Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
File: cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft (raw, json)
Hash identifier: gmNoX45V1l8cWGeoCzTsQaZ93ezQGREoCaZjbxJMq8E=
Subject key identifier: 05:A3:D4:44:A9:C5:DF:60:67:B8:E2:76:12:2F:BB:0C:C9:C2:15:88
Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Certificate serial: 01976EF5194CE39362E36F969C37F7E7F9E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
Manifest number: 1403
Signing time: Sat 14 Jun 2025 15:00:45 +0000
Manifest this update: Sat 14 Jun 2025 15:00:45 +0000
Manifest next update: Sun 15 Jun 2025 15:00:45 +0000
Files and hashes: 1: 0uVokjA0n-IKYM4dLwrHfcYoXtI.roa (hash: h5xCuikP/FGyLSLux1dmHiJam1SLoPwDAncSRikSHHc=)
2: cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl (hash: aBSvUaL/mNREpib11Pr7yOdjf+8sXrXLE7CrpxuUjjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 15:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f5:19:4c:e3:93:62:e3:6f:96:9c:37:f7:e7:f9:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Validity
Not Before: Jun 14 15:00:45 2025 GMT
Not After : Jun 15 15:00:45 2025 GMT
Subject: CN=05a3d444a9c5df6067b8e276122fbb0cc9c21588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5b:3d:89:5c:2c:42:a1:58:c7:46:c5:f5:69:
0a:f2:aa:bf:91:30:c0:42:b3:05:43:e3:78:34:52:
8c:00:40:c6:c1:21:84:b1:05:d2:d6:b1:d0:9b:97:
61:f8:fb:c3:ab:2e:39:e3:7f:f8:49:d5:05:07:24:
1d:19:4f:31:14:75:46:50:4d:2b:e5:5f:28:ff:25:
e4:7f:bf:50:4f:58:a9:7f:ce:d6:a4:49:ae:5f:bf:
9c:97:0c:c8:98:a0:92:3c:e4:c8:28:af:db:fc:13:
a8:48:a6:e8:87:fd:1e:7a:d4:5a:fc:51:0b:16:26:
37:61:84:b8:c2:4e:f3:a2:1f:b9:1f:55:bd:a3:dd:
7a:29:24:c7:f5:1f:d1:5c:41:1b:a1:fb:40:03:d3:
9f:86:a1:d0:f8:0f:67:2c:d5:3a:45:ed:6c:97:1d:
15:c7:71:17:b7:ea:23:83:f5:72:03:4a:2f:69:e3:
fa:5f:6c:b3:bf:ed:7f:c1:41:be:a8:a6:2a:e2:cc:
9c:df:45:e0:9b:29:e0:55:f1:7e:32:57:4d:aa:42:
2f:82:e0:0d:29:e7:07:d8:73:ce:c8:4b:1e:3c:ad:
34:e9:63:5b:90:63:14:f2:6f:d3:80:06:6d:11:bd:
3b:57:a7:f7:6d:04:35:fb:0a:2f:f1:ab:ef:75:f0:
ff:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:A3:D4:44:A9:C5:DF:60:67:B8:E2:76:12:2F:BB:0C:C9:C2:15:88
X509v3 Authority Key Identifier:
keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:27:49:e1:0a:bc:f4:e1:f7:ef:6d:04:c2:fd:c2:ae:f4:e2:
e5:04:44:e4:e9:fe:03:b4:a5:6d:2d:ec:d0:e1:5b:ea:b3:0e:
cf:b4:c8:cd:e0:00:4c:01:30:bc:38:ad:9c:5c:e2:0e:8e:b6:
79:c7:7d:a7:0f:75:cb:a0:90:31:9d:4b:9e:3a:72:f8:8c:30:
f3:65:d7:29:ad:34:e9:0e:58:38:83:52:eb:b9:66:1a:62:84:
db:1c:c7:97:ae:22:9f:a5:68:a0:90:6b:77:48:81:88:42:3a:
31:b2:c5:47:51:89:eb:50:cc:50:9c:8f:22:b3:f3:3d:c1:cd:
9e:f6:f1:5d:4f:07:80:f2:3f:11:85:e1:18:35:f8:e3:b3:cd:
80:1f:72:c6:c5:3d:28:ba:18:1c:24:dd:fa:b7:0c:e4:14:c0:
9c:27:a7:d9:80:84:ab:3a:41:94:03:b3:15:fa:af:5d:82:58:
9f:49:ab:7b:44:d7:c0:41:b8:c0:d6:7d:be:2b:f3:fa:8f:dd:
b0:f7:26:06:02:b0:3e:13:46:40:fc:06:60:b7:c9:9b:7f:64:
f1:68:0e:a2:2c:4b:0e:72:f1:13:be:eb:0e:58:40:2e:6a:a1:
e8:3a:ec:7c:9e:85:ed:f7:24:a4:2b:8f:38:3a:8b:38:1c:07:
29:9c:d4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:48:50 2025 by rpki-client