Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
File: Zhao67AREZsvaVMn-xblH4hwRHk.mft (raw, json)
Hash identifier: OKwtL+yLg3h3gLLRiYUAeoUILvD00OUA7cusEh7k8L8=
Subject key identifier: DC:FA:23:03:FA:C8:73:97:F0:23:A1:7C:2C:5A:F1:22:DE:67:83:94
Authority key identifier: 66:16:A8:EB:B0:11:11:9B:2F:69:53:27:FB:16:E5:1F:88:70:44:79
Certificate issuer: /CN=6616a8ebb011119b2f695327fb16e51f88704479
Certificate serial: 0197BB21DB9D5EFCAC2F6CB954ECBA232B89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
Manifest number: 73
Signing time: Sun 29 Jun 2025 10:00:47 +0000
Manifest this update: Sun 29 Jun 2025 10:00:47 +0000
Manifest next update: Mon 30 Jun 2025 10:00:47 +0000
Files and hashes: 1: Zhao67AREZsvaVMn-xblH4hwRHk.crl (hash: I+Ixc7DdJRHW8mayvP1DbYxkZbdQpnBHVWmEirhkCL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bb:21:db:9d:5e:fc:ac:2f:6c:b9:54:ec:ba:23:2b:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6616a8ebb011119b2f695327fb16e51f88704479
Validity
Not Before: Jun 29 10:00:47 2025 GMT
Not After : Jun 30 10:00:47 2025 GMT
Subject: CN=dcfa2303fac87397f023a17c2c5af122de678394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:93:ba:c0:41:01:c6:73:64:d0:5c:a0:5a:87:
c0:89:03:30:38:97:a8:ba:77:45:71:9c:ec:e0:7c:
5f:65:54:51:ae:bc:64:86:3f:24:a3:f9:d7:48:ac:
0e:4e:73:90:7f:e7:e0:17:d6:db:56:f4:ad:95:12:
4e:33:23:75:43:ec:63:37:60:18:ec:70:8f:1a:51:
ae:3a:6b:04:0b:4a:da:07:0b:a0:2a:2b:f5:f6:06:
ff:38:89:76:0b:0a:61:f2:fe:16:40:06:76:32:a4:
a3:e0:6f:9f:fd:fd:e9:18:14:62:d1:a5:4b:57:c2:
04:0b:d1:f6:d5:be:9f:7e:c6:c5:e1:f0:52:60:ef:
c3:af:94:f5:c7:e2:ba:1a:67:cc:52:cc:1e:a0:e2:
e6:92:27:4b:45:d6:be:0c:a2:50:d1:55:d7:f4:f9:
eb:66:f6:ee:5b:fb:1d:61:e9:dc:a2:4c:66:2e:05:
6d:74:27:59:95:d8:a3:5a:14:26:ba:67:9c:01:ce:
fa:9d:eb:78:49:55:f9:0c:57:0c:5f:e4:20:02:48:
ad:29:dc:0c:e4:fa:a0:1d:c9:64:c4:2b:13:c2:23:
dc:ed:e0:06:e9:d5:b8:ea:6c:3a:4d:b7:36:b4:06:
9c:44:56:56:bd:7d:87:12:a0:9d:c2:f8:c9:38:de:
1e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:FA:23:03:FA:C8:73:97:F0:23:A1:7C:2C:5A:F1:22:DE:67:83:94
X509v3 Authority Key Identifier:
keyid:66:16:A8:EB:B0:11:11:9B:2F:69:53:27:FB:16:E5:1F:88:70:44:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:dd:46:07:1b:3f:63:32:e4:01:95:75:a9:54:ee:d3:c7:fc:
e9:a1:71:66:de:3e:92:87:f0:05:32:c5:6c:1f:54:a8:d9:c9:
4d:fd:60:ff:4c:24:65:9e:b6:d9:df:b1:2d:a4:25:4e:ea:b7:
13:50:90:47:3e:8d:87:d0:74:1b:75:a9:e6:24:73:78:ed:da:
03:9a:0a:89:84:32:b4:1e:ac:1b:9c:49:6f:f1:90:6e:95:f0:
a3:d3:25:7e:04:72:ad:8f:fd:92:15:88:61:6f:09:1e:a8:55:
c3:d4:cd:8d:20:37:31:a6:f2:51:1c:8f:26:b6:4c:e0:c4:ba:
19:c8:08:f9:62:c2:37:01:cb:d6:ec:fb:b1:08:be:47:28:50:
26:74:57:fd:9e:a4:63:75:48:3d:3d:2a:b2:40:74:ed:f9:76:
ba:29:55:f9:27:7a:69:2a:3d:bd:28:e2:a2:ac:6b:ea:63:17:
14:db:95:43:99:b3:14:81:38:7c:41:5a:8d:e6:78:2a:5b:7b:
52:eb:75:b8:01:a4:30:30:dd:be:a8:be:a6:f4:f4:cd:60:34:
b3:86:ac:f9:cf:3f:52:14:e6:7e:71:74:c7:e6:9d:b4:bc:31:
97:b9:10:78:dd:ff:3d:82:d9:ca:49:53:9b:38:22:41:b3:84:
7d:9d:c1:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:33:07 2025 by rpki-client