
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
File: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft (raw, json)
Hash identifier: 037VvER+eK7LYJ6bK0lGb4KB48cRXLFoobvIS81/ARY=
Subject key identifier: 2A:F7:DE:12:A2:C5:4F:51:08:CF:9C:30:EB:8E:BD:5E:95:BC:49:AD
Authority key identifier: 64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
Certificate issuer: /CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Certificate serial: 01976B1806CE96897285B123CE972A0ACD72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
Manifest number: 0110
Signing time: Fri 13 Jun 2025 21:00:26 +0000
Manifest this update: Fri 13 Jun 2025 21:00:26 +0000
Manifest next update: Sat 14 Jun 2025 21:00:26 +0000
Files and hashes: 1: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl (hash: KkDjwp8YBsAbRTQqtCuqkZkzBt9oFVreSICFvTpSg6A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:18:06:ce:96:89:72:85:b1:23:ce:97:2a:0a:cd:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Validity
Not Before: Jun 13 21:00:26 2025 GMT
Not After : Jun 14 21:00:26 2025 GMT
Subject: CN=2af7de12a2c54f5108cf9c30eb8ebd5e95bc49ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d6:47:5e:78:b3:99:d7:15:23:36:0a:09:9d:
6c:35:34:50:26:bc:dd:a4:d9:69:d0:b8:3c:fa:dd:
69:3e:c8:65:e7:94:22:54:72:03:f7:74:74:35:6a:
98:0e:15:90:04:47:fd:a3:10:f2:f6:45:b7:59:f7:
01:20:5a:15:d3:50:2b:b3:7a:fd:bf:21:ba:84:11:
5d:2c:06:9c:2d:bf:c4:cb:d5:aa:10:dc:19:5c:0b:
cb:01:ce:42:d2:84:ae:7d:c0:65:82:21:53:29:09:
32:24:3f:c0:10:77:80:1f:2e:aa:03:ab:1e:56:ed:
4c:30:7e:61:6d:f8:3f:e0:2f:dc:21:1a:bc:b3:8e:
f0:11:17:6e:80:a6:4d:c9:4c:16:5c:bf:a3:3a:41:
7b:47:cc:f2:2a:d5:fc:0c:0f:2c:7a:4c:13:06:e6:
cb:be:23:52:c7:5e:e2:c4:73:f7:13:43:2f:e2:be:
71:79:c8:49:3e:4d:91:40:e0:0e:32:d5:f2:26:92:
ab:39:7c:24:aa:e5:ff:9c:d4:f2:14:5e:3c:6b:0f:
72:73:34:39:8e:d4:be:6d:c4:1f:2d:5e:40:d1:eb:
3b:43:d4:69:45:6b:e0:48:33:8d:09:5c:04:fb:6b:
58:af:44:45:d5:28:65:3c:d2:57:bb:25:78:13:94:
ac:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F7:DE:12:A2:C5:4F:51:08:CF:9C:30:EB:8E:BD:5E:95:BC:49:AD
X509v3 Authority Key Identifier:
keyid:64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:54:86:1f:4c:55:6c:01:a2:1e:4c:17:18:e7:94:bd:16:73:
8c:4a:ee:ba:9e:40:04:65:14:8f:f2:f4:3c:86:63:57:bd:9c:
59:1b:6d:11:6d:31:ad:15:62:bd:d7:22:79:28:73:77:a8:80:
4e:f1:4e:c0:9e:24:e6:a6:54:9a:ae:f6:fd:64:83:87:3f:9a:
3c:58:4a:d9:f0:b2:8e:24:09:6d:20:54:f7:0e:9b:07:3c:a3:
3c:ca:23:dd:26:27:a1:af:b3:51:a7:b6:5c:4c:d8:30:44:7e:
10:fa:f4:82:1c:91:0e:62:92:eb:eb:6c:81:ab:d9:7b:32:94:
19:55:e1:37:d8:76:d0:5e:ab:9e:84:7e:29:d8:59:b6:95:fb:
40:b5:41:de:aa:59:73:d9:7d:4a:b6:91:61:98:5a:52:40:62:
f7:5b:e8:39:88:78:13:d0:2e:2b:e4:09:6a:5d:24:fc:63:dd:
2f:5d:48:34:43:54:c9:08:0e:be:2f:8b:6d:e9:e1:fa:9d:68:
dd:14:42:1a:28:6e:3f:78:3b:4e:33:24:15:85:2a:97:90:73:
68:44:cd:4d:7d:d5:f1:74:ba:d4:24:d6:99:b5:0a:c9:76:49:
12:77:45:1f:2c:c7:37:35:fb:7c:9a:b2:10:b4:c0:a1:e9:40:
6b:c1:de:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 01:01:56 2025 by rpki-client