Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
File: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft (raw, json)
Hash identifier: genKGtwRk8iBDij/JG/wud2U6zqxqT35KlqGDt2dNjg=
Subject key identifier: 4A:D4:3B:6F:98:0A:44:F2:97:53:59:B2:8E:BC:AB:4B:4B:B1:9B:07
Authority key identifier: AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
Certificate issuer: /CN=af3465437669ce586261a066cc4ad1ea464eb663
Certificate serial: 019778D45B559918EBE0A8571296DBBD9A0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
Manifest number: 0E44
Signing time: Mon 16 Jun 2025 13:01:12 +0000
Manifest this update: Mon 16 Jun 2025 13:01:12 +0000
Manifest next update: Tue 17 Jun 2025 13:01:12 +0000
Files and hashes: 1: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl (hash: jS1LPPbedL+EuaHiKLlMu3mSkYcjIDiNmPjh8erSPeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 13:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:d4:5b:55:99:18:eb:e0:a8:57:12:96:db:bd:9a:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3465437669ce586261a066cc4ad1ea464eb663
Validity
Not Before: Jun 16 13:01:12 2025 GMT
Not After : Jun 17 13:01:12 2025 GMT
Subject: CN=4ad43b6f980a44f2975359b28ebcab4b4bb19b07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:66:7e:6b:bf:9d:32:1a:2a:3c:fc:e3:e1:ac:
a6:e6:86:08:95:3e:0c:45:70:c7:0e:9e:00:3c:ac:
69:21:f7:5b:80:df:f0:d8:e0:7f:66:51:d7:98:f7:
7b:af:87:ae:89:0c:c3:53:91:8e:04:94:4e:66:b6:
85:cf:ab:3e:c8:98:a8:df:b0:10:95:ff:62:1b:5c:
61:f0:40:35:34:ac:d4:ff:6b:f2:79:76:24:53:ed:
86:46:e2:e6:56:ac:04:01:5d:5c:7c:33:95:73:35:
a8:95:ff:4c:88:be:0d:21:69:c9:2c:e8:ae:59:9d:
d3:57:81:02:62:00:2a:6b:3d:84:e5:40:75:7a:1b:
a9:2b:91:fa:5f:30:07:0f:22:ec:6f:4e:25:ad:93:
aa:93:af:b6:a1:29:76:84:9b:9c:47:1c:5b:e4:c9:
47:b1:f5:fb:cc:85:84:d9:3d:d8:bb:a9:ad:8c:6e:
9f:1a:82:a8:40:a3:1f:ba:ae:56:17:82:a4:4b:9c:
57:5a:7b:bd:67:19:fe:4f:b0:aa:53:54:b7:55:69:
6f:20:95:a8:3e:46:b2:58:8f:8a:7e:8f:a8:36:d8:
68:15:8e:80:df:f5:7f:32:33:97:a5:b4:97:dd:de:
91:22:f1:17:10:1c:34:81:45:07:e3:3a:d8:dc:52:
dc:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:D4:3B:6F:98:0A:44:F2:97:53:59:B2:8E:BC:AB:4B:4B:B1:9B:07
X509v3 Authority Key Identifier:
keyid:AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:b9:be:08:8a:ba:cf:37:94:84:90:37:05:4c:2d:e9:ef:8e:
5b:7c:e8:7b:a1:6f:1f:21:b2:60:ef:34:bc:fd:13:8e:10:78:
4e:17:fd:af:da:a3:14:e6:52:cd:1a:3c:14:5c:61:34:2a:e4:
70:88:92:48:d1:74:25:16:8b:7b:96:69:27:3a:1d:b3:26:eb:
c5:fa:28:03:0c:21:a2:41:19:1d:53:f2:ff:6a:de:83:bd:3d:
65:20:9a:66:a7:c8:f4:32:12:c9:59:0e:7f:0a:22:3e:32:b5:
88:4a:96:f3:b8:aa:68:20:9b:47:d2:48:cf:89:6b:6f:77:52:
74:35:b9:a9:e0:26:4a:91:88:10:7a:54:37:e6:6c:94:61:af:
6f:e8:e1:af:6e:67:d8:05:a3:29:92:01:08:70:48:34:85:e4:
3d:f9:be:9c:3d:11:bc:c7:28:b0:84:1c:2e:39:24:a3:62:9b:
a1:6d:9a:7a:93:42:90:f0:cb:27:5b:59:3b:fc:e9:1a:e9:9b:
46:ea:53:b0:1b:af:7e:0e:f3:12:46:1d:ec:29:c8:8d:6d:81:
d1:0b:0a:6c:97:49:de:fa:01:d0:ae:8f:12:28:b3:73:bb:66:
64:ca:fd:e3:40:b5:4e:e8:7e:5f:c7:4a:ef:3e:ab:e4:01:87:
3d:d2:1b:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 20:06:10 2025 by rpki-client