Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
File: Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft (raw, json)
Hash identifier: wywQeRrTu/NdZlnU9PQNp52X3njav8l7pJVsja/BNPc=
Subject key identifier: 02:FF:2F:40:A4:12:5D:09:1D:1C:94:35:D3:A5:75:D6:01:B2:1B:D2
Authority key identifier: 67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
Certificate issuer: /CN=670ec53068393d90db601ec295e42908525e10c2
Certificate serial: 01976F2C6AFEE1FDA14604D265F6FFF8DC36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
Manifest number: 0C7A
Signing time: Sat 14 Jun 2025 16:01:11 +0000
Manifest this update: Sat 14 Jun 2025 16:01:11 +0000
Manifest next update: Sun 15 Jun 2025 16:01:11 +0000
Files and hashes: 1: Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl (hash: KtFz1wizIaUPHNi0Gnm9SVIieulXX4UYtv3OjMBCRWU=)
2: g-_eT5ct7bDp65zymgf5llHzTKc.roa (hash: 6qrqxL/Wtd1D30D40m2/VyQoFXL4FQNDdMtRsZ56brc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 16:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2c:6a:fe:e1:fd:a1:46:04:d2:65:f6:ff:f8:dc:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=670ec53068393d90db601ec295e42908525e10c2
Validity
Not Before: Jun 14 16:01:11 2025 GMT
Not After : Jun 15 16:01:11 2025 GMT
Subject: CN=02ff2f40a4125d091d1c9435d3a575d601b21bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b3:d1:6a:f8:78:92:02:eb:c3:08:2a:36:d9:
1d:b2:cb:9a:9f:3a:ad:a2:e1:ba:c2:c0:2a:9d:db:
55:7f:8e:25:f2:f7:ea:54:c1:9f:fa:0c:3b:5e:ee:
fa:ed:a4:59:50:84:a6:c1:7f:6f:e4:89:d2:01:bb:
40:4f:49:3a:7d:37:3e:bc:21:ae:bf:39:a9:67:5d:
92:6f:a1:c0:0b:90:d5:64:fa:d1:7d:08:e2:7d:33:
f4:d2:73:79:c3:32:52:33:bf:86:da:c8:04:55:fb:
a9:c8:98:0c:62:dc:46:49:8f:06:17:0c:31:52:01:
15:74:ae:fc:e0:53:ec:84:48:6c:10:b1:2e:13:0c:
64:5f:92:fe:3e:94:c0:b6:d7:e2:2c:f8:c3:95:3b:
9e:bd:f4:0d:b1:2b:63:c3:e1:ac:41:dd:0f:0c:29:
0c:c1:f0:39:9f:74:86:b9:71:55:6e:3b:75:ad:2f:
a3:86:30:d5:a5:68:d8:5a:c1:95:fa:18:76:fc:77:
77:46:c9:a8:e0:d0:62:7c:83:37:b4:b1:41:c9:3d:
1c:c3:7c:eb:b8:2b:82:92:96:9e:9a:0e:bd:f9:a5:
38:46:0b:66:96:9c:4d:5c:80:e7:3b:90:f1:21:10:
c3:b4:51:48:30:42:b3:9b:52:4c:ec:15:83:a5:99:
06:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:FF:2F:40:A4:12:5D:09:1D:1C:94:35:D3:A5:75:D6:01:B2:1B:D2
X509v3 Authority Key Identifier:
keyid:67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:06:5a:dd:87:7f:74:d0:06:7e:ed:24:4e:3f:14:61:a7:f9:
e5:d1:79:a7:ed:c0:34:cf:d2:88:b7:63:93:c0:34:40:7f:7e:
82:f9:e7:b6:74:5f:60:52:33:c4:7d:3b:e9:8e:90:3a:e5:e8:
be:c7:c3:e8:64:35:9e:ed:5e:36:4a:05:53:83:d0:50:35:35:
79:6f:af:92:19:2c:e1:1a:0e:04:2d:fc:4e:b3:83:db:30:5d:
c4:d4:ba:83:b5:16:0e:f8:a8:0f:b3:20:a5:c2:dc:c0:8d:c3:
0c:38:6e:06:49:aa:b6:eb:e8:52:8c:eb:55:d3:ff:90:dd:6a:
f7:fe:69:9f:c2:89:6b:02:f0:64:db:ff:26:72:cc:b8:8e:c8:
c2:f8:6e:12:83:6e:9e:ae:68:6e:57:5c:f9:8c:b9:59:73:60:
01:e2:3d:1d:e6:ef:a2:7c:31:68:56:ea:bc:ee:8e:9c:0b:02:
16:e7:ae:e4:e6:12:87:e4:83:4d:60:bf:0c:28:49:9c:81:76:
2c:50:dc:90:f4:b5:14:af:84:b7:6d:78:85:bd:15:d5:be:54:
4a:e9:94:ac:cc:0a:cc:ce:c6:b3:9c:64:5d:00:7f:ed:72:1e:
2e:01:35:05:5a:e9:24:d6:51:99:c9:78:8f:88:23:e6:59:ee:
de:84:cc:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 01:08:28 2025 by rpki-client