Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
File: ZKPnXG0KuryTHChHzaqGX7jX-c8.mft (raw, json)
Hash identifier: GB87S5JoJVGsDWVAh38tqRDwdbsxNMWW7m4Do5DmDt8=
Subject key identifier: CC:07:FB:E6:BB:F9:40:BC:AA:84:E8:81:A9:09:4E:0E:DF:27:A0:EB
Authority key identifier: 64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
Certificate issuer: /CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Certificate serial: 01976EBE1977B3EF6499CB2406BABB4EF739
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
Manifest number: 1521
Signing time: Sat 14 Jun 2025 14:00:41 +0000
Manifest this update: Sat 14 Jun 2025 14:00:41 +0000
Manifest next update: Sun 15 Jun 2025 14:00:41 +0000
Files and hashes: 1: ZKPnXG0KuryTHChHzaqGX7jX-c8.crl (hash: tgWy5P2M7RBr/28wquxSf5vgIvpUD6pdb/fyzV5pcBk=)
2: y9vY7PQkblV9_5mGvnjpI_1sy2c.roa (hash: IUOwXFsA4FATdHPgwe2EY1C0pHGXri80WzQO/bHofMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 14:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:be:19:77:b3:ef:64:99:cb:24:06:ba:bb:4e:f7:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Validity
Not Before: Jun 14 14:00:41 2025 GMT
Not After : Jun 15 14:00:41 2025 GMT
Subject: CN=cc07fbe6bbf940bcaa84e881a9094e0edf27a0eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9a:51:df:06:08:4e:f6:b7:32:48:2a:8a:9e:
78:c3:9b:e1:ff:5d:ce:19:13:c6:9d:68:69:28:af:
9b:30:35:af:b2:c6:93:66:43:d4:d2:7b:15:8d:f9:
e0:9e:1c:2e:4c:9e:90:cd:28:f3:0a:ac:fa:d9:56:
f7:dc:18:80:0c:db:24:cf:62:a5:93:cb:a9:dd:5f:
22:16:a7:48:22:a4:e1:72:c1:4b:b3:55:76:1c:49:
87:a3:93:51:e6:68:db:4f:e2:f0:70:67:d3:56:08:
cc:36:24:a5:e1:98:0d:b0:4e:81:79:9e:a1:ab:49:
25:2b:63:2e:e7:90:e0:6f:59:4c:f1:55:aa:33:83:
69:ca:49:70:a0:14:98:6a:6e:9d:21:1b:7c:11:73:
ba:30:9b:6f:43:6a:05:95:07:29:1e:2a:78:7d:16:
85:9d:0f:6e:aa:6c:7a:dd:a0:b0:e0:0a:81:32:ed:
2f:52:1f:bb:b8:2d:0f:63:aa:f0:b8:98:ff:7c:42:
0b:3d:82:11:8a:60:f5:f1:ee:8d:f7:0d:ef:26:95:
4d:5a:1c:a3:c3:12:0e:f7:53:a2:69:4c:94:54:b5:
63:fe:12:87:3c:76:d9:af:bd:dc:9a:10:f5:11:a4:
f2:d6:b0:09:19:07:2b:61:be:d6:f4:8f:d3:49:de:
d7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:07:FB:E6:BB:F9:40:BC:AA:84:E8:81:A9:09:4E:0E:DF:27:A0:EB
X509v3 Authority Key Identifier:
keyid:64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:3f:d5:8f:23:d0:42:aa:74:72:45:f9:2d:37:e8:d5:58:2f:
aa:f4:a8:30:30:ed:4b:2a:22:6e:71:f0:14:cb:4a:07:ee:fb:
7f:37:4f:a3:1f:3b:ec:ec:d0:78:c7:24:d6:58:e7:30:d4:53:
b1:ff:2c:a4:50:20:ca:e3:a9:cb:4e:da:4a:90:45:c4:2c:5a:
3e:7d:1c:98:d0:60:60:89:36:f0:88:20:fa:c0:9a:c2:3a:be:
c8:c7:b3:59:40:69:3f:d8:dd:b7:75:2b:a4:f9:73:5a:87:ae:
e0:e4:b4:63:20:a6:c1:bf:ac:6a:31:8f:7c:5b:41:91:d8:0a:
7a:c3:b7:b0:42:d7:6d:7c:ba:9e:0c:44:c4:82:8d:2c:79:70:
e7:ed:5c:ad:51:fd:bf:29:f5:6f:1f:bb:a7:d2:15:59:de:4f:
26:0b:71:04:68:22:45:25:d6:81:b1:4a:f1:f3:cd:a7:6c:db:
19:b9:d1:9a:77:df:82:26:d4:91:e3:fb:83:65:ed:6d:5c:b7:
16:57:d6:82:f4:b6:d8:72:7c:a2:4c:92:ce:37:ed:30:84:5c:
64:e6:eb:76:38:0f:b2:61:34:6d:4a:04:fe:56:5a:7d:d5:01:
46:cf:39:94:b2:26:94:e3:c6:95:f7:80:e9:f3:5e:4f:4a:99:
cf:e3:0d:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:35:53 2025 by rpki-client