Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
File: zCdbIX3x3piMohkqg64R3fQjpE8.mft (raw, json)
Hash identifier: A7FnPPNs/zM3wxpXPJ8KBtXvC2V7kKaP5JLSg4S5XcA=
Subject key identifier: 5D:4A:6D:6C:77:45:75:F4:88:71:E1:02:92:B4:CB:4B:70:0C:76:8C
Authority key identifier: CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
Certificate issuer: /CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Certificate serial: 01974DE9C4E406EB811999448DC33001B6C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
Manifest number: 0A36
Signing time: Sun 08 Jun 2025 05:00:55 +0000
Manifest this update: Sun 08 Jun 2025 05:00:55 +0000
Manifest next update: Mon 09 Jun 2025 05:00:55 +0000
Files and hashes: 1: Nr1R18FVhyzjXhL2YKl54Kz1CcM.roa (hash: Ka3gajN2kG5bn7od03MC2i4kFc5aTTook8osIu09I1U=)
2: zCdbIX3x3piMohkqg64R3fQjpE8.crl (hash: 3tq1V7cbEkhrMKXWUQsDpUd58GVh5PSayTJHYG/Y7Jw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:e9:c4:e4:06:eb:81:19:99:44:8d:c3:30:01:b6:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Validity
Not Before: Jun 8 05:00:55 2025 GMT
Not After : Jun 9 05:00:55 2025 GMT
Subject: CN=5d4a6d6c774575f48871e10292b4cb4b700c768c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:23:20:b1:8f:71:c5:98:34:5e:2f:6f:95:08:
c1:42:cd:8e:c5:43:35:24:c5:29:c6:6d:c1:c9:0c:
45:6b:b3:0f:d6:04:79:43:78:8f:34:21:68:3a:89:
9e:ee:53:32:37:25:72:56:d2:33:39:5f:02:4f:93:
2c:a9:4e:19:ea:7b:93:f6:84:8e:db:86:77:15:4f:
04:bb:de:df:50:ad:d5:11:72:5b:4f:9c:07:8b:57:
29:98:e5:22:28:70:9c:89:3e:4e:5e:be:99:15:a8:
6a:d0:f3:30:f0:00:f5:ae:f5:62:4e:a6:d5:a7:31:
74:1b:d7:e3:87:d2:a5:20:82:da:17:76:c5:33:ca:
c3:ff:43:8c:13:bb:71:70:90:29:f3:9f:f3:dc:3a:
7d:ef:7b:df:be:5e:4b:52:46:e0:22:5d:af:14:8a:
4b:07:c1:7d:02:bf:60:b7:62:16:04:e3:a9:9b:ea:
38:f3:15:5c:a5:0e:a3:74:6e:84:8c:c3:da:9b:8e:
3b:1d:82:aa:04:ce:78:f0:c7:d8:d1:65:08:a3:2e:
92:63:8f:98:a2:8d:56:26:3b:34:f4:a3:ef:76:81:
71:00:86:e6:c9:5b:eb:76:a8:9f:60:0d:f1:5c:2b:
29:f5:b3:41:0e:73:b6:3f:3d:9a:c2:f9:70:47:21:
81:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:4A:6D:6C:77:45:75:F4:88:71:E1:02:92:B4:CB:4B:70:0C:76:8C
X509v3 Authority Key Identifier:
keyid:CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:0b:b4:16:a7:4b:e9:c6:e0:3b:4f:5b:b5:73:d2:9d:0b:43:
27:0b:09:88:78:f5:01:94:99:25:2f:ff:ec:85:0e:e5:f0:02:
a6:2f:50:f8:f1:bb:80:1d:d6:08:06:f9:06:73:9b:2e:a0:10:
bd:6b:19:54:1b:6f:28:89:47:83:58:c0:3e:d1:d0:00:33:ac:
38:63:25:66:87:23:bc:52:a4:f5:8f:98:81:36:52:ab:66:0e:
15:73:de:a8:48:18:9f:bb:81:9a:51:97:49:ab:83:41:62:66:
07:fd:e9:57:eb:64:4e:15:dc:67:0e:d3:23:79:2e:d7:da:aa:
2f:ee:98:7e:30:3f:9e:c9:ed:69:a1:f7:86:07:30:d4:53:d8:
7c:b4:49:82:ef:ad:2d:6a:c0:bf:82:f9:88:b1:ac:f0:8e:a2:
9b:cd:37:38:b9:ff:e3:cc:84:5e:e0:9a:1a:9d:f1:2d:9b:0c:
72:0f:57:4c:e1:64:e8:89:c2:4f:f5:62:38:31:1f:44:6d:ed:
e2:7b:c6:fe:5e:b1:d0:fb:fb:12:08:5d:0e:ee:d6:14:aa:dd:
f3:64:76:fd:b5:b7:d4:62:cc:1e:f1:5f:c5:7a:2a:1a:5d:10:
c8:97:85:29:75:4b:df:bb:bf:7b:a9:4c:93:95:72:c8:8c:54:
af:61:46:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:15:35 2025 by rpki-client