Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
File: z2hDzhUimoAj2X-iejflkniyv9c.mft (raw, json)
Hash identifier: dkO8OiNe01jGmUK7YPGDQQlDljUxtF4X1GYqhbYusm0=
Subject key identifier: DE:D4:D4:72:74:07:4D:B9:E0:AA:44:40:1F:51:20:BE:9D:9C:29:F1
Authority key identifier: CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
Certificate issuer: /CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Certificate serial: 01977488FFA70BA18AA69EFD7C9741C4079A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
Manifest number: 0B80
Signing time: Sun 15 Jun 2025 17:00:24 +0000
Manifest this update: Sun 15 Jun 2025 17:00:24 +0000
Manifest next update: Mon 16 Jun 2025 17:00:24 +0000
Files and hashes: 1: pZ2-rl1wvNOlZXWq6r9tiMcpCLE.roa (hash: UTgRZg+3/3Y1WSaSgU/Ax1MIkqu5a18zaZd2IsaahgY=)
2: z2hDzhUimoAj2X-iejflkniyv9c.crl (hash: ToPFd2m2+5LjUaG5+EcDQUq11AV7lmfMxEqK6bDY4Ho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:74:88:ff:a7:0b:a1:8a:a6:9e:fd:7c:97:41:c4:07:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Validity
Not Before: Jun 15 17:00:24 2025 GMT
Not After : Jun 16 17:00:24 2025 GMT
Subject: CN=ded4d47274074db9e0aa44401f5120be9d9c29f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:7a:e8:cf:1f:0e:04:da:69:47:3b:cb:c9:45:
f2:cd:1c:d5:63:cd:1f:6a:15:3c:0b:80:09:1d:04:
6e:76:3a:f9:1f:f6:3c:86:f6:47:03:7e:2c:26:b3:
cb:89:22:91:13:f4:a9:c4:46:94:c5:ab:ad:b7:66:
b1:24:23:35:97:17:29:9b:4e:66:44:b1:6f:31:b0:
af:4c:10:05:f9:f6:3a:a2:a7:47:c8:53:6e:bd:a9:
b1:3b:e2:5d:c2:4f:b6:47:3f:26:02:6f:95:41:31:
9d:2f:6a:29:d8:d7:83:18:7e:f3:69:ca:d3:59:4c:
e7:c0:b8:db:ab:d9:37:a8:a2:04:bd:87:c2:03:b6:
54:52:af:fb:fc:6e:f1:34:3a:bb:d5:84:90:56:85:
ee:14:79:5d:42:6c:db:9b:d1:14:b2:ce:9a:84:60:
4a:28:5f:82:17:b3:b8:de:c4:ef:35:f6:31:f9:28:
3b:29:a3:87:32:87:b8:23:ff:5c:32:84:e1:52:3e:
48:1f:d8:87:46:10:86:8a:09:44:ef:18:3b:7e:24:
94:26:d7:1a:a4:12:4c:b8:65:77:a0:37:90:94:38:
d7:2d:4d:cc:9b:ac:76:50:73:db:a7:58:09:4e:f4:
52:68:d2:76:35:8e:9d:2d:07:d7:c9:78:90:38:24:
96:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:D4:D4:72:74:07:4D:B9:E0:AA:44:40:1F:51:20:BE:9D:9C:29:F1
X509v3 Authority Key Identifier:
keyid:CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:31:a3:e3:22:a7:0e:5d:d3:58:2b:84:a3:c2:85:26:57:57:
49:7e:b5:39:25:95:a5:97:94:ba:09:13:3b:f4:14:68:f9:8d:
ea:fe:1e:05:e2:53:b1:ed:2a:78:39:e1:7d:2e:b5:c3:c3:81:
76:ba:9e:7f:2e:2b:50:ad:ff:c6:ae:6e:51:13:44:4e:c6:06:
b0:e7:71:24:3f:0e:bc:5c:e6:42:47:0b:d6:34:ad:4a:bc:e0:
41:f3:2b:7f:a9:d7:06:d5:95:57:eb:7c:1d:2a:c6:da:31:57:
e2:d8:ba:d3:00:b3:e1:80:87:68:3c:57:ce:ec:5e:ca:f6:07:
e2:19:d9:27:e9:d4:ba:1a:f7:c8:b9:ec:09:c3:c4:d4:ee:da:
01:19:2f:2c:70:9d:ff:3e:6d:e1:cb:1e:e0:d5:2d:0d:00:0c:
7d:9b:12:df:4d:ba:c4:4c:36:29:79:6b:1d:2a:65:92:60:54:
28:37:18:50:2f:e5:3f:60:23:5b:36:e8:b4:ed:20:ad:83:c7:
47:72:af:64:4a:a5:87:0c:af:6d:54:7b:c4:77:8c:d1:c6:a6:
57:37:3e:c7:25:68:ae:69:1e:36:03:f0:0f:31:99:41:f2:33:
a9:6b:7d:b1:86:b4:c3:80:83:31:f8:29:85:49:dd:c9:03:b5:
cb:fc:7a:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 00:04:16 2025 by rpki-client