Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
File: Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft (raw, json)
Hash identifier: fc1KIC72RQ0YBwIXP7lnPUPgBDfjLDLpmvVWolgg9v8=
Subject key identifier: CD:CB:1E:AC:9E:DD:77:6F:C9:31:9F:4C:A6:A7:0D:29:10:19:1E:B8
Authority key identifier: 67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27
Certificate issuer: /CN=6777a62846df4edbe5666b89e8420e919ab08627
Certificate serial: 0197B8FD27BFB20ABDF98CA194090C280C1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
Manifest number: 1511
Signing time: Sun 29 Jun 2025 00:01:27 +0000
Manifest this update: Sun 29 Jun 2025 00:01:27 +0000
Manifest next update: Mon 30 Jun 2025 00:01:27 +0000
Files and hashes: 1: Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl (hash: QocfVVUQq4Jm+3L4xbG25ahDtHz1Lo/A+TCN9nhMr7I=)
2: ZBPuASXAJcjpb4z2Gk47z8Bokws.roa (hash: xXQRbhIxvcjZLo2Nk1OZPyhXjwNTzt2gl2oGbinvPSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:27:bf:b2:0a:bd:f9:8c:a1:94:09:0c:28:0c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6777a62846df4edbe5666b89e8420e919ab08627
Validity
Not Before: Jun 29 00:01:27 2025 GMT
Not After : Jun 30 00:01:27 2025 GMT
Subject: CN=cdcb1eac9edd776fc9319f4ca6a70d2910191eb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:20:2d:d6:f3:78:9c:85:f9:65:16:a0:dc:ad:
43:d2:9e:52:35:2a:ff:b2:10:00:52:9c:a7:e4:0e:
f5:47:30:d2:86:7e:4d:a2:1d:64:9e:3b:93:ed:1a:
2a:70:45:0d:24:14:f6:e3:12:4c:16:ef:ec:ca:82:
42:ee:ff:44:2c:59:08:c3:78:b2:7a:4a:52:2a:33:
bd:86:7c:bc:b8:6a:29:9e:10:2a:80:fa:31:64:93:
90:bd:3b:7e:b7:ee:75:06:5e:84:9d:a0:f0:92:04:
9e:e0:28:3e:83:c6:99:be:5b:bb:d5:f4:c0:91:c8:
ef:bc:5a:36:e5:7b:e8:78:15:24:9e:57:f9:94:ad:
0f:f3:ab:65:74:78:4c:bb:80:56:f2:d5:fc:a4:fa:
3e:5b:59:a2:58:ff:95:48:ac:08:27:10:16:81:a4:
a8:3a:13:c6:d5:ec:3e:9b:b6:0a:ad:e8:e8:c8:f2:
7d:af:76:62:f8:12:39:0c:f7:f1:52:f8:b0:9e:44:
9a:7b:4c:08:62:51:03:3e:7d:be:60:14:65:de:d6:
7d:5a:3e:da:39:ed:1a:5f:ba:3a:0c:9c:3b:c8:a3:
20:c5:07:da:c2:b7:27:30:21:11:f2:1d:9d:e2:a1:
b0:5e:41:d7:f0:4e:ab:1c:da:46:d9:67:32:39:10:
c7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:CB:1E:AC:9E:DD:77:6F:C9:31:9F:4C:A6:A7:0D:29:10:19:1E:B8
X509v3 Authority Key Identifier:
keyid:67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:5c:e5:90:89:5c:74:4b:01:18:ac:16:c3:45:fa:46:06:50:
06:a9:23:a4:07:da:8e:3f:47:5a:4e:3b:5f:99:70:fd:3f:78:
9d:0e:2b:0d:59:39:fd:97:76:19:34:b5:29:ac:99:fa:6a:e7:
9a:b9:ab:0e:be:61:d8:04:c5:7a:8d:2a:5d:62:88:51:38:93:
3b:da:cf:f7:db:06:bc:dc:13:38:88:67:9d:4c:ff:10:11:cd:
52:dd:eb:74:65:78:99:48:6c:9b:27:4f:08:ef:32:ba:0f:4f:
b2:ec:77:37:b9:d3:e6:fd:02:91:08:60:54:79:0d:58:5c:91:
da:8b:b2:84:35:a7:8e:59:c9:6f:1f:d5:c2:81:f2:62:5f:9d:
1e:b8:d0:31:8e:d4:74:8f:6b:9b:47:d9:1e:1a:26:31:d6:80:
5f:dd:4e:6d:73:f1:d6:c2:c2:55:25:08:51:4a:1e:c2:5d:4d:
fd:e4:1f:f5:57:66:7f:a7:d7:06:9d:74:78:36:79:c0:9e:f2:
bc:47:09:7a:87:54:e9:68:6c:de:be:68:3d:70:c0:ae:70:69:
50:47:d5:1c:55:bd:9f:58:a4:65:0f:9a:d6:52:5c:d3:8b:08:
d9:6d:49:90:16:b8:60:40:62:1c:2a:e8:2a:80:48:5e:ef:1d:
fc:c2:8f:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:41:11 2025 by rpki-client