Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
File: Ze3JFheq3wwsx_H115bb237YWQ0.mft (raw, json)
Hash identifier: dkNI5Pbki45PYmaiGb2kqnKQv8v0uqlB1iM1smsqCu8=
Subject key identifier: 52:A8:04:0D:ED:BA:AD:C9:9F:B9:4E:9E:92:3A:FA:F0:3C:41:54:14
Authority key identifier: 65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D
Certificate issuer: /CN=65edc91617aadf0c2cc7f1f5d796dbdb7ed8590d
Certificate serial: 0197B7EA5D4F8E7E1004328F6F7E074EAFB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
Manifest number: 0580
Signing time: Sat 28 Jun 2025 19:01:19 +0000
Manifest this update: Sat 28 Jun 2025 19:01:19 +0000
Manifest next update: Sun 29 Jun 2025 19:01:19 +0000
Files and hashes: 1: C0Em9awMYVhNg2sMId10Ef0_Qvw.roa (hash: nirBzQQ6k8BEyGM3hSdFnZ+pftgQMVbe2wljIKMV4wk=)
2: Ze3JFheq3wwsx_H115bb237YWQ0.crl (hash: YGlZKpXsQnd8f8pC/53CiRHwN2rYennG59lxXueB8Vk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:5d:4f:8e:7e:10:04:32:8f:6f:7e:07:4e:af:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65edc91617aadf0c2cc7f1f5d796dbdb7ed8590d
Validity
Not Before: Jun 28 19:01:19 2025 GMT
Not After : Jun 29 19:01:19 2025 GMT
Subject: CN=52a8040dedbaadc99fb94e9e923afaf03c415414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ff:62:b8:e6:84:40:f8:8b:e7:d1:16:bd:6e:
01:0f:8e:64:6c:06:7b:89:e7:99:2c:34:8f:a4:83:
50:40:e0:e2:36:40:e9:91:c5:81:89:6a:39:2d:2f:
31:45:7c:0a:dc:d8:76:2b:5f:28:61:86:02:e8:68:
a8:cc:f3:37:46:fc:bc:57:7f:49:f4:bb:74:82:e6:
cb:00:e2:16:b5:60:17:78:20:cb:8f:1e:9c:0b:02:
74:65:a5:ac:d7:e1:47:7a:05:2f:79:35:26:84:93:
32:c5:e5:ef:de:c3:8b:33:18:48:be:90:2c:5f:b2:
bf:e7:f9:fd:19:fd:2a:ae:71:04:65:fe:61:c5:f1:
dc:54:c0:4d:00:0a:ee:7c:f2:5c:9c:77:24:37:94:
f9:ed:0b:52:3e:72:c2:8c:5a:9e:90:e2:2b:d1:e3:
2f:59:02:dd:44:62:09:f1:cd:71:4d:bf:af:75:2d:
d4:2e:54:31:80:41:08:5b:1b:2b:85:29:e8:c9:c9:
2e:fb:bf:11:1d:16:e0:1f:99:40:c7:73:97:a2:79:
2c:5a:d1:1b:8b:9b:85:68:82:6e:49:58:c7:db:4a:
40:f6:09:24:ee:58:f5:0b:87:52:45:8a:37:3b:f0:
8d:dd:11:19:ee:bb:4e:9f:3c:3b:4f:36:a4:89:54:
45:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A8:04:0D:ED:BA:AD:C9:9F:B9:4E:9E:92:3A:FA:F0:3C:41:54:14
X509v3 Authority Key Identifier:
keyid:65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:a6:8a:ec:3f:c0:b0:ac:13:ca:87:1e:90:28:b8:09:c7:b7:
ee:ed:da:43:f9:f8:bf:ee:88:10:88:bc:99:cb:00:59:15:ef:
00:33:86:a6:c3:df:35:0d:7c:22:7a:ca:82:ab:dd:c4:76:f8:
25:f7:d5:eb:d3:f6:ea:25:2e:94:7f:5d:72:09:86:16:03:cf:
59:2e:2c:fe:c1:30:43:7f:e8:6d:7d:c5:3c:9c:7d:60:7d:3c:
b3:55:a1:61:65:33:b2:56:26:10:ae:89:b5:cb:c4:fd:7c:00:
2a:85:84:e9:cb:ee:11:b9:0e:7c:c7:16:9e:39:51:19:de:7c:
09:43:c5:46:48:19:3d:d4:f6:e2:04:09:e7:4b:e8:33:21:ae:
f4:e3:10:c4:4d:80:63:78:4d:29:3d:d0:e1:74:b1:73:2e:7d:
df:92:0e:21:60:4f:37:08:14:23:03:6a:e2:f1:05:d2:35:32:
c6:7b:82:df:f3:3f:ce:b7:57:43:a7:d0:f7:24:05:a5:75:c7:
c6:70:7f:2f:86:aa:90:9a:f2:44:d2:87:7a:4f:41:2e:3e:51:
95:da:4e:0f:25:9a:e7:a6:bd:dd:d4:bd:7d:cb:09:38:fc:08:
ee:20:7a:49:af:2a:44:6a:0f:dd:2b:f5:be:16:85:97:37:44:
2f:59:d0:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:30:18 2025 by rpki-client