Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
File: zsY7h6iuwJPb5H3MqShg6oQSKOA.mft (raw, json)
Hash identifier: tuLzACsQxi4rwd/C6L3J2S/NRYRYuK4r9xfz5ouNu+A=
Subject key identifier: F6:94:A1:6B:F2:F7:F5:2D:13:39:14:CC:59:CE:D8:A5:38:76:B7:D0
Authority key identifier: CE:C6:3B:87:A8:AE:C0:93:DB:E4:7D:CC:A9:28:60:EA:84:12:28:E0
Certificate issuer: /CN=cec63b87a8aec093dbe47dcca92860ea841228e0
Certificate serial: 01974DB27028E1563E9B4D9826B121F99F84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
Manifest number: 0A87
Signing time: Sun 08 Jun 2025 04:00:28 +0000
Manifest this update: Sun 08 Jun 2025 04:00:28 +0000
Manifest next update: Mon 09 Jun 2025 04:00:28 +0000
Files and hashes: 1: oDVjxYPm7vPq-9FQVAv-wdPcmhE.roa (hash: SVNTWU/SFE8BeAZ7Bb0M+S0ysWhdx0WLLM1QECYtWDg=)
2: zsY7h6iuwJPb5H3MqShg6oQSKOA.crl (hash: kehwyjaO9zFx8twXOPq3PiZHskQ5IG2zlqy0XHbJmCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:70:28:e1:56:3e:9b:4d:98:26:b1:21:f9:9f:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec63b87a8aec093dbe47dcca92860ea841228e0
Validity
Not Before: Jun 8 04:00:28 2025 GMT
Not After : Jun 9 04:00:28 2025 GMT
Subject: CN=f694a16bf2f7f52d133914cc59ced8a53876b7d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:43:a9:dc:c3:29:70:60:4f:4d:77:83:68:9e:
ba:fb:33:15:89:d6:39:fb:55:e9:18:81:c9:34:34:
30:39:15:0d:d3:04:87:3f:9b:17:ab:d0:2d:40:68:
bb:dd:38:30:3c:4b:db:a8:3a:fc:bd:c6:3c:36:21:
db:6d:8d:bd:fe:50:2a:2e:cc:b9:34:42:90:83:78:
18:7f:3f:2f:df:15:d2:1e:85:1a:25:9d:c1:9d:cb:
ae:39:05:bf:5e:2b:57:56:a9:a8:31:57:db:58:ec:
68:9b:90:03:67:1b:ff:db:2d:66:52:47:65:3b:49:
55:09:ea:e4:85:99:5f:da:91:44:43:02:85:80:bc:
65:1a:86:be:12:6f:a0:d3:13:73:7c:61:50:cf:82:
ee:98:85:33:01:b9:95:a9:3e:06:c2:dd:dc:4d:2e:
0b:62:19:d5:df:8b:36:8c:c5:a3:30:72:7e:ee:3d:
de:df:cb:15:a4:42:1f:6d:db:bd:f4:0d:74:7d:6a:
76:e4:e4:ef:aa:9c:96:9e:31:d3:37:96:55:8b:09:
7a:9c:e2:fe:3c:ee:bb:f7:79:d2:c0:fe:a3:cf:68:
44:c4:b1:28:34:7e:a9:9a:74:53:ed:c7:d6:43:5d:
9e:3a:37:64:be:43:e8:2f:e6:05:9b:c0:e1:1b:22:
06:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:94:A1:6B:F2:F7:F5:2D:13:39:14:CC:59:CE:D8:A5:38:76:B7:D0
X509v3 Authority Key Identifier:
keyid:CE:C6:3B:87:A8:AE:C0:93:DB:E4:7D:CC:A9:28:60:EA:84:12:28:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:25:8e:9e:4d:a0:82:37:64:5b:68:f7:e7:72:47:33:a2:14:
aa:19:e2:02:f2:41:72:8d:32:ee:8c:8c:00:80:14:80:51:2a:
16:b8:83:db:d3:3b:97:38:1e:89:85:76:33:4a:cc:66:72:9c:
b9:be:0b:e1:20:58:f5:d2:4f:37:11:11:67:51:73:83:bf:16:
79:81:9d:e7:3a:51:2a:42:aa:8a:c9:35:32:5b:eb:55:e4:bd:
4a:1d:23:e5:29:85:d6:fa:ca:63:5e:77:02:63:4b:33:4d:7d:
78:b5:60:b7:47:a7:cf:69:1f:35:0c:f9:94:88:33:ae:4b:0a:
20:94:2d:c4:3b:75:4c:4e:62:bd:e6:b3:27:e0:50:38:9b:08:
19:b4:de:28:67:2f:24:4a:a8:65:5e:ab:d1:f7:d3:c8:70:06:
96:64:36:57:19:63:12:10:c7:d7:4b:55:d1:e0:91:23:1b:27:
bd:29:4a:47:6d:80:76:57:d4:77:f8:17:a5:31:c9:05:31:ef:
77:fc:27:3b:23:c8:76:97:d9:0b:6e:96:90:7f:81:c3:52:ea:
98:97:bc:99:48:a0:0d:88:c7:ac:f5:b8:56:71:f9:7c:f3:47:
c7:73:63:03:79:0f:9e:42:4d:2b:6e:0d:be:76:bd:67:4d:86:
39:7b:5f:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 12:45:25 2025 by rpki-client