Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
File: Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft (raw, json)
Hash identifier: wZymdApNAc4++/oNdQuLPDbRp1OHkYsDcSPy/AjSLyQ=
Subject key identifier: FC:B4:44:A1:56:43:C0:CA:BA:6A:8C:D6:3F:E8:20:7D:9C:69:B4:6B
Authority key identifier: 67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
Certificate issuer: /CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Certificate serial: 0197684E34AE87AA249569AA4F352412FB2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
Manifest number: 0BA1
Signing time: Fri 13 Jun 2025 08:00:45 +0000
Manifest this update: Fri 13 Jun 2025 08:00:45 +0000
Manifest next update: Sat 14 Jun 2025 08:00:45 +0000
Files and hashes: 1: IyubcYm7YNGoTHG6Zyl3Cm2IkRw.roa (hash: 4lmGSbybL+9qT7cvm7erjsIQir7v2NPime1p2riEn1k=)
2: Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl (hash: TxRRUv4vQaeNNudmlQB+ZVFrEMQmag4+53+KpbiPHvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 08:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:34:ae:87:aa:24:95:69:aa:4f:35:24:12:fb:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Validity
Not Before: Jun 13 08:00:45 2025 GMT
Not After : Jun 14 08:00:45 2025 GMT
Subject: CN=fcb444a15643c0caba6a8cd63fe8207d9c69b46b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:39:20:08:87:0b:0f:32:de:eb:c5:c3:c1:11:
b8:42:07:64:f0:dc:e0:2d:df:02:3b:f1:a8:d4:19:
d9:5d:96:a5:7b:83:8e:18:38:38:9d:d2:3e:86:c4:
3b:c1:a8:b8:61:fe:6e:97:ec:9f:29:ab:5d:a9:83:
03:33:7d:26:fa:81:9f:29:51:cc:86:91:49:a5:15:
98:c3:7a:73:6c:f8:8a:6c:a8:bd:c5:6c:d2:36:c4:
52:51:c6:d6:f9:a5:fe:fb:ce:89:81:3c:e4:77:8b:
e6:b5:ae:95:d7:c6:73:d1:4f:58:56:5e:ee:b9:23:
8c:bf:5f:83:e0:d9:b4:66:6c:e0:e4:c7:12:f3:8c:
36:02:95:d7:4d:7c:3e:9d:6b:66:16:64:39:19:26:
2e:f5:53:10:89:31:1a:70:c7:82:d8:d2:04:4f:e7:
89:94:af:3c:a5:39:39:4b:e4:7c:ad:f1:b6:5f:ec:
db:7e:ea:9a:9f:20:98:3b:d9:17:82:e7:06:4b:15:
b0:48:ff:ae:75:73:94:7c:ef:2a:fc:03:6b:27:48:
e9:d8:04:65:77:94:4a:7f:b8:93:26:dc:32:f3:a6:
14:97:87:cb:3c:d8:55:30:e9:6e:33:c4:d3:42:17:
28:c8:0b:2d:8c:2f:48:7f:55:19:53:80:08:77:19:
f0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B4:44:A1:56:43:C0:CA:BA:6A:8C:D6:3F:E8:20:7D:9C:69:B4:6B
X509v3 Authority Key Identifier:
keyid:67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:9d:ac:3d:0f:21:c5:47:60:b5:d4:75:72:0a:7e:56:05:25:
ad:d8:6a:a3:35:38:9c:2d:93:91:e0:ab:65:2f:76:f1:cd:f2:
29:2b:51:b7:f5:b5:da:5e:30:85:91:6a:74:4f:75:18:44:e0:
a2:74:76:89:0e:20:ee:c2:23:9e:ba:12:5f:f9:96:8e:43:77:
3f:00:c1:06:b1:61:97:9f:0a:02:53:12:c8:45:85:b0:6e:08:
cc:46:70:7e:23:74:d2:44:99:76:2a:2d:8c:53:a0:56:4d:90:
10:a9:0f:eb:78:b6:5a:12:21:a1:5a:53:f5:6d:89:a3:df:b2:
04:47:cd:07:bc:43:83:43:20:f7:26:ce:6e:da:dd:48:e1:52:
62:64:45:6b:09:90:34:74:ea:ad:1b:42:60:17:06:22:ba:68:
1f:17:86:7f:ef:9e:6d:70:08:de:60:4d:d6:f6:0e:2c:aa:b9:
c6:86:ba:14:07:c6:11:87:e9:64:93:84:27:0c:03:5a:34:59:
ec:84:d1:d0:ce:cc:cf:62:27:ae:5f:a5:94:a2:b5:a7:d8:61:
00:85:d6:ee:66:b7:32:eb:d7:1d:62:e0:b7:b9:cc:21:0d:15:
f7:3b:25:f7:01:ad:d2:2f:6b:b7:17:68:e6:5f:0c:7d:4e:3a:
d8:0d:38:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:20:02 2025 by rpki-client