Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
File: ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft (raw, json)
Hash identifier: mXXc83Ge4Xq4g3Z4bioduz5hqsrpFEfm5P9p+Iv95dg=
Subject key identifier: 35:90:E7:A2:9A:5C:EB:C0:AF:E7:4C:D3:74:92:A3:18:F7:CD:5E:20
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 019770AC7FB94D319FD93C31608F30C588D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
Manifest number: 0C75
Signing time: Sat 14 Jun 2025 23:00:42 +0000
Manifest this update: Sat 14 Jun 2025 23:00:42 +0000
Manifest next update: Sun 15 Jun 2025 23:00:42 +0000
Files and hashes: 1: RA9kR943QDfswVQ2De2E5cFSYaU.roa (hash: jCT5nXHXTc0Nn3QbV8+Qje22n9CHMzdTyZ/tDlKS5Ck=)
2: ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl (hash: enKnNbDAtp96EvAKpNIihaNECSyRxj4nm8fR+1fEgQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:ac:7f:b9:4d:31:9f:d9:3c:31:60:8f:30:c5:88:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Jun 14 23:00:42 2025 GMT
Not After : Jun 15 23:00:42 2025 GMT
Subject: CN=3590e7a29a5cebc0afe74cd37492a318f7cd5e20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:9e:8c:4a:ec:10:b1:93:bd:87:5b:29:bf:95:
bd:6b:57:b7:57:c4:f4:05:a6:16:42:d3:dd:77:e2:
3b:27:30:be:9a:b0:9a:c6:19:b9:31:b9:c6:f5:b7:
bb:37:63:a2:4b:d0:c3:1a:ba:72:0e:98:26:14:3a:
1d:21:7c:ee:b8:b4:97:31:59:6f:44:8e:de:0c:b9:
d1:61:5f:1f:55:a7:60:92:cc:71:fa:f9:fe:a0:ab:
c9:76:74:80:e8:4e:58:5f:8d:4b:5f:87:2c:ae:51:
84:d0:6b:4e:31:58:fa:e6:c2:2f:b4:3b:fb:54:ea:
17:df:cc:11:3f:fa:dd:9d:25:6b:c8:13:ac:f5:9c:
b4:ba:36:d5:bf:81:b3:36:72:6d:98:38:4d:9d:9b:
3e:20:a4:83:ce:35:51:6b:64:bc:34:e7:b4:4b:ca:
9d:47:c2:cb:75:55:4b:d2:fc:a2:ad:de:0b:4d:d9:
60:97:a5:2b:fd:4f:fa:15:d0:ba:6f:69:13:cd:ab:
31:87:9a:f3:f2:3a:84:0b:86:a4:7f:6d:7a:83:c4:
0d:39:f7:dc:f4:2c:a8:4a:53:f2:46:96:51:6a:5f:
8a:b7:4b:0c:3d:f5:6b:db:b8:37:a8:68:f1:2a:4a:
85:c1:43:ac:f3:9c:1c:f5:3f:2a:c8:1a:eb:52:2a:
12:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:90:E7:A2:9A:5C:EB:C0:AF:E7:4C:D3:74:92:A3:18:F7:CD:5E:20
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:75:88:33:37:09:fa:48:2c:b7:7c:fa:54:72:67:ae:1d:e5:
77:a4:66:1e:57:c5:54:c1:d0:88:22:08:1d:9b:cc:6c:ff:58:
ba:fa:9a:88:bc:bf:ca:8b:8c:32:1b:97:1d:64:e8:c1:c1:e5:
cc:04:44:0b:0f:ae:21:c0:32:cf:16:42:1b:c0:a0:0b:83:03:
58:09:cd:ad:d8:5d:39:f6:c1:24:ff:0b:9d:09:80:08:3c:8a:
c4:e5:86:57:38:6c:08:71:35:a7:4a:c3:77:20:c7:0d:91:ba:
6e:81:74:65:8c:59:84:28:f5:3b:72:98:83:76:d0:9d:4c:d6:
cd:97:b7:0a:7c:3e:1f:54:ac:55:67:5a:31:e2:4c:f1:7d:e0:
62:5e:84:c9:c0:97:b7:d6:4e:0c:08:45:a6:c0:9d:6b:68:0d:
6f:6e:dc:68:12:75:65:e9:3b:bc:ba:d5:63:b8:21:c1:5c:40:
86:8e:61:db:94:a9:6a:2f:ec:c7:b6:b5:8c:00:91:55:66:d2:
00:59:92:e3:f9:b8:8e:59:ea:df:ac:54:3f:c0:12:1b:36:62:
4c:22:b6:56:ce:3a:0a:48:92:b7:19:78:60:a7:35:b0:a0:db:
80:37:1e:13:64:76:38:da:a8:8b:d3:52:cb:db:5d:5b:88:7a:
40:5d:ad:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:38:38 2025 by rpki-client