Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
File: ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft (raw, json)
Hash identifier: jQpBmOk165i0o3jSqazF+yuPIUzl5hd08Cw2aXNlGiE=
Subject key identifier: 97:2E:42:4D:EE:19:03:E1:72:E1:55:D8:25:AD:99:00:B9:11:98:E9
Authority key identifier: 64:DA:EA:E2:8A:41:FC:74:01:0D:0B:FB:83:FD:80:CA:34:5C:57:F9
Certificate issuer: /CN=64daeae28a41fc74010d0bfb83fd80ca345c57f9
Certificate serial: 019769613E12E01FF23DF488C525C94E2FC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
Manifest number: 151B
Signing time: Fri 13 Jun 2025 13:01:09 +0000
Manifest this update: Fri 13 Jun 2025 13:01:09 +0000
Manifest next update: Sat 14 Jun 2025 13:01:09 +0000
Files and hashes: 1: ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl (hash: ZlCrHg7Z0Y6BpUVeaZvki9XCx++eE3bgrj958eg5Qbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:3e:12:e0:1f:f2:3d:f4:88:c5:25:c9:4e:2f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64daeae28a41fc74010d0bfb83fd80ca345c57f9
Validity
Not Before: Jun 13 13:01:09 2025 GMT
Not After : Jun 14 13:01:09 2025 GMT
Subject: CN=972e424dee1903e172e155d825ad9900b91198e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:56:e1:a2:86:22:9a:ca:b8:12:6f:36:3e:2e:
c0:cc:c5:4d:c2:81:cf:64:9c:a6:8f:ab:73:9e:80:
90:1f:4a:27:f1:d3:00:7b:1f:ae:68:02:73:61:77:
5a:a6:c4:b4:e9:23:98:0b:36:b6:39:8a:37:51:ee:
28:00:6a:ea:b1:54:f0:a9:e7:2c:e4:47:d8:d3:87:
89:d3:ba:5c:f8:0c:43:e8:21:5a:77:90:0a:c0:22:
b9:e3:0e:02:ab:0e:d8:2b:56:28:53:7b:60:70:fe:
17:b9:9e:cf:f7:d2:9d:ca:4b:38:9f:2e:5e:c0:55:
3f:5c:ee:cc:55:14:d1:ee:fb:49:07:81:dc:5a:5c:
56:0e:55:c4:a1:0a:3e:60:15:8b:16:f7:f4:f5:57:
76:27:cf:80:23:c0:34:85:5c:ed:d4:bf:69:9f:c9:
80:ca:2a:97:e3:14:e5:0f:51:50:71:57:b1:01:21:
91:3e:39:93:a1:3a:e5:d7:c3:73:9b:00:08:11:b4:
c6:4d:1b:24:cf:48:84:b8:31:9f:2a:de:3b:26:40:
36:b5:90:82:da:67:32:df:a6:a6:73:3a:55:6a:9a:
a0:8d:00:ff:86:2e:c0:40:7e:59:0e:c0:ea:48:bb:
e3:b2:e5:47:b9:5d:01:0d:13:8d:3e:e8:9e:ec:4f:
67:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:2E:42:4D:EE:19:03:E1:72:E1:55:D8:25:AD:99:00:B9:11:98:E9
X509v3 Authority Key Identifier:
keyid:64:DA:EA:E2:8A:41:FC:74:01:0D:0B:FB:83:FD:80:CA:34:5C:57:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:a4:1f:ea:ee:54:e7:36:ae:e7:9e:eb:19:cd:68:5d:c1:87:
04:c1:fd:e4:8b:11:88:41:10:88:31:98:1a:e6:b7:3f:9c:fd:
fc:e1:33:d2:67:d5:a1:76:e3:bb:a4:cb:b5:86:e1:f4:6e:2f:
d5:b7:22:02:db:b8:d5:11:57:86:c2:6c:81:fd:ea:bf:52:6b:
fa:73:ba:7f:f5:f9:52:8f:3c:60:44:23:da:de:4f:ac:86:38:
bf:8d:58:4e:e1:46:48:e1:05:d8:e9:8c:03:a9:3c:df:06:40:
89:dc:cc:8b:aa:7d:a5:b7:43:d6:46:a9:61:b4:06:16:d2:eb:
fc:76:f3:ff:e3:e1:32:6c:96:fe:8e:b8:9b:5f:e0:7e:ae:a6:
29:2b:0e:c0:5d:c7:53:5a:35:42:ea:0c:94:52:f9:e4:48:76:
f4:58:e1:77:9b:bf:25:e1:87:27:16:0c:fb:29:3b:3e:de:95:
5c:ce:d6:bf:dc:dd:fc:87:38:5d:24:08:54:20:f6:ff:37:3c:
a0:07:fb:08:ff:ac:80:20:fa:08:6f:8b:52:04:16:5e:48:73:
27:59:c0:4e:2d:08:bb:55:07:60:5a:01:40:f5:d8:57:2a:9c:
e2:af:5a:d0:62:a0:1a:a4:17:ba:56:54:4d:1b:fe:e7:f6:36:
2a:0b:ca:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:00:11 2025 by rpki-client