Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
File: zT5kktRzFSDB7tvNopZ5UArAg6s.mft (raw, json)
Hash identifier: BNhgJwpGwBAMZ2/lD5ZNbpRMf32BSrp3qFoUQY/gEgU=
Subject key identifier: A9:E2:EB:F6:3C:FF:6B:7F:1F:BA:B1:60:AE:AC:6F:5B:9A:3D:69:82
Authority key identifier: CD:3E:64:92:D4:73:15:20:C1:EE:DB:CD:A2:96:79:50:0A:C0:83:AB
Certificate issuer: /CN=cd3e6492d4731520c1eedbcda29679500ac083ab
Certificate serial: 01976A7321347B6944E888B4E24DF632FE33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
Manifest number: 045B
Signing time: Fri 13 Jun 2025 18:00:19 +0000
Manifest this update: Fri 13 Jun 2025 18:00:19 +0000
Manifest next update: Sat 14 Jun 2025 18:00:19 +0000
Files and hashes: 1: COOSirhVHTLVRSIt4NAQH8L8vr4.roa (hash: tu1lQ0uqkhi4vcEmV6leM3hmh+odZkH5lyLz+npAcNE=)
2: zT5kktRzFSDB7tvNopZ5UArAg6s.crl (hash: I9F2/mx3ttx5DYIhHDfxcKHSVZzKGMoxfcFy47c7QsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:73:21:34:7b:69:44:e8:88:b4:e2:4d:f6:32:fe:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3e6492d4731520c1eedbcda29679500ac083ab
Validity
Not Before: Jun 13 18:00:19 2025 GMT
Not After : Jun 14 18:00:19 2025 GMT
Subject: CN=a9e2ebf63cff6b7f1fbab160aeac6f5b9a3d6982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:58:65:9c:53:10:c5:74:ac:9f:03:9d:a2:a2:
d6:3a:78:19:6b:b1:98:11:6e:a3:96:9e:39:d0:2f:
a0:22:8d:f2:60:e0:35:03:0f:26:48:1e:25:72:a1:
00:0e:11:a6:88:57:83:8a:4a:50:a7:f9:1f:0f:84:
58:6a:e2:34:c6:b0:78:22:9c:91:b4:7f:1d:8c:ac:
94:f9:b3:12:7e:8d:be:97:95:25:14:fc:c4:68:ab:
4d:e8:58:f8:20:db:db:2a:9c:db:37:30:1a:24:b0:
de:3a:04:ac:e0:9a:97:af:31:82:fb:65:66:bd:af:
f7:db:5b:0e:fc:ca:c6:a1:b4:2f:f0:f2:21:d9:dc:
c3:fd:ea:21:e7:a2:7a:e3:33:e6:4e:51:14:7c:e3:
4e:89:c6:4d:0b:05:c9:f3:64:d4:ea:81:88:3c:20:
53:07:78:20:d4:75:fb:c5:2c:b5:ff:82:00:6b:54:
03:ec:2a:15:45:70:a8:bb:a8:bf:d7:8e:8f:64:e6:
94:5b:36:68:62:d3:61:18:c1:cc:f0:99:14:45:24:
d4:66:5c:8c:56:f4:09:29:69:8e:e4:ba:99:cd:51:
5e:b6:55:7e:e7:ef:26:42:e8:21:b2:92:4b:75:73:
c0:30:f5:b4:8e:c3:cb:94:37:d5:64:7b:4f:b6:94:
2f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E2:EB:F6:3C:FF:6B:7F:1F:BA:B1:60:AE:AC:6F:5B:9A:3D:69:82
X509v3 Authority Key Identifier:
keyid:CD:3E:64:92:D4:73:15:20:C1:EE:DB:CD:A2:96:79:50:0A:C0:83:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:85:79:16:30:c7:06:1d:57:f4:0a:ad:af:4e:b2:e0:e7:2a:
d5:6f:bf:28:d2:ca:23:1f:e8:8b:64:d1:0d:61:75:d6:7e:d5:
c9:85:c5:0a:0e:e2:b1:de:72:9e:19:d6:0f:0d:b8:a0:af:77:
dd:fa:c8:04:55:57:32:82:6b:80:58:56:a6:d3:a7:9c:b1:5b:
ec:bb:93:3d:aa:7e:87:65:9f:72:23:a6:3b:fd:27:07:3a:e8:
f9:76:01:d0:de:88:29:f6:c1:d8:6d:50:5e:d6:87:9e:8f:9c:
5d:92:08:b4:30:86:4b:95:6b:a2:eb:bd:3c:da:21:15:a4:61:
57:f0:26:84:f8:45:04:a0:26:57:3f:b1:97:f0:a4:db:8b:35:
88:db:34:f2:b4:25:34:3b:79:cb:74:cc:73:3e:a6:94:eb:03:
19:a8:34:d4:d7:d1:8f:29:58:16:ab:75:91:ca:75:36:92:e1:
74:23:fe:b6:da:1e:9b:62:dc:16:f6:71:2e:22:b9:8e:cb:e7:
44:56:f3:c4:64:95:6b:d7:0b:73:a0:af:7d:2d:b3:d5:9a:ab:
65:32:91:c1:31:70:9e:93:ac:f7:e3:52:4b:de:7e:91:c0:af:
cb:d1:31:66:97:eb:6c:c8:b7:7c:1f:db:d4:0d:86:a5:c6:e6:
a0:c5:d8:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:05:05 2025 by rpki-client