Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
File: ZhBOT32fONjiKi0yvgGQMZMMGkc.mft (raw, json)
Hash identifier: mMvaUUEC5ZFglL3poD298Y7CVkrtoBLhexqLYMng/yY=
Subject key identifier: 67:9D:F2:64:88:9C:23:6C:5E:C4:EE:32:1E:F6:EF:6F:0E:46:7A:6F
Authority key identifier: 66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47
Certificate issuer: /CN=66104e4f7d9f38d8e22a2d32be019031930c1a47
Certificate serial: 0197B6D79F1A68C77F371361708876B2217F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 14:01:13 +0000
Manifest this update: Sat 28 Jun 2025 14:01:13 +0000
Manifest next update: Sun 29 Jun 2025 14:01:13 +0000
Files and hashes: 1: CBx-FeJj7z4oTrZiVmY-MbHnzM4.roa (hash: 1bONPKFzyDS/3APoxZR25vqyDAsgCQifSMXpTfL4F0s=)
2: WxxzockSF-0jbEBubYwjKIfgtaw.roa (hash: uNom3cZ42KKzlsjBXTYNfCi+Ksse/PrjCfplRbo7jWE=)
3: ZhBOT32fONjiKi0yvgGQMZMMGkc.crl (hash: bmtWbXlIOvDBbfvYnBgtzHOR4W60rdH04esC5YtSqwE=)
4: hAuohYiSHygUFUxTjuX1SWN5QDE.roa (hash: MotGMSUysnMBdzXEwoyDH1EBq/l4jrQRez7lyisrMeA=)
5: n6ANVJpjfADW-mInHpVlhLdkL5w.roa (hash: E28ZlsfhOnBkyIyOKkYfx6xyMrKE5R52d/SAANOKtIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:9f:1a:68:c7:7f:37:13:61:70:88:76:b2:21:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66104e4f7d9f38d8e22a2d32be019031930c1a47
Validity
Not Before: Jun 28 14:01:13 2025 GMT
Not After : Jun 29 14:01:13 2025 GMT
Subject: CN=679df264889c236c5ec4ee321ef6ef6f0e467a6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:14:d8:98:94:c4:8e:12:84:96:60:f5:ad:0f:
64:84:5f:02:19:da:1b:62:67:25:68:fb:b1:41:b8:
ee:40:16:d3:1d:45:f8:40:1f:20:ba:18:a4:3d:35:
ea:1e:82:92:3e:69:35:61:b8:d0:51:f9:a5:ad:80:
c1:8a:56:33:c9:2a:f0:cb:6e:66:e8:bf:35:8d:1f:
0f:79:95:19:3a:55:80:10:66:a5:c3:68:fb:87:e0:
bc:d9:86:ec:f9:e2:d5:1e:74:ac:5b:0e:cb:49:2c:
ef:ea:28:cd:41:a9:95:da:dc:21:65:ce:9b:80:f6:
c1:aa:b2:f5:de:06:7b:ed:57:89:d8:71:a7:9c:b1:
76:b9:c9:30:a2:f6:a2:35:be:04:27:54:8d:51:3b:
5f:9c:21:d9:d0:98:63:28:0f:90:ae:9f:4f:d2:32:
94:ae:7c:a6:18:83:7f:2e:c9:0f:6e:45:a3:e6:05:
f2:dc:83:9f:bf:0d:4f:5c:ed:d5:8b:14:3a:aa:bb:
32:2e:19:26:0d:f8:6d:ed:50:8e:6f:0b:88:e1:3f:
5c:34:be:c0:dd:9d:2c:18:19:17:a2:0a:3f:b7:55:
65:5f:8e:38:73:9d:61:00:38:6a:fc:87:49:00:51:
92:57:58:81:87:53:b8:4a:37:9b:70:8a:c2:6d:eb:
b8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:9D:F2:64:88:9C:23:6C:5E:C4:EE:32:1E:F6:EF:6F:0E:46:7A:6F
X509v3 Authority Key Identifier:
keyid:66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:76:9e:19:ee:51:3d:19:46:88:fc:95:d6:4e:fc:a9:13:e4:
34:52:6e:25:e5:80:05:bf:bd:db:58:fd:dc:3e:08:f6:f8:1e:
07:d6:cb:5f:15:0b:88:fb:a0:0f:3e:08:a3:aa:d9:2b:2e:01:
0a:90:bd:02:f0:99:d7:30:72:41:4c:92:bc:c2:32:25:e4:c5:
00:5b:1c:89:f9:11:a1:11:ea:99:09:ec:60:21:5d:6d:3b:f5:
51:fa:6a:c5:6e:dd:1e:e6:5b:b4:be:9e:37:4b:69:d4:dd:90:
80:95:27:e1:62:1c:03:ea:58:5b:08:fb:e6:e9:50:b7:bb:e5:
ff:69:de:6e:cb:c5:5a:1e:16:58:b2:d4:1b:cc:54:4a:a9:a4:
5f:76:09:31:36:d3:ef:f3:47:47:74:29:4a:4c:75:96:73:48:
ab:50:f2:f8:fc:73:0f:8c:41:3e:94:2c:15:e3:57:0b:80:d2:
4d:d0:49:a3:52:ec:46:21:51:7c:d3:77:e8:58:11:57:fd:ea:
6c:7e:b1:e3:79:4e:0c:18:58:6d:a9:80:cd:56:24:5c:49:9e:
db:c0:0e:d0:d2:8b:b8:12:10:27:e6:26:0d:4f:3c:d2:4b:59:
d6:e9:91:20:51:6b:2f:43:4c:ec:85:5c:d0:61:6d:32:29:c2:
7c:1d:1e:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:48:12 2025 by rpki-client