Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
File: zNHiiTDXen65iRtvq7spFe44hao.mft (raw, json)
Hash identifier: WQlpEy5RBNU0wUzBgxaFABQEDt8QsB+SNlnfcYenUAc=
Subject key identifier: C7:6E:5A:64:9E:36:88:22:FB:79:CF:66:94:DA:45:34:92:54:CB:5F
Authority key identifier: CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
Certificate issuer: /CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Certificate serial: 01976F2C59CA07936C7003C06D5F8554144B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 16:01:06 +0000
Manifest this update: Sat 14 Jun 2025 16:01:06 +0000
Manifest next update: Sun 15 Jun 2025 16:01:06 +0000
Files and hashes: 1: zNHiiTDXen65iRtvq7spFe44hao.crl (hash: kjWNq8AD6ELx7apBmkv4xmroPXJQh7OOzSlWlbga018=)
2: zwMZXsX6Z6y_GtPEpsaBS7FPtIU.roa (hash: bi378rHsH1o9Uq16RD7qe5x44q14EkwJzXLivtK1Naw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 16:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2c:59:ca:07:93:6c:70:03:c0:6d:5f:85:54:14:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Validity
Not Before: Jun 14 16:01:06 2025 GMT
Not After : Jun 15 16:01:06 2025 GMT
Subject: CN=c76e5a649e368822fb79cf6694da45349254cb5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d4:04:41:ca:07:8f:e2:85:de:27:3a:55:27:
59:14:ed:a0:07:2a:54:e5:21:aa:b8:72:94:21:9e:
4e:b8:b6:41:99:16:23:25:41:d0:38:e5:15:1a:be:
f6:3c:78:5e:68:6d:73:a9:dd:96:e7:a7:85:3d:cc:
9c:d4:eb:f1:ce:0c:c8:fb:49:f5:12:43:39:67:7a:
6d:98:4c:9c:27:b1:87:ca:d3:5b:92:1d:aa:f7:95:
61:2f:2f:80:1f:46:5d:8f:8d:73:8b:69:9e:d7:e0:
4e:0d:55:57:f8:13:70:a2:c4:7f:24:cc:f4:54:31:
4b:9f:49:e0:49:b3:2f:7b:f6:37:27:43:f4:81:78:
0f:bb:e4:d5:11:03:e1:3f:79:9d:fa:63:9e:f1:2e:
51:51:23:47:5c:aa:74:62:76:4b:39:d3:97:11:4a:
d1:11:77:f5:44:ae:e0:ce:4d:7b:67:52:a1:06:08:
de:55:f4:8e:4a:e5:15:bb:3b:68:e3:b9:ca:1a:e8:
3f:94:58:19:32:37:52:fc:5f:e2:f8:bf:fc:2c:a5:
ef:87:0b:ef:4e:eb:e7:14:48:74:52:80:c0:94:ad:
65:2f:05:66:53:ce:ae:8f:07:10:39:2e:6a:0a:e2:
ab:73:5a:a0:c8:06:71:72:d6:e1:4f:25:16:9c:dd:
62:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:6E:5A:64:9E:36:88:22:FB:79:CF:66:94:DA:45:34:92:54:CB:5F
X509v3 Authority Key Identifier:
keyid:CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:28:ed:13:a6:79:41:10:4c:84:57:b7:f2:22:d9:6f:89:f8:
13:d1:6e:b4:a6:8f:ab:55:b6:4e:e2:56:b0:f5:96:8c:c6:e5:
09:4b:56:d5:79:e4:dd:db:95:e1:71:23:89:4e:aa:8f:f2:96:
b0:2d:33:bf:c1:b2:41:3c:39:25:b1:89:cb:50:e1:eb:88:c9:
d2:3a:b1:ed:6f:3a:12:33:fc:c8:6c:30:48:b8:76:12:64:23:
cf:8e:ef:f8:d7:6f:e2:7c:9f:ec:fd:bc:91:5a:13:60:ea:23:
18:28:67:dd:da:42:17:4d:ee:16:34:20:33:19:ad:eb:06:89:
fd:ab:f1:c4:06:a8:43:d5:d0:b1:02:b9:f2:44:48:53:8d:ea:
95:d2:71:2d:e3:ec:e1:1d:93:92:69:08:4e:c3:cb:30:c5:3e:
b1:14:be:64:ee:b1:d5:0f:b3:2c:3f:b5:27:4f:26:63:05:1e:
6a:c7:ba:d9:ca:c8:41:8d:50:79:7c:d7:79:45:9d:01:9e:13:
a9:3e:f5:77:9f:eb:cd:e6:d7:3e:ca:6f:13:ce:66:15:ad:70:
17:30:22:31:87:ed:f7:d0:68:a1:64:d3:1f:f6:7f:cd:7c:3c:
fb:11:36:09:f4:93:5e:05:bc:4f:28:fb:b1:23:7a:cd:cb:25:
0c:c7:11:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:49:14 2025 by rpki-client