Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
File: zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft (raw, json)
Hash identifier: 4bSilkh7rE6ivnequp7VJGnnx1CyTEoZmToIgghVYhs=
Subject key identifier: 4B:63:AD:42:B7:20:BB:56:7B:A7:E8:87:41:89:6F:F5:D3:07:1B:8C
Authority key identifier: CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
Certificate issuer: /CN=cc8df88054060df685bba9739123e8342d479e84
Certificate serial: 01976EBDE8CFEC27D6687AE79EA64078A50F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
Manifest number: 1529
Signing time: Sat 14 Jun 2025 14:00:28 +0000
Manifest this update: Sat 14 Jun 2025 14:00:28 +0000
Manifest next update: Sun 15 Jun 2025 14:00:28 +0000
Files and hashes: 1: Kyq8dvDQCWTM4SDI01T-WEma_xs.roa (hash: csmuD1qBTRKUBvLNGvxDwNNOARNFB8rqYka6vl5ZQvQ=)
2: zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl (hash: jwzwjibuHBbhlSq0eGSyEY5KZYcGmOaeZ1W8c7cykTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:bd:e8:cf:ec:27:d6:68:7a:e7:9e:a6:40:78:a5:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc8df88054060df685bba9739123e8342d479e84
Validity
Not Before: Jun 14 14:00:28 2025 GMT
Not After : Jun 15 14:00:28 2025 GMT
Subject: CN=4b63ad42b720bb567ba7e88741896ff5d3071b8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a3:44:52:39:90:a5:99:9d:be:78:b8:9f:ec:
e8:b0:f2:c2:88:ce:91:81:a1:f0:ad:94:15:b9:1d:
90:be:ad:ed:a4:0d:1d:e4:ce:49:f5:6c:0e:b2:d0:
b9:e9:2e:8a:a1:83:7b:52:98:56:8c:44:07:91:13:
01:d6:8a:1e:c0:d7:af:cb:09:db:66:ff:de:25:ee:
db:fe:5a:e0:a0:26:25:f7:54:16:46:59:78:60:95:
74:ac:89:7a:c2:70:16:e0:73:b6:b8:20:00:76:50:
e2:91:70:5b:ca:91:ff:49:0b:2d:0b:d4:1e:ad:65:
60:49:30:7e:a5:1e:bf:8e:81:fa:c5:e7:48:a5:45:
5a:b3:fe:95:0b:20:a1:1a:2c:4d:2b:69:d1:bf:ec:
d8:42:0a:2e:ee:21:b1:9d:e6:28:3a:f5:12:6a:0f:
f3:0c:d6:0f:61:8b:47:82:b6:07:2c:cc:92:f6:e3:
eb:83:00:d6:2e:23:46:95:5b:8b:cb:0a:15:59:ff:
1e:17:3f:3a:6b:69:4a:32:15:16:3d:ca:1d:fb:d8:
b9:ab:09:2f:20:c5:c5:55:1c:79:c1:40:0f:c0:7c:
ca:a9:b6:c8:b8:f1:06:dc:30:02:44:e5:5e:83:dc:
32:0a:5e:46:68:38:a3:13:3f:b5:62:8e:e4:61:04:
cd:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:63:AD:42:B7:20:BB:56:7B:A7:E8:87:41:89:6F:F5:D3:07:1B:8C
X509v3 Authority Key Identifier:
keyid:CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:f6:09:1f:94:52:c4:fe:29:4f:62:0f:68:65:b3:36:69:36:
47:93:8c:ed:d7:12:2f:36:e5:78:1f:34:2c:78:3e:1d:8a:c7:
f4:d6:99:1e:97:3c:13:a4:e7:81:c5:86:32:1a:f7:9f:d2:a0:
aa:8e:89:65:4e:e7:e4:4b:7a:d8:99:50:7e:a0:ea:3f:34:dd:
9c:14:fe:96:ab:7b:fc:15:c0:59:8d:50:90:2d:ea:c8:d4:ae:
62:17:7b:96:8b:a6:a3:05:16:49:d2:06:f0:30:84:ca:5e:7a:
23:7e:a1:4e:4e:04:03:fb:94:2c:bd:de:ac:00:4b:76:f2:76:
c1:ae:a4:8d:81:4e:99:fb:d4:6b:53:1a:7d:13:58:01:d5:45:
0a:50:71:9e:44:8e:04:03:04:b9:96:a1:72:c3:9a:3f:95:93:
f1:6e:ed:0d:c3:7f:10:2a:0f:2b:06:bb:09:1e:02:92:e2:be:
29:63:89:d9:43:89:c4:7a:60:df:3e:e5:41:07:db:19:c6:7a:
32:db:38:36:6d:26:81:0c:8d:aa:75:40:ca:25:6a:58:ff:44:
8d:8e:79:7c:b7:f8:92:62:b3:cf:26:00:66:32:e1:59:3d:3b:
74:58:95:77:04:83:5b:f2:64:80:db:a3:36:d7:06:d3:25:e1:
cc:0e:75:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:22:23 2025 by rpki-client