Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
File: ZnKfnQeG9ooezVxakrw5LYaRl14.mft (raw, json)
Hash identifier: l70TFet3B7ACcmBUCQW+1DS82vqaA6nvhdYNu8sbGBE=
Subject key identifier: D8:99:E8:F2:0E:54:BB:48:4B:41:21:A2:2B:ED:7E:37:8A:E6:06:47
Authority key identifier: 66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E
Certificate issuer: /CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e
Certificate serial: 0197B88F6F54D8FA837D6D666AB6FC8430B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
Manifest number: 1199
Signing time: Sat 28 Jun 2025 22:01:37 +0000
Manifest this update: Sat 28 Jun 2025 22:01:37 +0000
Manifest next update: Sun 29 Jun 2025 22:01:37 +0000
Files and hashes: 1: 8P_S0IiROCk_5OYQ6mxMJ_E_ykg.roa (hash: hKXKA4mluIkjfh1vqK/elg6N0eojlwBUTy51lDcZmFo=)
2: ZnKfnQeG9ooezVxakrw5LYaRl14.crl (hash: fO3JEhvFu9G5HeF9RTwP/BsZi9jH9iatqGx305IO8II=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:6f:54:d8:fa:83:7d:6d:66:6a:b6:fc:84:30:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e
Validity
Not Before: Jun 28 22:01:37 2025 GMT
Not After : Jun 29 22:01:37 2025 GMT
Subject: CN=d899e8f20e54bb484b4121a22bed7e378ae60647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b2:39:60:3d:c8:37:30:03:e9:c1:c2:49:6c:
6b:50:6f:2f:45:b2:ed:33:6d:78:c4:64:cd:a1:2d:
7f:6d:b6:a2:69:97:55:2e:48:f4:5a:4c:be:81:75:
0e:23:dd:7a:e9:27:a3:da:50:34:8f:7b:5b:4d:47:
88:2e:ce:47:1d:7a:32:d9:42:b7:2d:ef:39:9f:d6:
16:e9:7c:c9:4b:0a:e4:b0:e3:37:50:8b:c5:9f:2b:
5b:42:b6:00:4b:64:7f:8a:5f:67:cd:ad:fd:6d:ae:
82:1f:bd:74:aa:25:0a:fe:ca:c9:6c:a2:b1:80:fd:
70:34:ec:6f:fc:09:d3:e0:55:0c:9e:c3:49:4f:30:
bb:e3:45:72:5c:4e:f2:a1:a9:03:16:ef:1a:51:9c:
f6:96:bf:e0:28:e5:55:86:d9:ed:a5:dc:26:e4:b5:
fd:25:d0:da:dd:c0:5e:74:ef:2b:c0:0f:1c:21:29:
8d:71:83:ed:3c:95:ff:28:8f:45:68:e1:1b:e4:75:
26:58:2f:04:c9:55:03:20:c6:3a:6a:ae:8b:b0:8b:
56:82:18:8b:1c:df:8b:b4:7a:84:db:de:d2:b3:e1:
e1:d5:5a:80:29:74:b0:8b:ea:0a:89:cf:22:dc:a2:
52:79:df:93:12:db:57:b8:7c:31:7c:db:cd:91:58:
2d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:99:E8:F2:0E:54:BB:48:4B:41:21:A2:2B:ED:7E:37:8A:E6:06:47
X509v3 Authority Key Identifier:
keyid:66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:eb:c3:c1:ba:5e:55:f1:37:51:4c:42:02:0b:de:d2:a5:ad:
db:82:04:1a:1c:3a:77:a2:30:94:0e:da:35:59:9d:a5:dc:c0:
0e:81:61:64:88:53:01:f7:e8:1a:39:d9:ab:28:78:32:10:30:
a4:a3:4e:4a:7e:73:ce:4c:25:c4:c9:7c:05:01:35:eb:c7:98:
de:50:c8:a3:03:fd:e0:71:35:15:f0:b5:55:e9:af:97:bb:50:
7c:84:b0:64:b6:ba:53:32:28:49:d9:94:af:3f:8e:f8:55:38:
6e:ad:a4:fc:67:6f:fe:a8:a1:e5:32:20:27:90:03:0c:6e:b1:
d4:90:99:83:26:54:f0:b1:92:be:d9:6e:78:97:02:04:a4:1e:
e6:18:02:7c:d2:2b:91:1d:9a:18:a2:30:62:66:99:58:fb:3a:
e9:99:70:01:68:19:2e:94:89:32:a6:8c:4d:bf:35:e5:92:49:
4a:e6:1d:83:81:f5:96:de:3a:57:8d:61:85:cb:6a:cd:9b:93:
6b:8a:49:27:f3:75:f7:ad:3f:6b:58:97:ef:f8:16:b3:64:23:
b3:23:e9:22:b3:d3:55:39:e3:31:f3:f6:87:46:81:a1:db:d0:
d3:e9:dc:69:5a:c2:4b:6d:4b:77:9a:5e:99:c5:b5:7b:0c:06:
d9:3c:17:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:22:26 2025 by rpki-client