Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.mft
File: zZEXAvST1u3htuhyvKzcuFQoK60.mft (raw, json)
Hash identifier: hYT//BF4a8E1br7zJVyXkui086ffzF+PYHMHkJu/YNM=
Subject key identifier: CE:1A:29:CE:67:C6:1F:43:4A:75:99:00:42:D2:B3:EE:90:35:DD:84
Authority key identifier: CD:91:17:02:F4:93:D6:ED:E1:B6:E8:72:BC:AC:DC:B8:54:28:2B:AD
Certificate issuer: /CN=cd911702f493d6ede1b6e872bcacdcb854282bad
Certificate serial: 0197B70F0032CFDF05E46585B0116FEC26E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZEXAvST1u3htuhyvKzcuFQoK60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.mft
Manifest number: 0C1A
Signing time: Sat 28 Jun 2025 15:01:42 +0000
Manifest this update: Sat 28 Jun 2025 15:01:42 +0000
Manifest next update: Sun 29 Jun 2025 15:01:42 +0000
Files and hashes: 1: talgukTPD8oL2wxiXAXrxPFSwAY.roa (hash: 42F75IV5IsX3V6ll7VHZlZ+ABWMo+HJa6Q+yWz1dm0U=)
2: zZEXAvST1u3htuhyvKzcuFQoK60.crl (hash: rq3RQbsszf53OqxYTAMekkWRAmtxridvs29bq9cXr+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.mft
rsync://rpki.ripe.net/repository/DEFAULT/zZEXAvST1u3htuhyvKzcuFQoK60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:00:32:cf:df:05:e4:65:85:b0:11:6f:ec:26:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd911702f493d6ede1b6e872bcacdcb854282bad
Validity
Not Before: Jun 28 15:01:42 2025 GMT
Not After : Jun 29 15:01:42 2025 GMT
Subject: CN=ce1a29ce67c61f434a75990042d2b3ee9035dd84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:44:bb:95:56:6d:88:0b:cb:22:83:d4:ad:11:
ab:b5:bf:65:45:ea:a3:a8:97:d8:01:60:f2:43:50:
c5:db:74:10:5a:d9:99:a5:72:8e:b5:1a:08:e0:ba:
58:77:ed:16:57:73:25:aa:2e:b5:cf:3c:d8:55:4d:
00:6d:b3:5f:b8:10:18:38:43:1c:68:3c:9f:06:d0:
84:24:ae:b2:c6:4d:46:b4:85:d7:dd:18:a5:41:72:
15:e4:89:31:85:f7:20:58:cd:db:b9:a5:e0:e1:59:
83:1c:84:04:07:dc:c5:99:22:fa:2a:c7:70:30:f1:
93:e4:e1:2d:b4:75:2d:6b:d8:02:27:8c:71:12:f9:
57:93:c1:0d:dc:43:33:d7:ef:a1:36:6a:84:b9:50:
db:d5:10:dd:37:0e:31:05:09:39:f7:d3:6a:b2:a5:
92:5d:93:2c:4e:48:cb:69:e4:61:95:6b:a9:60:50:
d8:c4:f7:83:fe:f2:d4:dd:1b:46:47:94:b9:2e:98:
cf:b6:64:78:5c:76:63:46:85:de:f6:37:b7:fb:30:
f4:1f:71:52:ff:a0:54:2a:09:ce:32:de:7d:94:82:
0e:04:89:06:fb:08:c1:d8:8f:0c:a0:30:14:10:a7:
a0:c6:94:c8:f4:2c:ba:6e:00:89:29:b9:7d:c2:44:
91:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:1A:29:CE:67:C6:1F:43:4A:75:99:00:42:D2:B3:EE:90:35:DD:84
X509v3 Authority Key Identifier:
keyid:CD:91:17:02:F4:93:D6:ED:E1:B6:E8:72:BC:AC:DC:B8:54:28:2B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZEXAvST1u3htuhyvKzcuFQoK60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:61:68:e7:71:af:70:a5:1f:a4:5c:70:29:a2:c1:be:a4:37:
93:65:b9:86:f9:a9:33:bb:7c:0d:b3:9a:b8:0f:24:65:5b:47:
5e:ae:80:3a:78:46:e2:22:5a:a9:35:94:b4:a3:bd:98:d0:a2:
04:18:8d:30:8d:b0:76:48:3b:d9:41:86:f2:c2:72:06:44:cc:
34:a9:3f:a1:77:79:2b:2c:c6:bf:18:bd:7c:ad:c5:0e:a6:33:
13:e3:3d:2b:f5:8a:1a:8d:0c:19:85:11:a6:7a:99:cb:60:74:
76:7a:d7:ce:8f:1b:a8:a6:de:75:56:ea:25:0f:fc:06:12:f5:
da:8e:f9:88:f3:d8:5d:5f:7e:8a:ee:9a:6c:69:78:f8:e7:0d:
a1:be:03:f9:5c:ba:96:5d:67:33:b8:a1:37:d7:dd:21:b3:b7:
dd:3d:34:c7:cb:cf:b4:c0:fb:d7:98:39:91:23:7f:07:fe:5f:
78:26:5b:26:11:83:c1:2e:f1:11:06:86:bb:d2:58:42:98:c8:
98:3a:7f:c6:11:6a:13:a6:9a:f3:73:f1:a3:8d:4a:71:79:21:
d1:91:6e:8a:74:83:f3:b6:5f:48:2e:3f:c9:90:7a:ab:10:46:
a0:3d:1c:73:54:64:79:13:7e:b5:df:2c:b7:c6:c8:5a:6b:ba:
da:62:d1:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:31:03 2025 by rpki-client