Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json)
Hash identifier: SOcteWsomX0SUtkr6qpeim05UTVHH2ywgnqsdYkCfUQ=
Subject key identifier: D0:A0:C9:37:A2:05:9D:6F:EA:F8:BE:69:57:05:20:46:41:AC:EA:DE
Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196
Certificate serial: 0197C0490F70EFF608BF2D44FDF3A8E9E65E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
Manifest number: 0C60
Signing time: Mon 30 Jun 2025 10:01:42 +0000
Manifest this update: Mon 30 Jun 2025 10:01:42 +0000
Manifest next update: Tue 01 Jul 2025 10:01:42 +0000
Files and hashes: 1: FwAUcIE-PlUBJk-lyofvjIK4_Vk.roa (hash: 7pDJDV3PAprmagYY0WEztJ7b9H5DGoPcWbYIPWhc9l8=)
2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: D7VD3DWslkZlDJRr9Aoiz+UYDDMwhr8XCoRuwm139W8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 10:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c0:49:0f:70:ef:f6:08:bf:2d:44:fd:f3:a8:e9:e6:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196
Validity
Not Before: Jun 30 10:01:42 2025 GMT
Not After : Jul 1 10:01:42 2025 GMT
Subject: CN=d0a0c937a2059d6feaf8be695705204641aceade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:69:94:da:a4:32:3c:6c:52:9d:e9:6b:fe:eb:
e4:d3:91:9c:52:a0:07:4f:03:f8:dd:19:24:6e:e5:
46:b9:e7:01:02:8e:c5:c4:a0:b0:89:64:29:e1:84:
1b:7f:9a:8d:bc:81:2b:15:e9:c5:82:e0:6a:6f:d3:
9b:7f:64:43:71:74:a4:5d:5a:84:7f:78:80:75:cb:
2b:12:4b:f4:7c:88:ff:69:b1:99:39:f2:7b:b1:5f:
90:20:b3:a5:18:82:7b:4f:56:d2:bf:41:9e:63:93:
28:c2:99:fb:fe:dd:d0:17:5e:5c:71:c3:d5:6d:67:
88:b3:ee:fb:8e:77:80:49:16:b3:90:66:f4:7e:50:
f1:61:fc:70:d2:4d:65:88:c1:b0:02:48:a8:b1:7b:
46:2b:ca:63:f0:45:f6:5c:fd:9e:a3:f4:13:10:d6:
62:2d:bc:22:6e:01:8f:5e:2b:62:d8:be:d2:9b:eb:
7c:1a:46:23:f8:46:4b:07:6d:b9:4c:b5:02:10:75:
dd:85:ab:d8:b1:85:92:79:6c:66:52:e7:b5:e6:e1:
a4:54:ee:fc:f7:5a:5f:88:1a:69:20:49:2d:18:a8:
1a:b2:3a:22:a3:75:b3:1e:9a:49:49:ab:28:4a:29:
27:4a:b6:3c:6b:26:9d:08:97:fc:9f:77:ab:d7:8b:
26:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:A0:C9:37:A2:05:9D:6F:EA:F8:BE:69:57:05:20:46:41:AC:EA:DE
X509v3 Authority Key Identifier:
keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:2c:eb:2e:e3:20:1d:cc:a5:a8:d3:a2:d5:44:a4:ca:88:d2:
e6:10:c6:c4:0f:3f:8d:58:7b:3a:29:e9:2d:f0:4b:65:a1:b8:
cb:58:2c:49:e9:86:08:34:4a:e0:ba:ef:4a:86:0b:04:35:2e:
87:02:77:7f:86:19:e0:36:ae:f7:88:6e:cd:53:73:ab:e9:09:
2e:08:50:80:24:e9:c3:ca:c7:95:43:fe:13:55:96:bd:3f:d4:
59:42:d2:3c:cf:18:79:cd:23:81:cf:35:d2:7f:a3:7a:67:30:
2b:e4:6c:93:10:9e:13:e6:cf:66:55:6b:cd:9f:61:02:dd:e2:
10:fb:6c:24:74:fc:e9:0c:3e:06:fc:cc:60:00:d6:99:a2:b6:
a4:8b:bf:f4:ed:f0:c4:bc:88:0d:03:0b:76:62:73:0d:e8:95:
85:7b:21:88:cf:3c:c0:34:56:de:d1:7a:a8:b3:19:c2:b0:61:
0a:78:9a:1c:82:08:0c:75:75:58:47:8f:94:48:f3:56:dc:1f:
db:5c:96:16:b1:a5:31:43:dc:ef:fc:f3:56:f2:69:97:10:fa:
66:5f:e4:76:9c:9f:3e:19:ad:e5:c7:22:c6:17:a8:7a:73:09:
07:f0:85:41:6d:79:93:f0:e4:37:22:ff:e1:15:dc:16:12:2f:
84:07:e6:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 19:23:22 2025 by rpki-client