Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json)
Hash identifier: Np9mYdqfQcm3wHlULfne38Zu3qSeXFuuBm99wvp2K1Y=
Subject key identifier: 22:B8:CF:9E:BF:1B:59:68:77:E5:7E:8E:F3:21:3F:7E:DB:55:10:B5
Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189
Certificate serial: 01976D064B44C1EFBFFD8BFA52779D29CE49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
Manifest number: 1520
Signing time: Sat 14 Jun 2025 06:00:18 +0000
Manifest this update: Sat 14 Jun 2025 06:00:18 +0000
Manifest next update: Sun 15 Jun 2025 06:00:18 +0000
Files and hashes: 1: PF8Dfwpieuc3szZWNlM6zxbOCaw.roa (hash: eEI5JJg+vshmiZesKoh8QcSvz/GrsPF5AtTzxYWQZk4=)
2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: WLc93XUu4gML7wFJ3aTs56OflvAmG4N0cYAHp3teOJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:4b:44:c1:ef:bf:fd:8b:fa:52:77:9d:29:ce:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189
Validity
Not Before: Jun 14 06:00:18 2025 GMT
Not After : Jun 15 06:00:18 2025 GMT
Subject: CN=22b8cf9ebf1b596877e57e8ef3213f7edb5510b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8b:e4:3e:ca:81:f3:c3:00:a7:67:9b:2d:c1:
86:cb:3c:09:9e:fb:5d:5e:b8:10:73:fa:ad:b8:2f:
64:27:d1:1d:2c:bc:2d:7a:e8:82:36:ac:14:af:1c:
d4:5c:fe:d8:1d:ca:fc:41:91:ff:ee:37:50:02:ce:
9c:d6:e5:34:31:c1:a0:8d:33:aa:ad:b8:89:1f:d6:
74:58:c6:1e:d2:38:a7:6b:b6:b3:76:0a:78:87:47:
1b:ca:42:c4:e0:72:b2:b0:5a:9d:2d:15:a8:4c:b6:
9a:0c:a7:12:f5:82:56:db:82:55:7e:61:b4:b5:85:
c7:a7:78:59:d9:a0:74:9a:a2:ba:8c:43:33:d3:1b:
58:eb:30:3d:11:e4:7f:e6:09:76:46:2b:d6:0b:69:
40:72:4e:92:13:c5:c6:68:ac:43:86:0f:e4:dc:5f:
0e:d1:59:16:f9:1c:66:99:1a:4e:04:6e:ce:f1:32:
fd:a6:b2:c7:91:6e:9e:57:8b:0e:51:75:6c:cc:3f:
b6:33:ce:4a:15:21:59:17:32:a2:0b:20:b7:3e:7e:
e8:7a:bc:95:d0:92:66:ab:f0:42:dc:bc:d2:e9:6b:
ab:76:f3:56:35:cf:f8:29:6f:b8:15:c6:22:82:db:
6f:52:9a:15:88:1a:0d:43:fa:82:27:f0:64:24:09:
b1:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:B8:CF:9E:BF:1B:59:68:77:E5:7E:8E:F3:21:3F:7E:DB:55:10:B5
X509v3 Authority Key Identifier:
keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:79:43:72:1b:3b:76:e2:c6:67:29:7f:4a:ca:7c:80:93:3d:
d8:8d:99:e3:1d:71:3f:c3:6e:3f:f4:0a:49:c7:b0:21:6b:e7:
23:f5:4e:d7:5b:a6:dc:12:36:86:71:47:b2:62:d6:02:87:7a:
76:3f:b7:72:c0:90:6a:90:d1:de:4b:0d:28:0d:67:28:0d:78:
d8:3d:a5:54:4d:5f:0d:95:02:fa:4d:7d:f6:72:c0:7c:e8:b4:
e0:29:de:2d:51:7b:b4:c1:ee:37:cc:96:bf:88:4a:36:d7:60:
b2:4a:86:c3:61:65:ba:c9:1a:27:d3:af:50:07:51:9e:1e:38:
dc:02:29:87:0e:a7:cd:e4:e0:70:15:a2:48:11:ce:38:a5:36:
cf:4b:be:5f:19:4f:ca:08:7b:84:dc:34:d6:bc:39:48:c3:30:
99:65:d0:81:a8:84:9b:10:6d:3f:e7:6e:15:d8:87:04:f7:32:
d6:e0:14:9c:09:23:25:9d:ba:03:54:aa:c6:17:03:2e:00:33:
a7:c9:54:83:0a:9e:e5:57:2f:d6:a6:58:8f:04:d9:9c:97:22:
15:01:a5:d6:55:8c:ee:56:84:3d:39:23:f0:6a:fa:94:ad:77:
72:96:90:e6:6f:2b:ed:51:38:59:75:1e:a9:fd:77:3f:4e:46:
a4:ad:54:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:13:40 2025 by rpki-client