Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json)
Hash identifier: hR0flG1NQJFd0X0WeBKiSqssLk+BbmlvyEgSKT5+e7c=
Subject key identifier: 2B:92:5A:A5:7F:6D:9A:AA:67:C6:3F:95:71:96:C4:29:10:4E:6F:BB
Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189
Certificate serial: 0197BA7E7D932EC6E21436B5A8C2C34E6DB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
Manifest number: 1548
Signing time: Sun 29 Jun 2025 07:02:21 +0000
Manifest this update: Sun 29 Jun 2025 07:02:21 +0000
Manifest next update: Mon 30 Jun 2025 07:02:21 +0000
Files and hashes: 1: PF8Dfwpieuc3szZWNlM6zxbOCaw.roa (hash: eEI5JJg+vshmiZesKoh8QcSvz/GrsPF5AtTzxYWQZk4=)
2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: sycfHzfrvvidboi1wF0i8JrASPCRQ2a88Mt6wCvsU64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7e:7d:93:2e:c6:e2:14:36:b5:a8:c2:c3:4e:6d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189
Validity
Not Before: Jun 29 07:02:21 2025 GMT
Not After : Jun 30 07:02:21 2025 GMT
Subject: CN=2b925aa57f6d9aaa67c63f957196c429104e6fbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:16:75:9a:fe:5a:20:9e:ae:63:4f:37:71:b4:
fe:21:f5:69:0f:be:12:c1:cb:21:e8:c2:b3:99:ca:
01:7b:38:20:e8:b6:4c:45:cf:c2:37:64:51:fa:36:
02:d5:cc:fe:9e:36:43:72:0b:5d:93:37:6d:c5:a6:
d9:47:61:28:48:e0:10:67:a3:23:48:92:c8:c4:78:
e9:65:61:73:f5:d1:00:09:af:a6:ce:4c:09:f6:e1:
76:ee:eb:f1:cc:26:03:51:93:28:60:2a:1d:e6:7c:
49:59:7c:93:2b:5b:3f:77:cb:10:c7:36:77:54:5d:
de:9a:ea:b2:b3:2b:f5:b6:72:46:7a:e1:a9:44:fa:
63:a3:6a:74:6d:06:e6:a9:d1:22:97:99:48:a7:7a:
06:f6:9e:24:b7:69:2a:22:e0:3d:30:0e:3d:ec:d2:
7e:a8:30:43:e0:93:d0:f8:a6:6c:26:34:07:8f:58:
45:1f:0f:f6:66:3e:61:82:68:9f:69:d8:bf:a3:8a:
dc:e1:bc:99:b3:f0:81:41:82:9f:fc:10:54:b9:a6:
14:61:27:70:e2:0a:34:f0:98:f9:4a:7e:3b:3a:c0:
9b:59:01:4d:0b:32:9b:fd:9d:81:f1:44:0a:7b:23:
c4:3d:2f:fb:14:62:99:2e:45:79:52:23:c3:bb:81:
e6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:92:5A:A5:7F:6D:9A:AA:67:C6:3F:95:71:96:C4:29:10:4E:6F:BB
X509v3 Authority Key Identifier:
keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:a3:37:60:47:ce:62:b2:d4:fd:11:2c:6b:31:ca:50:51:60:
79:99:07:c5:be:cb:44:39:80:c0:40:d9:40:f5:2b:b4:7a:42:
84:65:2a:dc:73:bc:68:53:fc:d3:79:d0:6f:92:59:d4:ed:68:
df:69:fd:22:ea:cc:8a:ce:83:1e:06:53:5c:ca:27:f2:d8:83:
be:6b:f4:c5:b2:76:1f:e3:c4:32:c9:3c:78:83:03:c1:07:62:
10:2d:64:98:81:a9:96:54:81:d7:26:40:83:a4:1c:00:b8:1b:
1a:13:80:78:38:24:43:c5:3f:87:c6:d1:9d:ac:95:08:f8:72:
f3:68:34:96:50:78:34:32:8f:0f:a7:fc:d3:50:c8:4e:2e:34:
76:af:22:6a:6d:6f:b9:b0:ae:d0:13:a5:02:d7:c6:07:28:1c:
16:7f:f0:90:a5:64:04:d2:df:dd:95:10:97:29:19:15:d8:85:
8d:05:b6:06:6f:c2:28:45:e1:4c:4f:e1:5c:13:7e:1e:7c:4f:
f6:62:ba:5f:03:3b:f8:80:e3:f7:cb:98:d9:c0:67:7e:ea:29:
d0:9b:e1:be:18:c2:1d:78:06:8f:4b:cf:66:72:f3:75:c1:ca:
9b:5d:7d:16:bf:b5:fe:11:a5:03:0c:10:b8:a5:ad:83:ad:78:
6c:3f:04:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:48:49 2025 by rpki-client