Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
File: Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft (raw, json)
Hash identifier: EtdnZyg9/E8h4e2s5ixdfYIx4n/xWnn7yOZn1n6Rsxg=
Subject key identifier: 6D:B9:5F:16:55:ED:40:C7:DD:5B:98:BD:A6:0F:D8:47:D5:1D:1A:9C
Authority key identifier: 67:65:A2:1B:56:1B:A8:66:5C:F7:9F:BF:44:C3:19:59:DE:28:F2:16
Certificate issuer: /CN=6765a21b561ba8665cf79fbf44c31959de28f216
Certificate serial: 0197715174A159213A6FEAA7A2348BFBAF3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
Manifest number: 06DA
Signing time: Sun 15 Jun 2025 02:00:53 +0000
Manifest this update: Sun 15 Jun 2025 02:00:53 +0000
Manifest next update: Mon 16 Jun 2025 02:00:53 +0000
Files and hashes: 1: 0v4Q3A_w9M1p1YcV4-7Pe389fdU.roa (hash: WhKTFW0tZdeh1NFz5izqlimm3sG/vP+EpF9M2Z10RmY=)
2: Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl (hash: U+Lmx5Dw7NZkIYToQo4svaziE7ezULIEvfRRlrd0RSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 02:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:51:74:a1:59:21:3a:6f:ea:a7:a2:34:8b:fb:af:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6765a21b561ba8665cf79fbf44c31959de28f216
Validity
Not Before: Jun 15 02:00:53 2025 GMT
Not After : Jun 16 02:00:53 2025 GMT
Subject: CN=6db95f1655ed40c7dd5b98bda60fd847d51d1a9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:04:09:91:da:fe:22:a4:ee:05:f9:bd:2f:eb:
68:52:8b:69:e2:e0:ae:89:cc:26:70:97:70:e2:22:
3c:cf:ff:af:a9:87:5a:5e:08:c8:50:71:7c:74:3d:
38:4b:97:7f:e4:60:e1:30:db:ec:91:22:6a:88:55:
3d:e4:73:24:4b:50:35:36:8f:53:b5:c1:c8:f3:2f:
8b:2b:a4:b8:5b:05:e0:7d:c8:dc:24:bc:db:52:7e:
50:78:10:80:9f:65:cd:8f:04:b9:72:64:00:35:ab:
28:39:e3:17:b6:72:a5:cc:f9:fa:94:66:27:35:82:
8b:51:6a:46:b8:28:2e:df:f0:c7:71:9f:72:82:45:
e6:0b:98:b2:46:bb:66:f6:8c:97:05:59:24:9d:29:
3d:1d:81:5e:87:6b:9d:35:77:b5:eb:b9:a7:c9:c6:
1a:fb:ff:5d:7b:b6:92:45:26:d5:d6:8b:6f:33:d6:
0b:c8:16:c2:dd:46:69:ee:c6:c0:11:cb:2e:25:2a:
9a:bb:e9:d7:b8:8f:4a:c7:fb:f6:6f:a8:96:1c:d1:
91:3c:3e:69:ac:85:12:b0:e8:92:c8:29:cd:22:d5:
7d:f4:04:3c:47:4d:8f:f9:f9:32:b4:a5:f8:84:03:
18:83:2c:c9:d0:bb:d8:e9:47:8f:ee:51:31:91:a9:
ca:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B9:5F:16:55:ED:40:C7:DD:5B:98:BD:A6:0F:D8:47:D5:1D:1A:9C
X509v3 Authority Key Identifier:
keyid:67:65:A2:1B:56:1B:A8:66:5C:F7:9F:BF:44:C3:19:59:DE:28:F2:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:95:f9:fd:99:bc:6b:df:5b:6e:37:af:63:bc:37:c0:0a:c8:
4c:00:77:ef:42:4a:bd:cb:18:65:d6:3a:81:ad:04:58:00:c0:
bf:e7:93:a5:58:c9:a7:ca:4f:0c:b6:df:81:aa:30:80:4a:cb:
7a:8d:8b:45:0d:10:5a:7b:be:bc:9d:28:51:31:4d:c5:70:45:
b4:90:04:5d:fd:3f:e6:ad:02:33:7e:e7:66:af:ba:16:16:1f:
0a:e1:91:ba:22:91:d6:a6:cd:a5:60:43:65:04:c4:46:80:ec:
e9:9a:4c:8c:0a:4f:e9:a1:47:5c:39:c2:22:e1:07:59:b0:b9:
38:43:8f:18:5a:d1:8a:71:a6:aa:9d:75:2a:43:07:34:9e:bf:
0c:9b:1d:8c:61:73:34:14:20:ec:b0:7a:0d:81:0d:dd:51:5e:
3e:d8:2b:06:c8:24:59:9f:e7:9f:83:71:6a:3a:0e:32:19:ba:
69:d7:9f:a3:06:06:13:d1:a1:c5:a5:d8:73:a6:aa:fa:46:53:
61:ee:e5:8d:20:8f:51:e2:30:4d:8a:af:77:d6:13:60:81:3a:
da:21:32:47:d7:39:8e:b2:00:d6:88:30:d5:11:8c:1c:ac:d6:
7a:60:a2:eb:7b:3a:2d:20:c2:19:f4:d0:2a:80:c2:51:a0:9e:
43:d9:f0:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 11:44:09 2025 by rpki-client