Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
File: ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft (raw, json)
Hash identifier: BZVEZ4lgQ1L4enyDAm9KIIpWug8ny397K/Alnt7RmqM=
Subject key identifier: 65:E1:8D:F1:89:DD:EC:1E:A6:DC:4A:4A:AF:0F:8F:1E:FF:86:02:79
Authority key identifier: CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4
Certificate issuer: /CN=ced410ea6867ef63f959bad6b21b691cadff87d4
Certificate serial: 019754FEA518FA9A688C9E477811B2A33CD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
Manifest number: 1582
Signing time: Mon 09 Jun 2025 14:01:03 +0000
Manifest this update: Mon 09 Jun 2025 14:01:03 +0000
Manifest next update: Tue 10 Jun 2025 14:01:03 +0000
Files and hashes: 1: NJmmW764rdnW_zIUswA3g-8-n2M.roa (hash: uNbv9sZggt1kjUfoR4Ji7KAa4WT9RRySZVjN33ZdWTA=)
2: ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl (hash: RoYMXeOmvIlioDPxgP6X5erav1r+j+mADb4yL8hN8P8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 11:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:fe:a5:18:fa:9a:68:8c:9e:47:78:11:b2:a3:3c:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ced410ea6867ef63f959bad6b21b691cadff87d4
Validity
Not Before: Jun 9 14:01:03 2025 GMT
Not After : Jun 10 14:01:03 2025 GMT
Subject: CN=65e18df189ddec1ea6dc4a4aaf0f8f1eff860279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4c:02:b8:b1:48:bd:fa:93:64:a3:e7:f7:0b:
5c:1e:21:0b:97:f3:7c:ae:45:8b:c7:8b:22:f3:25:
09:3c:a8:9d:38:0c:a3:d4:1a:c0:1b:84:0e:45:a0:
d5:45:37:8c:1f:64:81:91:e8:78:73:25:63:7a:12:
09:3c:70:9f:83:d7:4d:4f:26:5b:62:a2:a0:4c:e2:
77:4f:84:c3:a0:60:ef:4b:cf:8c:be:61:26:9c:1f:
c7:4b:1c:a8:64:ce:b0:10:4c:06:bd:8d:9f:04:b8:
cb:42:02:d5:6a:43:32:f5:ed:97:a6:b1:ee:72:7a:
fc:2b:8e:14:3b:3b:bc:af:72:89:3b:53:da:0c:f3:
a8:ff:39:d5:93:53:47:90:b1:08:c4:02:ff:e2:9a:
83:b8:f4:c0:23:5b:43:29:11:45:f9:18:60:83:7f:
a4:c5:53:b1:fa:aa:06:af:34:9f:3d:dd:5b:68:bc:
c8:d5:d5:33:7d:a9:ac:bc:5b:f9:7a:c7:0a:11:37:
03:ad:7c:6e:e4:57:dc:e6:76:1e:98:52:49:c2:48:
18:a8:56:36:44:b5:7c:37:b9:f2:25:d0:61:b2:79:
a3:7c:8f:0a:b1:1d:67:54:20:38:6e:87:a9:a4:0d:
69:43:42:7a:a7:08:36:de:c9:5d:a5:57:9f:e9:66:
58:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E1:8D:F1:89:DD:EC:1E:A6:DC:4A:4A:AF:0F:8F:1E:FF:86:02:79
X509v3 Authority Key Identifier:
keyid:CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:68:55:5f:d7:2f:00:bb:2a:90:af:fc:82:3f:ea:2b:87:ff:
fa:28:63:56:a2:e4:44:63:86:5f:39:dc:98:f0:76:85:c8:37:
a1:07:31:b0:00:e3:7f:75:5b:9d:fa:48:77:4c:09:dc:1e:c6:
7d:49:b4:6f:73:63:5c:57:8f:6a:b2:dc:06:4b:c6:e2:8a:32:
43:fa:ac:ae:fa:97:af:bf:d0:67:aa:1b:0b:0b:65:98:88:ff:
7f:39:43:26:66:b3:9b:f8:01:7e:ad:85:ac:4a:78:ee:14:86:
81:20:b5:33:d6:e4:20:4f:ec:5b:e7:82:bc:d0:b5:b4:69:4d:
24:a5:b1:a0:28:29:f9:90:db:ae:b4:10:8f:74:f9:88:57:41:
5a:f9:ae:76:66:4d:89:74:c2:41:5e:55:f3:dd:89:b0:f7:12:
18:d5:f5:90:3d:a4:6a:13:e9:ee:5b:0c:df:65:e3:fc:5b:42:
5e:7a:ba:b0:ab:12:49:ef:47:d2:56:21:00:3d:6d:fd:e6:1b:
e1:46:12:a9:34:e9:42:d8:64:a6:a2:3d:d7:54:c0:a3:a3:b7:
35:8f:7b:4f:b8:d2:bd:bd:a4:34:75:3a:54:46:9a:35:89:07:
18:75:19:40:6d:5d:57:60:31:e3:ac:49:34:d9:73:4a:85:24:
25:87:37:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 20:57:08 2025 by rpki-client