Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
File: zTu8GVzaflgkWmHLMLlv5XL9eBE.mft (raw, json)
Hash identifier: yvVtXU3Y5wQo8dRLr7fK+53QJ1AZ3Ptf3c9WdaBhV9k=
Subject key identifier: 1E:B1:7B:4C:15:32:29:83:BC:35:BD:C5:3D:31:9D:C2:15:85:8B:86
Authority key identifier: CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
Certificate issuer: /CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Certificate serial: 01976DAB5C6DF17F21D6484B221BB60016F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
Manifest number: 0EE2
Signing time: Sat 14 Jun 2025 09:00:35 +0000
Manifest this update: Sat 14 Jun 2025 09:00:35 +0000
Manifest next update: Sun 15 Jun 2025 09:00:35 +0000
Files and hashes: 1: clDd21QzHwOlwdLoUbCFlA9N4Bc.roa (hash: b4fVPg9ViPXbDXBeIAFrk3g5qdFMK0V6puBPZsjXHfs=)
2: zTu8GVzaflgkWmHLMLlv5XL9eBE.crl (hash: eFqN9M+9fPqAUF+alxmFnjROh8y0OtDoaZqHzqf3+28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:5c:6d:f1:7f:21:d6:48:4b:22:1b:b6:00:16:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Validity
Not Before: Jun 14 09:00:35 2025 GMT
Not After : Jun 15 09:00:35 2025 GMT
Subject: CN=1eb17b4c15322983bc35bdc53d319dc215858b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a1:ba:38:c9:e7:fb:0a:d9:28:9d:d3:c6:65:
b6:ed:5e:6d:18:a3:d8:8b:50:be:61:c8:0d:ff:60:
bd:30:ed:83:90:9d:5b:0d:91:f5:47:c1:e8:1f:c6:
86:58:3d:49:3a:4a:c2:01:3a:d2:8f:ef:4b:a0:70:
43:e7:67:aa:b6:7f:06:ef:eb:11:95:0f:05:d0:99:
a2:61:ca:1a:ea:6a:d7:1a:00:b1:52:f5:83:73:45:
38:d6:8a:d3:44:e4:5d:a7:ab:a0:22:85:90:0b:19:
9f:72:a7:be:67:43:a8:7b:40:c6:c9:7e:bd:1f:61:
8f:f1:c0:a1:95:06:6c:a6:e2:85:46:9e:2e:ab:a5:
90:e9:2d:58:a0:3e:9a:e8:4c:62:8d:38:a8:45:f4:
06:d1:84:b1:24:2b:b9:18:db:6d:0d:34:aa:31:aa:
80:92:46:a4:95:60:9e:dd:42:e9:e7:92:0a:11:89:
50:60:39:4f:b4:5b:c7:fd:bf:e4:45:4a:0e:c8:66:
04:e0:a1:29:ed:d2:c4:43:c5:00:47:08:d6:56:df:
4f:89:fb:74:2b:45:6e:6d:f9:7d:c7:20:7a:2f:a5:
dd:73:1f:4b:d1:e5:cf:52:19:f6:0a:99:74:50:c1:
9b:05:80:9c:91:13:70:bc:8c:3a:c1:49:64:f3:b2:
41:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B1:7B:4C:15:32:29:83:BC:35:BD:C5:3D:31:9D:C2:15:85:8B:86
X509v3 Authority Key Identifier:
keyid:CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:44:a1:ef:77:3d:ee:0c:75:72:90:c9:72:54:d1:dd:ec:42:
70:4b:77:be:58:6e:a0:ad:15:32:d5:f8:2b:c7:92:97:ac:ef:
6c:1d:7e:af:65:85:c9:59:ee:e7:96:71:6a:e0:81:58:4f:ed:
cf:b3:6d:a8:7f:a6:a0:20:f1:7d:0a:b8:82:05:a1:79:09:bb:
9f:e3:7f:f3:07:86:55:7a:54:f5:c3:68:f3:81:30:de:90:c8:
7d:7b:a6:3f:e4:5a:96:7c:fc:e1:1b:57:4f:ff:b8:18:24:07:
23:18:98:67:69:7b:02:7d:84:e6:77:e9:c4:61:83:98:23:d3:
f1:90:1c:eb:a4:1f:ae:bf:47:d6:34:b3:9e:ca:ff:ad:53:e1:
f6:42:c4:8f:65:d2:ad:83:a2:47:36:46:ac:1c:50:e8:73:4d:
99:97:bd:ff:ee:7c:7b:c9:ea:76:73:f8:54:6b:75:99:a1:c3:
5b:9b:ec:0c:c6:02:8f:93:a5:c4:61:b8:21:8b:bc:b6:7b:a7:
5b:50:ff:55:0d:87:44:fd:b7:eb:82:7c:21:b3:f2:ad:c4:15:
b4:0e:65:fc:8c:09:19:83:22:40:9c:67:ff:93:0f:1f:85:49:
7a:04:0b:46:9f:14:82:55:77:7e:82:ef:2d:a8:44:e3:6b:04:
53:26:5a:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:52:19 2025 by rpki-client