Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.mft
File: ZlBwd85_MPwGht0JNKiZl98x6Ew.mft (raw, json)
Hash identifier: kDKAPh6AzQYKM8R32ZydeztouMkK12PoqKxGl2wCxA0=
Subject key identifier: 56:2C:7F:D6:B9:52:D6:2F:28:81:EC:DE:B5:F0:5B:42:A6:BB:6F:4B
Authority key identifier: 66:50:70:77:CE:7F:30:FC:06:86:DD:09:34:A8:99:97:DF:31:E8:4C
Certificate issuer: /CN=66507077ce7f30fc0686dd0934a89997df31e84c
Certificate serial: 019754238D5F5F8AD2DCF8A8D1988669EA72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZlBwd85_MPwGht0JNKiZl98x6Ew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.mft
Manifest number: 0104
Signing time: Mon 09 Jun 2025 10:01:45 +0000
Manifest this update: Mon 09 Jun 2025 10:01:45 +0000
Manifest next update: Tue 10 Jun 2025 10:01:45 +0000
Files and hashes: 1: CMAN4bcbFlE2ovL3BXKdvH4eTII.roa (hash: ZzFaJfQBLQmJT0k4QbFN8QUiuOCXpP8XehevhIAFTKY=)
2: ZlBwd85_MPwGht0JNKiZl98x6Ew.crl (hash: QEKvzpjxhYC7rMLl0xnctesYyo1oBHHC1yEwfTj+qIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZlBwd85_MPwGht0JNKiZl98x6Ew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:23:8d:5f:5f:8a:d2:dc:f8:a8:d1:98:86:69:ea:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66507077ce7f30fc0686dd0934a89997df31e84c
Validity
Not Before: Jun 9 10:01:45 2025 GMT
Not After : Jun 10 10:01:45 2025 GMT
Subject: CN=562c7fd6b952d62f2881ecdeb5f05b42a6bb6f4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a6:f7:ce:b9:5d:9a:50:32:18:d1:8c:4a:1a:
09:1b:5b:bb:06:37:ac:df:43:21:37:a7:c1:d7:64:
8d:e0:b9:6a:91:b1:27:9e:ac:a3:cd:76:f5:c7:4c:
f2:2c:71:3d:e5:7f:80:ea:c6:04:5f:23:21:eb:59:
97:5d:e0:9b:c1:1a:a0:79:94:7f:b9:52:bb:29:eb:
a4:a8:68:1a:09:5a:39:2d:1f:06:2f:b0:1e:43:ce:
3b:ec:82:f8:a6:7c:57:84:b1:eb:8c:b4:64:e7:38:
f4:5b:51:66:d9:7c:42:b2:aa:dd:2d:1c:d1:2b:c7:
bf:3c:14:c2:d1:6e:b9:db:22:f8:55:62:d7:8d:40:
61:2d:f3:9a:bf:d3:b1:66:6b:85:04:9e:c6:c7:4b:
32:07:3b:e8:c5:63:0e:23:f2:b1:29:72:f7:73:22:
77:d7:0c:26:c0:38:18:ce:30:96:4b:41:55:8e:3b:
17:b5:8e:17:c9:80:6a:1f:87:48:ab:a9:da:6b:ed:
b6:c4:f1:c8:aa:75:11:b0:08:20:b0:94:cb:df:6b:
82:09:3f:0e:e8:4c:39:df:88:b0:69:6f:1c:4d:98:
d8:20:89:a6:4f:b5:24:b1:e6:dc:1b:f4:a6:b8:a1:
c1:1d:11:34:68:ff:a8:02:6e:5f:b8:ac:7d:fe:b0:
d1:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:2C:7F:D6:B9:52:D6:2F:28:81:EC:DE:B5:F0:5B:42:A6:BB:6F:4B
X509v3 Authority Key Identifier:
keyid:66:50:70:77:CE:7F:30:FC:06:86:DD:09:34:A8:99:97:DF:31:E8:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZlBwd85_MPwGht0JNKiZl98x6Ew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:71:86:79:b5:6a:a5:11:fb:7b:ac:20:90:3d:c6:01:35:ac:
f6:56:78:75:1b:37:1e:d0:b7:21:17:81:aa:5e:37:38:18:9f:
b1:3c:44:c4:90:f0:8b:2d:71:fa:83:c1:86:a1:9b:67:f9:58:
60:5f:cf:cb:33:5b:4b:a1:78:2e:ef:bc:e5:1a:fb:f8:8e:c1:
3f:0b:2e:7d:1b:89:ff:71:5f:71:11:51:1d:f9:31:a8:52:62:
90:20:49:ba:9b:4f:3a:a9:01:e6:37:6b:a7:8e:a7:c0:6c:8b:
82:ff:70:6d:8d:54:31:89:d4:c4:c7:dc:18:34:d4:8a:84:d2:
8b:f2:f0:1e:18:6f:7d:8e:4c:e6:33:1b:27:00:78:14:a9:45:
2b:2f:a4:db:6b:f9:3d:18:90:d6:80:da:b7:c5:cb:fd:04:00:
ae:67:23:f2:3d:56:ad:b5:8e:ab:7b:bc:43:08:ce:2c:f2:b1:
a1:1b:84:2b:fb:f4:2e:95:68:e8:be:44:f4:f8:32:7a:17:f4:
2b:1f:d7:eb:83:2c:0a:ff:f5:0c:c5:74:20:da:ac:10:ec:b0:
79:5e:d7:21:66:1a:ea:e7:61:e6:8e:db:e0:4c:40:6e:01:d0:
52:50:a6:37:7f:63:64:0e:15:9b:c9:74:52:25:8c:11:50:e1:
b3:bf:99:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 16:09:39 2025 by rpki-client