Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
File: zUNP2FkiOudujXhkipNylejs15o.mft (raw, json)
Hash identifier: bAWMN8lkk33A8LV2wPjpQb8XTbkFSWlrXFTokqDyEe4=
Subject key identifier: 03:71:6C:A3:03:1C:9D:D8:2B:D5:41:F5:CC:9F:E9:94:D7:01:F3:EF
Authority key identifier: CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
Certificate issuer: /CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Certificate serial: 0197488C692B505D1D4CD7E29E34BBABFD79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
Manifest number: 0529
Signing time: Sat 07 Jun 2025 04:00:50 +0000
Manifest this update: Sat 07 Jun 2025 04:00:50 +0000
Manifest next update: Sun 08 Jun 2025 04:00:50 +0000
Files and hashes: 1: R9FIW-YXitjJpX1Q3jcy6-oEIFI.roa (hash: UPbldeCj6tFYKOIutM8BR+cGGez6vIB0/3ZKKmpjUZo=)
2: zUNP2FkiOudujXhkipNylejs15o.crl (hash: 7Lt3kSMEXiqxBfczJvNsyiLnfxkcBAfVb6RJIp80v50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:69:2b:50:5d:1d:4c:d7:e2:9e:34:bb:ab:fd:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Validity
Not Before: Jun 7 04:00:50 2025 GMT
Not After : Jun 8 04:00:50 2025 GMT
Subject: CN=03716ca3031c9dd82bd541f5cc9fe994d701f3ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:66:e9:f0:18:73:f2:fe:b6:39:9f:36:cb:7b:
a1:0e:a1:01:05:d8:df:53:b1:79:cd:97:40:a1:1f:
83:df:b1:fe:ff:31:06:95:03:0f:e5:3f:6f:56:e1:
c6:7c:ab:51:0a:d0:ec:35:ac:be:1e:55:ab:ca:02:
40:83:e4:d9:04:ab:f7:59:fd:bc:ad:12:e7:24:9d:
c9:aa:05:ff:33:83:f6:18:30:7f:98:48:f5:24:17:
96:54:d7:70:d0:76:8b:f8:b5:af:36:c8:0e:d7:10:
60:5a:1b:5b:02:6a:ee:d5:d1:e4:4d:57:c7:20:9b:
95:e1:34:35:d8:9f:51:f4:db:91:b6:8b:e3:4b:e9:
94:e3:af:78:eb:76:9d:64:6b:4b:09:c1:42:4c:cd:
ad:3a:3a:05:df:cd:5d:fa:43:d6:57:db:36:67:f9:
2a:ad:c6:c7:3a:5f:44:81:f8:f2:6b:1a:2e:20:19:
43:b8:95:0c:ef:92:13:cb:40:b3:22:86:cc:9b:34:
75:c8:77:00:08:09:03:f6:0a:e6:10:e4:6e:5e:1d:
51:bb:cd:d4:15:d0:56:da:93:5e:82:62:41:ca:98:
bf:61:9d:49:0d:b4:57:e9:52:2a:90:74:bd:70:a5:
b3:d2:18:12:eb:bf:05:48:27:2e:f4:99:fe:b5:1c:
a0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:71:6C:A3:03:1C:9D:D8:2B:D5:41:F5:CC:9F:E9:94:D7:01:F3:EF
X509v3 Authority Key Identifier:
keyid:CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:7c:35:49:6d:05:39:84:17:26:e3:32:c7:9b:b6:06:b6:db:
e0:5f:7a:74:b1:50:17:cb:4c:7f:1d:a1:3b:3b:59:73:b3:63:
0f:24:9e:d3:16:aa:c2:e7:ac:04:3a:e0:ce:23:0a:4c:0d:30:
0b:ee:88:91:81:0b:5f:d3:c4:60:01:2f:58:3c:72:f1:e3:d4:
33:fd:41:6e:7c:61:8e:18:56:66:e1:e1:a3:04:9e:77:00:75:
22:41:a2:a9:5b:8c:73:d7:b4:8d:37:ef:77:d8:47:b7:c3:61:
bc:bc:eb:08:a9:cd:7f:e1:8f:5b:dd:e1:09:76:c8:ba:0e:64:
ac:91:f6:25:8c:d8:b1:4e:61:4f:72:02:3b:74:da:ad:f0:b7:
f1:81:e6:10:e1:eb:c9:d3:4d:a2:45:4d:e9:9d:fe:d8:4d:30:
67:ff:f1:2a:de:0d:1e:58:c3:7d:0c:fe:ad:74:d2:72:56:12:
73:3d:e5:26:4a:f9:0f:7c:ce:2e:5a:79:43:34:05:8a:61:73:
b3:76:a5:1e:87:ae:97:0d:52:94:4e:fe:9a:72:85:6b:00:2c:
e3:d7:ee:44:9e:93:f2:04:69:7c:b0:9e:93:dd:3c:d0:d2:45:
31:29:49:e9:8d:a1:e0:08:96:7f:e0:1b:a0:ea:49:ff:69:4d:
4f:5f:46:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:03:59 2025 by rpki-client