Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/03a52d-f9b5-4f71-b428-2d90001570e1/1/zkyVbVLdh2NjwhME-cAl8H1fJjE.mft
File: zkyVbVLdh2NjwhME-cAl8H1fJjE.mft (raw, json)
Hash identifier: esFEL6qy7p/sN3Il828ziAFJ1EKFcPlqDVsDaEq7bQQ=
Subject key identifier: 88:70:BB:7D:7F:99:65:15:83:FB:58:41:73:3E:F7:64:BF:D3:B3:49
Authority key identifier: CE:4C:95:6D:52:DD:87:63:63:C2:13:04:F9:C0:25:F0:7D:5F:26:31
Certificate issuer: /CN=ce4c956d52dd876363c21304f9c025f07d5f2631
Certificate serial: 01974A7B92CC337739ABA04A5369E00ABDE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkyVbVLdh2NjwhME-cAl8H1fJjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/03a52d-f9b5-4f71-b428-2d90001570e1/1/zkyVbVLdh2NjwhME-cAl8H1fJjE.mft
Manifest number: 04F6
Signing time: Sat 07 Jun 2025 13:01:41 +0000
Manifest this update: Sat 07 Jun 2025 13:01:41 +0000
Manifest next update: Sun 08 Jun 2025 13:01:41 +0000
Files and hashes: 1: zkyVbVLdh2NjwhME-cAl8H1fJjE.crl (hash: iKLi2N4LPx1QFMQY/w5jHD1qdHxwVmn5MikFy+nDpmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/03a52d-f9b5-4f71-b428-2d90001570e1/1/zkyVbVLdh2NjwhME-cAl8H1fJjE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/03a52d-f9b5-4f71-b428-2d90001570e1/1/zkyVbVLdh2NjwhME-cAl8H1fJjE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkyVbVLdh2NjwhME-cAl8H1fJjE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:92:cc:33:77:39:ab:a0:4a:53:69:e0:0a:bd:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce4c956d52dd876363c21304f9c025f07d5f2631
Validity
Not Before: Jun 7 13:01:41 2025 GMT
Not After : Jun 8 13:01:41 2025 GMT
Subject: CN=8870bb7d7f99651583fb5841733ef764bfd3b349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:76:d2:8a:ac:9c:bc:75:32:13:39:30:03:08:
70:ea:e1:e3:1e:c6:02:46:13:9c:a4:1e:76:06:39:
ad:b8:2d:0a:d1:b0:de:f1:1a:ac:72:fb:e8:d7:bc:
45:a9:e1:7c:95:c6:d8:dd:a7:38:8e:4c:62:28:cc:
f4:3d:df:4a:ed:c9:87:71:09:7a:b0:bd:c0:c6:f8:
ad:7e:3b:b2:4c:04:92:a4:e7:08:b9:ea:9d:b2:07:
40:86:22:4f:dd:21:43:10:c7:12:1b:20:04:c8:02:
ed:3b:80:72:53:a5:2f:cf:34:d3:ac:ce:b7:2d:77:
21:7b:72:7e:32:a8:41:1d:8e:eb:6a:27:6c:08:3c:
01:f8:8e:0f:94:27:68:cd:76:81:7d:51:0b:e3:1c:
fd:d3:8e:07:d0:7a:b5:9e:15:d8:b4:43:6c:db:e9:
85:b5:af:53:3f:ff:04:f3:7b:9c:d1:37:5c:5e:99:
49:c3:2f:ac:c1:b9:d7:6d:36:93:04:00:a4:13:f6:
a1:c0:be:c8:24:8e:88:f3:b6:73:dd:57:bc:84:dc:
84:77:2e:0f:31:27:c8:80:87:e7:44:60:14:a8:01:
f1:2d:19:7d:15:07:c2:1a:01:8a:10:12:fe:68:be:
12:54:78:19:be:f8:a9:50:83:4f:6e:b6:fa:66:43:
1b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:70:BB:7D:7F:99:65:15:83:FB:58:41:73:3E:F7:64:BF:D3:B3:49
X509v3 Authority Key Identifier:
keyid:CE:4C:95:6D:52:DD:87:63:63:C2:13:04:F9:C0:25:F0:7D:5F:26:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkyVbVLdh2NjwhME-cAl8H1fJjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/03a52d-f9b5-4f71-b428-2d90001570e1/1/zkyVbVLdh2NjwhME-cAl8H1fJjE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/03a52d-f9b5-4f71-b428-2d90001570e1/1/zkyVbVLdh2NjwhME-cAl8H1fJjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:88:8c:a1:9d:6c:c4:d5:70:54:ab:cd:51:25:e1:cd:f0:dc:
8a:81:3e:f4:a8:fc:7d:f0:c9:de:a8:92:21:a3:55:fe:ec:d3:
fd:77:07:96:d5:e5:d2:5c:80:fe:16:00:22:c3:4a:67:41:fb:
a7:cb:f3:78:36:d9:82:52:22:d8:c3:51:4b:e2:4a:f7:d7:31:
96:21:a7:19:4a:cf:2e:20:7c:d6:3e:96:16:1c:ea:44:8b:2e:
5a:96:f4:d2:c2:b1:62:09:79:14:78:84:4e:2f:64:90:19:59:
f5:8c:98:ec:3b:23:20:66:a1:67:7b:f8:36:48:eb:ca:fb:58:
de:c1:bf:42:19:e2:25:ef:fb:ed:02:9d:cf:b3:05:a4:d8:d8:
7a:ac:04:26:e4:46:bb:20:a5:1e:f8:05:1d:eb:c7:96:25:1b:
f5:6d:21:b3:4d:49:3b:bd:52:77:5b:1b:57:a7:73:88:1c:ad:
c4:2f:50:d0:9a:ce:82:be:fb:9e:aa:73:18:23:17:5f:7a:a0:
8f:e2:33:fb:48:e2:ef:c2:27:c9:12:e4:e9:0b:f7:dd:ac:65:
a9:5f:9d:68:76:85:83:24:6f:c4:c4:72:a1:9d:0b:a7:7b:24:
c5:0e:b4:1e:f9:a4:b1:f0:41:57:3c:31:62:37:08:6d:14:53:
cb:7a:f2:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:21:03 2025 by rpki-client