Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
File: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft (raw, json)
Hash identifier: PaGKspfxGPinkKQVuGqVGeouVbqkFX4G4EOe3nVy9uA=
Subject key identifier: 5C:0C:52:5C:08:60:27:2A:3D:C7:BE:77:4F:C7:3A:D5:FD:82:12:DA
Authority key identifier: 64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
Certificate issuer: /CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Certificate serial: 019757C86D16DC699C81C2E88636AD7C98CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
Manifest number: 0106
Signing time: Tue 10 Jun 2025 03:00:42 +0000
Manifest this update: Tue 10 Jun 2025 03:00:42 +0000
Manifest next update: Wed 11 Jun 2025 03:00:42 +0000
Files and hashes: 1: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl (hash: TbUJoGZWLH9xAHZxIhFBpjjHICTDnWysyanhVzx1zDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 03:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:c8:6d:16:dc:69:9c:81:c2:e8:86:36:ad:7c:98:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Validity
Not Before: Jun 10 03:00:42 2025 GMT
Not After : Jun 11 03:00:42 2025 GMT
Subject: CN=5c0c525c0860272a3dc7be774fc73ad5fd8212da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:23:82:ae:b7:e1:0c:f7:cd:30:4b:ed:67:5a:
42:dd:22:17:8b:e4:0b:47:38:2c:7d:31:26:3b:05:
04:38:13:0d:24:0e:7a:ad:ae:a3:c2:e3:9e:ce:b6:
3a:e5:2b:f9:95:09:b9:e1:36:c1:f2:0c:20:6d:1e:
97:09:b8:87:62:7b:64:1d:c9:87:91:1d:aa:a3:05:
5f:cd:6d:27:71:c9:e4:d8:db:a3:e7:b7:fe:39:69:
21:52:c0:5b:91:2c:6c:91:2d:60:ff:f7:db:9b:13:
4b:a1:2d:1f:5b:97:2b:d3:52:a9:a8:3d:a7:33:1e:
e9:e0:50:e4:29:63:7b:e9:b2:e8:87:24:3b:83:1e:
3a:1e:18:d2:05:4d:80:9e:49:6a:c4:e3:69:c8:f6:
2a:5d:ce:a1:a7:46:cb:13:a5:4f:b3:16:9c:11:c8:
5d:87:3b:07:e6:5b:b1:54:22:85:3b:e1:33:e5:93:
dd:8b:7d:1a:94:64:64:34:67:ce:5e:59:5d:f1:47:
47:62:1c:e6:15:e4:22:58:9c:b7:ff:85:9f:01:cf:
32:5a:17:6e:da:a3:45:6b:b1:c4:fc:d4:71:64:6d:
3c:ab:27:5a:56:6c:84:c3:08:2f:cd:1e:81:9c:b0:
ec:05:ea:44:55:94:df:db:58:13:46:13:8e:c1:a0:
9d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:0C:52:5C:08:60:27:2A:3D:C7:BE:77:4F:C7:3A:D5:FD:82:12:DA
X509v3 Authority Key Identifier:
keyid:64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:e0:04:68:84:c5:0b:2f:9b:5e:40:aa:e5:f0:1d:cc:60:53:
90:c4:8c:ab:c0:c3:47:69:da:b9:a0:bc:0e:89:38:d5:cc:5b:
98:d1:4d:6c:86:50:ad:ba:51:8e:66:72:a0:a9:5c:9f:62:36:
35:a1:d4:fe:82:b9:2a:20:9a:8b:13:0a:0c:d6:e4:dc:41:60:
fa:6a:8a:89:0b:ae:fe:96:5f:41:e5:af:2f:0b:95:6f:70:9c:
8f:18:2d:98:8d:a6:5f:49:07:84:26:2a:07:28:13:4b:3b:95:
01:50:7c:9b:db:49:04:29:15:27:e2:69:11:7c:23:6c:31:9c:
6a:eb:81:bc:24:70:9e:98:ba:2f:c2:99:65:ab:07:dc:15:4c:
34:df:9d:b4:b1:7c:92:f0:b9:1e:6b:0d:b9:d6:6c:7d:98:5c:
fa:eb:a0:7b:0c:62:43:5c:b2:a7:79:11:45:40:9f:50:ea:18:
ac:b7:d5:2b:07:5a:04:32:13:17:b3:ba:5d:45:ed:d2:09:d9:
27:e5:66:b5:95:d5:a4:dd:14:6a:b6:cc:5f:56:6e:77:69:d5:
06:92:c7:d3:ab:0e:9e:94:34:ab:f5:b6:e3:5b:8e:83:7d:b6:
6b:6d:91:73:1d:3f:f2:f2:1f:a4:95:aa:a8:7a:e9:47:3f:c4:
4a:05:0b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 13:02:28 2025 by rpki-client