Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
File: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft (raw, json)
Hash identifier: pplWCA5Ytcfp2hATWoJhZoAcrMgiljqn0yCGz+Zx73U=
Subject key identifier: BF:52:E5:AB:76:7F:9C:7D:6F:76:4B:B5:21:6D:A6:0C:FC:CF:E3:17
Authority key identifier: 66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
Certificate issuer: /CN=66ba8d64e901b39b501ed3693ec27430713886e3
Certificate serial: 01976C624B8403A045FED6BFE6230E49DBC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
Manifest number: 0EFC
Signing time: Sat 14 Jun 2025 03:01:10 +0000
Manifest this update: Sat 14 Jun 2025 03:01:10 +0000
Manifest next update: Sun 15 Jun 2025 03:01:10 +0000
Files and hashes: 1: Fg0QsDS_oIn0AHFloFbOWLXLPYw.roa (hash: PCZ0sNE5BS8dEXbU+ksvDG3w1iOi7xIBrn9yDW7TZ/U=)
2: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl (hash: vZPhxShNDYG6z79avKK4Ay2hkS+2+UrzJMzj/6WbFGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:62:4b:84:03:a0:45:fe:d6:bf:e6:23:0e:49:db:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ba8d64e901b39b501ed3693ec27430713886e3
Validity
Not Before: Jun 14 03:01:10 2025 GMT
Not After : Jun 15 03:01:10 2025 GMT
Subject: CN=bf52e5ab767f9c7d6f764bb5216da60cfccfe317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b9:13:2f:83:e8:b2:1f:df:d3:99:71:a3:55:
34:b7:43:80:12:93:e3:28:b0:17:d1:cb:c1:1d:48:
e1:85:17:38:f0:c2:82:2e:cd:f8:d6:35:de:6a:9d:
fa:3b:0a:1f:e7:47:1b:04:7c:7e:98:24:5d:7a:94:
4c:11:1a:b2:b4:f7:fc:1e:a0:0d:4f:7c:91:f3:4f:
58:ed:ad:0a:f3:73:d7:e9:9f:48:47:15:93:96:3e:
0b:0e:2c:a9:17:bc:84:bb:47:59:df:0c:76:d1:42:
db:8f:38:eb:4a:01:ab:41:95:e5:2e:9f:0c:9c:7f:
49:7c:69:2b:8f:44:eb:24:28:49:d9:c0:93:ae:a0:
da:36:75:28:db:62:31:1a:d4:2e:88:3f:5a:71:4b:
ca:f2:d1:57:87:1a:13:1f:86:62:4a:4f:b8:f0:02:
dd:9f:9e:50:69:02:ef:91:49:ac:c1:0b:e6:b9:ee:
56:e0:47:8e:d3:aa:16:1d:c6:3b:4f:65:a9:cf:39:
2e:b5:c6:58:96:4c:17:e3:1e:0a:32:8d:f1:bb:48:
7b:71:c6:cc:0f:d2:f9:62:89:4d:bb:ae:e0:6a:6d:
c9:73:b6:df:f2:16:4a:2f:68:72:13:07:8a:e3:0f:
9e:24:ed:75:15:dd:75:8c:80:60:ea:88:41:48:24:
8f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:52:E5:AB:76:7F:9C:7D:6F:76:4B:B5:21:6D:A6:0C:FC:CF:E3:17
X509v3 Authority Key Identifier:
keyid:66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:3a:9a:1f:80:9d:43:ca:6c:22:f6:b3:6f:14:79:69:a9:1a:
92:87:ad:23:7c:85:11:b0:56:77:4b:1f:0e:e0:58:4f:a2:ed:
66:a1:7a:0f:64:3b:5d:e2:43:dc:8c:79:e5:e2:05:71:12:73:
7a:3a:47:12:71:92:0c:cd:db:62:ae:47:ba:c5:54:86:b6:1d:
3b:61:1e:c9:a4:24:47:e9:30:a6:1a:68:83:1d:e1:bd:82:2b:
38:88:16:4c:80:c7:99:0f:79:64:16:44:a9:ca:d3:4e:74:08:
de:0b:dd:ba:c4:7c:a9:2a:22:2e:9b:08:e9:15:c5:1c:25:80:
0f:74:40:b8:ab:de:a8:5e:e7:89:bb:9a:c0:92:82:fd:f2:d9:
cf:11:25:4d:61:b2:97:b2:56:2c:13:f1:62:a8:53:da:a6:43:
1e:2d:b1:af:b5:56:a9:ca:ac:6c:22:c8:10:04:68:b7:8a:49:
9b:28:59:d1:18:86:1d:74:0c:a0:68:9a:3d:68:34:af:99:62:
bb:6f:cf:a6:f6:18:2b:95:ec:21:24:aa:f7:fc:77:85:f5:04:
09:54:98:56:0d:3b:02:4f:7e:fb:59:c7:e5:3c:aa:f5:3f:d2:
88:71:2f:42:98:a6:44:09:54:ec:e4:f4:00:83:6f:de:c1:6d:
a4:e9:e9:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:11:04 2025 by rpki-client