:48:3a:5b:
f3:9d:52:fb:89:ec:65:57:70:81:33:2d:4f:ef:89:
82:3a:27:64:5c:30:66:39:6c:38:d3:02:46:0d:9d:
26:b5:82:d6:be:80:20:e6:18:77:33:cc:92:65:17:
3f:f8:07:76:d0:7d:47:46:9f:b1:2e:32:cd:a9:b7:
cb:8e:32:2f:6d:24:0a:3d:2c:c2:9e:ce:42:eb:df:
9a:b5:9b:1a:8e:c8:b4:30:54:ed:73:aa:f9:e2:ed:
20:5e:5d:af:3c:2e:92:7b:d3:8d:1b:7a:d1:8d:02:
28:f2:ae:83:63:ae:09:e0:ba:30:0b:17:09:66:79:
0e:50:3d:47:68:85:23:a8:f2:e0:1f:98:a2:c9:e8:
bb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:D2:0D:82:62:D1:F5:F6:CA:1F:CF:E6:A7:18:A1:91:95:6E:B6:E1
X509v3 Authority Key Identifier:
keyid:D7:36:7F:C2:4D:00:4F:71:DD:2A:EF:03:F9:CB:4F:2E:3F:90:86:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:6a:75:3b:4b:0d:ef:91:3a:0e:b1:68:ed:f9:35:2d:bc:4a:
70:30:dc:23:2c:9b:a6:df:3c:ca:2d:2e:f7:1d:31:d2:b0:1d:
1e:a0:ec:43:8d:bd:d0:05:d1:0b:20:a8:95:ba:0e:b6:ec:02:
20:43:d7:24:e5:00:5b:ec:f5:e1:85:e8:34:b4:c3:d5:7d:3d:
81:a3:ee:f1:82:9c:0e:d4:09:80:02:9e:67:46:c6:75:fe:67:
a5:78:a8:70:be:95:50:f9:b4:f7:58:1b:c4:98:78:0b:e6:f1:
7c:ea:f5:73:6f:ac:b1:6e:80:8c:d9:3b:23:2a:72:70:e1:fe:
7c:a2:67:47:e1:f5:31:9e:1f:18:82:44:a6:41:cf:f0:b2:f4:
e4:62:1a:a8:75:e6:8b:ac:af:22:5a:04:af:ac:e0:ef:13:69:
e7:6f:a3:32:e2:ff:4f:91:6d:68:2f:09:6f:6f:b2:68:5a:08:
04:db:66:68:9d:6f:f9:5f:1e:52:88:27:95:36:70:cf:67:26:
22:fd:95:a9:43:b9:b5:8f:4a:50:73:73:d9:67:dd:80:41:91:
82:84:ab:d2:8d:00:06:c2:39:21:0f:c4:a0:4f:cd:99:35:8c:
73:e0:02:3c:69:de:41:53:f9:87:44:64:88:3d:62:3a:5c:e1:
31:40:df:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:28:52 2025 by rpki-client