Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
File: zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft (raw, json)
Hash identifier: Vx664To3XYYS3VZ5mzQO3UnnlojmVUUu95FxA7OZX4U=
Subject key identifier: 22:86:61:18:D3:54:67:8D:A2:C5:35:41:0B:82:3C:30:93:82:D5:DD
Authority key identifier: CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2
Certificate issuer: /CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2
Certificate serial: 0197B7EA8A7855A60176E0DF2EED04DE07ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 19:01:30 +0000
Manifest this update: Sat 28 Jun 2025 19:01:30 +0000
Manifest next update: Sun 29 Jun 2025 19:01:30 +0000
Files and hashes: 1: apVhYj18Bs_r1Q931zVqcqi5yvI.roa (hash: /gXE2P6qUcVxgRclWTrINQ6lVlcjG0089HciFUVuRsI=)
2: zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl (hash: dVsvXbFxc+m2WUQmk57T4Ti0msdpIaac+PG7osqnUOU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:8a:78:55:a6:01:76:e0:df:2e:ed:04:de:07:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2
Validity
Not Before: Jun 28 19:01:30 2025 GMT
Not After : Jun 29 19:01:30 2025 GMT
Subject: CN=22866118d354678da2c535410b823c309382d5dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8c:0b:24:0b:e1:2a:44:9a:df:cf:f2:77:83:
ac:7b:06:ee:c3:e8:a1:fa:b9:65:87:f8:09:ff:36:
bf:0d:7b:fa:23:6a:3e:3f:46:94:ed:5e:12:07:20:
af:18:ef:c8:2a:ef:6d:6b:05:7c:eb:01:8a:d8:e8:
a2:ff:4f:30:b4:dc:a5:8d:95:8c:b1:66:33:03:44:
dd:7d:7a:43:80:cd:d3:8b:5f:95:9d:4c:93:af:f9:
8f:f0:90:c6:e6:3d:42:43:a2:88:20:05:4b:d4:b2:
cc:11:0b:81:13:0a:da:b0:c1:7a:67:c1:c6:ad:ae:
ce:28:33:b2:49:6c:b2:e9:c0:4d:5a:6e:e2:d8:96:
9c:c2:2f:d8:76:ac:78:1b:92:25:56:58:5f:32:c9:
23:03:ba:83:ea:99:d3:44:73:53:fd:1b:c9:81:02:
16:1e:a9:d4:ab:12:19:4d:cb:50:61:0d:60:80:03:
ab:6d:e3:83:e7:47:ab:34:a2:d0:22:71:9f:1a:e0:
52:a7:c6:db:52:ec:6b:ba:77:e4:b7:5b:b9:c2:04:
a3:9d:73:b2:51:d9:57:4e:17:05:db:4b:46:8f:48:
ae:15:ba:d1:04:33:43:c5:d2:e0:8d:cc:49:78:aa:
27:f8:e0:7c:6b:e5:72:70:4a:ca:c7:ba:e2:69:45:
91:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:86:61:18:D3:54:67:8D:A2:C5:35:41:0B:82:3C:30:93:82:D5:DD
X509v3 Authority Key Identifier:
keyid:CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:f7:e3:0c:fc:43:40:e1:66:59:68:aa:67:81:5b:d8:1d:93:
16:ba:e8:ba:3d:6f:ff:2f:4c:21:b3:73:79:f6:28:69:1b:37:
1c:0f:df:66:28:64:e7:a6:e5:5d:d2:01:19:a1:c8:af:08:d8:
6f:57:1d:1a:bd:8a:a7:a9:26:e2:28:fb:3f:93:d5:45:a6:c5:
3a:3a:dd:52:d0:70:a9:24:4d:fd:cc:e4:16:08:96:31:78:b8:
39:ba:cc:99:89:bf:95:9e:13:01:87:25:cf:83:90:b8:93:72:
b2:b4:61:dd:8a:a6:ad:47:31:69:f4:5e:27:22:2c:66:a4:bd:
83:c1:e9:44:62:fc:df:15:e7:79:18:be:5b:61:3d:11:77:0e:
60:41:0d:55:a8:91:d4:b2:42:6a:18:12:a0:b8:60:c2:cb:65:
11:3e:e0:f1:d9:26:0e:cc:f7:5e:30:8d:5e:be:0f:ff:de:ba:
fb:10:03:fa:59:71:a1:21:b8:5b:26:1c:d1:29:b2:f0:03:39:
e1:e3:b3:de:55:92:9a:65:6e:91:c5:8c:69:30:1a:28:48:11:
19:10:10:fd:93:04:e4:b3:54:73:78:5e:7a:bf:c8:b6:f8:26:
38:46:ff:d8:73:66:2f:42:d0:e7:1f:92:e1:6f:34:c5:3b:9e:
1c:c0:cb:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:55:49 2025 by rpki-client