Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
File: zyJMhK66hZuQyJNsumFn7kxE7Oc.mft (raw, json)
Hash identifier: fpeqKKNDIuFD8o7mZqmPgRBMbXrS6Fhjw83w9EYk130=
Subject key identifier: 7D:53:A7:48:E1:52:E0:3A:57:B5:E1:E4:B1:AE:EF:AC:91:BC:4E:7C
Authority key identifier: CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
Certificate issuer: /CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Certificate serial: 0197B7B34529EF42BBBDFF6F4EF8DABB11B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
Manifest number: 0629
Signing time: Sat 28 Jun 2025 18:01:08 +0000
Manifest this update: Sat 28 Jun 2025 18:01:08 +0000
Manifest next update: Sun 29 Jun 2025 18:01:08 +0000
Files and hashes: 1: n3lj8Imlf54KOqF_Kqk-h0qcwVk.roa (hash: 2POYPsdH+jKImtpOmPpWEy8yit+ATY6Eb8geD/u6vK4=)
2: zyJMhK66hZuQyJNsumFn7kxE7Oc.crl (hash: dsK0zVhaGRwNrHAw+06UhYOIrORu1bh8zHOGz/w+3K0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:45:29:ef:42:bb:bd:ff:6f:4e:f8:da:bb:11:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Validity
Not Before: Jun 28 18:01:08 2025 GMT
Not After : Jun 29 18:01:08 2025 GMT
Subject: CN=7d53a748e152e03a57b5e1e4b1aeefac91bc4e7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:55:7d:c9:25:96:42:8c:c8:3b:93:d0:c0:3c:
7b:e0:f1:89:32:59:5f:e6:21:fb:97:e7:68:f4:ea:
93:4c:0f:29:dc:6e:02:66:e1:30:59:14:34:3d:1c:
60:17:3d:c4:df:0a:b5:54:c9:53:20:9a:c2:be:67:
97:d4:4f:16:25:bf:98:76:41:e7:8f:99:53:1c:e1:
27:d9:d1:8d:a3:86:d0:03:a7:73:d6:e1:53:2c:4e:
04:56:5e:bc:73:12:d5:a5:54:04:db:c0:86:e3:08:
aa:51:0d:c1:12:22:e3:16:37:3b:79:69:01:50:1c:
bf:c6:93:b6:f4:52:27:4b:bd:e4:ae:d3:ac:07:76:
12:a2:d3:20:df:67:30:4f:ec:e4:ea:bb:77:93:50:
91:eb:0f:a6:a9:14:04:56:20:86:c2:97:bf:12:c2:
72:f4:38:ee:e9:3c:52:15:1a:bb:77:93:30:5d:f0:
8e:b2:a3:2c:ab:a8:89:09:7d:20:7c:77:f9:2a:b9:
cc:56:aa:6a:96:9f:ce:d0:37:7c:b1:b5:69:51:06:
8c:39:f0:5a:46:78:59:fa:de:26:ed:0d:e9:0d:2f:
94:e3:6f:2e:69:9b:81:15:f4:2c:b4:12:8f:92:8c:
cf:a2:3e:89:55:25:52:8a:eb:dc:9d:a0:77:06:7a:
6f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:53:A7:48:E1:52:E0:3A:57:B5:E1:E4:B1:AE:EF:AC:91:BC:4E:7C
X509v3 Authority Key Identifier:
keyid:CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:09:f7:c0:46:bc:6b:ce:94:c9:61:10:98:e1:60:34:b0:e2:
b7:a9:ee:c7:3f:f5:de:22:85:f6:a6:94:65:c3:98:ad:0b:bc:
92:e3:90:94:fd:30:3d:98:74:08:d3:0e:08:09:2c:1e:65:87:
38:7f:2c:ec:df:c7:b4:cd:2d:6e:eb:d3:f5:f4:0f:69:fc:39:
9f:0f:2a:52:05:b7:b2:1f:dd:57:a4:27:e6:5e:c7:74:21:ed:
63:dc:56:2d:af:27:7d:81:6c:84:24:8d:91:ef:4d:1d:70:18:
6a:36:ed:80:84:3a:c6:47:24:48:bc:83:04:5a:21:5c:f0:5c:
d8:36:74:3c:7a:85:c8:cd:2a:40:7d:30:c4:5c:c6:af:ed:50:
70:e4:a0:e0:6e:3b:c3:4b:5f:b1:af:60:9f:27:8c:44:44:a4:
fd:b7:6b:9f:35:47:90:13:52:59:87:56:55:b2:b3:f4:2c:6c:
38:8d:69:62:6f:ad:79:a5:60:bc:d6:03:a4:45:ed:8c:e1:a9:
0c:ea:0e:38:e2:d2:b9:be:83:76:df:a0:73:da:d6:05:86:ee:
87:61:40:2a:e3:ce:2b:c8:80:eb:86:f6:58:55:17:8d:09:36:
06:b0:b4:7d:71:db:57:31:b8:0e:74:15:3d:6b:98:2b:0b:57:
1e:04:3c:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:42:22 2025 by rpki-client