Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
File: zl1FYESPeKTc3LeRoH2tIWOgjN8.mft (raw, json)
Hash identifier: 2qNEEVHtbUp0PZNX2BcCbYBjiKZNUHnYTq34Ii8810c=
Subject key identifier: 06:28:7F:49:14:90:71:95:7E:AC:AB:80:79:6C:7C:A0:50:7D:30:92
Authority key identifier: CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
Certificate issuer: /CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Certificate serial: 0197711A3BDB7498CF99757F1D29F32638A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
Manifest number: 1524
Signing time: Sun 15 Jun 2025 01:00:33 +0000
Manifest this update: Sun 15 Jun 2025 01:00:33 +0000
Manifest next update: Mon 16 Jun 2025 01:00:33 +0000
Files and hashes: 1: DnVFEpYRkYdsvx6fTEjYM0mnXYg.roa (hash: Q/XnpIbexx4X2BOItVZgFWxgUIF3KGLUNsRlADlMLPI=)
2: zl1FYESPeKTc3LeRoH2tIWOgjN8.crl (hash: QY+SwGz0cbMyvmN3rll5HPHwQTFXCZW5zmw5FG/0jgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:1a:3b:db:74:98:cf:99:75:7f:1d:29:f3:26:38:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Validity
Not Before: Jun 15 01:00:33 2025 GMT
Not After : Jun 16 01:00:33 2025 GMT
Subject: CN=06287f49149071957eacab80796c7ca0507d3092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1e:3f:27:dc:b6:1e:38:37:c0:4b:79:51:12:
af:76:b3:0d:93:f7:f0:7a:eb:86:df:b7:21:41:2e:
60:8f:19:00:5c:f7:48:f3:44:14:55:bc:49:9a:36:
77:03:59:c1:4d:11:1a:14:d5:80:61:0f:f9:04:e8:
a1:89:a5:b9:bc:14:3a:f8:cc:fe:8a:87:ed:8f:65:
c6:f0:c3:ed:17:0e:4d:d2:a4:0a:1f:26:61:91:a7:
0a:94:cc:f8:a8:c0:5f:44:99:4b:76:75:b0:4f:9e:
47:de:d2:f9:00:da:1c:a3:90:2d:9c:af:64:b1:0d:
13:54:e0:8f:c5:ac:6c:27:8e:db:45:90:65:c6:a1:
e2:30:b9:c0:76:f7:dd:c7:4e:09:11:1a:81:bf:58:
ce:87:ef:eb:40:44:28:25:ce:6f:e5:fa:a4:9b:15:
c9:02:3d:de:7c:b9:bf:53:39:65:2d:db:c6:10:f8:
d9:7f:a7:df:1d:fa:a0:2e:f3:51:fc:ef:67:dc:b7:
f7:f1:51:e2:83:14:26:7d:1a:ac:a2:74:96:b9:c7:
a4:7d:ae:94:51:a2:3e:5f:ae:23:c5:96:1a:af:85:
3d:27:2e:22:12:43:37:49:d5:55:fe:af:2c:33:7c:
7b:3b:30:2f:ea:2f:00:65:8f:e7:5a:39:87:a2:c6:
65:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:28:7F:49:14:90:71:95:7E:AC:AB:80:79:6C:7C:A0:50:7D:30:92
X509v3 Authority Key Identifier:
keyid:CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:8b:bd:69:49:f0:dc:fd:13:6e:98:40:93:8a:92:3e:4a:52:
f5:f5:78:df:da:ce:60:d8:70:c7:49:86:78:e3:dd:41:8b:eb:
28:22:c2:cf:d4:ed:83:7b:4e:24:28:91:ca:a4:45:6e:04:1b:
b1:2c:2b:07:97:51:0c:76:5b:1e:e4:b0:6d:cc:52:39:40:c9:
bb:7c:94:ea:a1:be:63:09:d5:3b:67:54:1e:02:ac:6a:d4:a2:
e5:c5:83:46:1e:ae:75:12:e9:5a:6a:f7:d5:3b:16:66:8d:cd:
8b:c3:0c:b2:be:46:70:e7:d9:04:d6:f8:aa:2e:01:22:bc:e9:
7b:93:30:b1:cc:83:06:fb:b4:67:93:c5:d4:33:17:3a:7c:56:
8b:76:e1:e0:5b:b7:2b:fd:e3:8b:18:7b:0d:34:e9:f9:c7:72:
14:56:f6:db:03:8a:fc:52:a1:3e:51:d3:90:0b:c0:a5:14:48:
a6:b9:d9:cc:32:67:c8:78:81:90:da:c2:0a:3b:17:73:79:e4:
86:15:2d:88:c1:0c:43:43:f6:0a:b5:06:98:8e:ee:74:99:dc:
b9:d6:8f:85:ee:71:01:23:af:77:09:6c:77:ab:1f:95:8c:ea:
73:bd:80:65:74:91:96:7b:58:a3:b3:b0:52:08:80:fc:8a:a2:
b2:55:e3:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:53:59 2025 by rpki-client