Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
File: zkn8E0twZULK8aHvvgNPcBG0lDY.mft (raw, json)
Hash identifier: 4uOC5ZWUjbw9uUdfXRjIOsgbzWHxj3PJDDpRxKsCVSA=
Subject key identifier: 13:ED:73:11:99:60:13:8B:AC:C4:10:49:E6:95:4E:5D:04:AE:64:FB
Authority key identifier: CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
Certificate issuer: /CN=ce49fc134b706542caf1a1efbe034f7011b49436
Certificate serial: 0197D0CE4D5DDE3E1B1AF5853D089EE06CEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
Manifest number: 04EA
Signing time: Thu 03 Jul 2025 15:01:10 +0000
Manifest this update: Thu 03 Jul 2025 15:01:10 +0000
Manifest next update: Fri 04 Jul 2025 15:01:10 +0000
Files and hashes: 1: SGAPHhpCJa9JFOb_Zf20G8kvkhI.roa (hash: 27D8nmxY/4y8rMryghx5LNMAGS+7aTblTkGND6PBRy0=)
2: zkn8E0twZULK8aHvvgNPcBG0lDY.crl (hash: JwsFeE5XnOmq4FIY7X/xtCH1GZJYmAv0nrEqnfE0ffE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d0:ce:4d:5d:de:3e:1b:1a:f5:85:3d:08:9e:e0:6c:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce49fc134b706542caf1a1efbe034f7011b49436
Validity
Not Before: Jul 3 15:01:10 2025 GMT
Not After : Jul 4 15:01:10 2025 GMT
Subject: CN=13ed73119960138bacc41049e6954e5d04ae64fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0b:da:f0:de:07:0b:af:3d:6e:0a:f3:bf:4c:
4c:83:17:ec:53:cf:be:ad:98:c3:89:c5:d0:c7:2d:
1d:3d:0c:54:b1:a8:5a:7d:6f:fb:2d:fc:1b:46:1a:
df:c4:24:12:1e:40:0f:9c:de:48:6c:07:ba:2f:4c:
0b:03:26:fe:97:11:67:ed:9b:b2:51:bf:4a:8b:be:
af:52:fa:53:c0:23:fc:05:9d:ce:34:6f:be:eb:c0:
f3:ef:01:35:a8:4f:af:d7:d2:50:52:21:4f:d4:8f:
93:72:39:1c:1b:cd:68:8f:94:43:23:2c:4b:6b:5c:
ba:30:07:03:e3:9f:08:5c:57:ae:f9:3b:23:c3:c6:
a8:3a:15:2d:d7:66:34:a6:0b:24:0c:29:fd:40:ed:
84:85:03:af:6e:3a:fd:1a:f5:98:ff:73:4a:20:95:
70:fa:09:33:96:6c:8d:71:5f:8a:96:83:50:bc:6d:
4b:05:9c:3a:e8:b7:63:da:4e:bb:3d:d5:6d:a3:51:
d8:46:00:da:97:87:2a:ec:d6:78:08:c1:81:b8:4c:
ca:56:41:b8:c5:ea:a5:80:dc:51:01:f6:44:df:b9:
89:e7:55:95:0a:37:ca:8d:0d:cc:2b:12:46:af:99:
e4:aa:32:7c:90:e3:9d:74:7b:13:da:18:3e:be:d9:
09:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:ED:73:11:99:60:13:8B:AC:C4:10:49:E6:95:4E:5D:04:AE:64:FB
X509v3 Authority Key Identifier:
keyid:CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:60:2a:62:cf:76:7e:df:4c:6f:8a:8d:1e:67:db:12:e5:f6:
2d:4a:69:48:d9:dc:29:8a:b0:0e:a8:60:70:c6:76:02:c2:80:
e3:0e:08:43:ea:46:8f:4c:e9:3b:0f:bb:9b:b7:06:15:9f:f7:
55:24:2e:2c:be:39:a9:79:a9:7e:f6:c3:a6:54:9c:a3:62:39:
33:59:29:0a:29:01:a8:e1:1f:70:78:25:01:a5:0c:80:52:98:
d3:ba:a7:e3:d0:57:0b:45:e2:d3:88:db:c4:44:11:7d:6a:66:
31:4a:e5:81:0d:4a:a4:cd:e6:29:ed:9d:e0:4e:12:e4:9b:7b:
10:2c:3a:da:10:1d:dd:23:80:82:7e:a2:a6:c4:3e:cd:e1:a0:
2e:3c:4e:49:33:14:71:9e:2a:01:be:e8:44:86:42:a5:ff:86:
7b:1d:c3:4c:7c:50:d2:cb:b7:12:aa:48:1a:3d:09:d1:3d:cf:
83:cd:c9:fb:56:95:03:a2:67:8f:33:3c:c6:11:50:d8:bd:e9:
19:4b:6b:b2:77:2d:cf:68:cf:8d:d6:95:2c:b5:35:bd:86:40:
8d:b8:8c:aa:7e:e8:65:f6:ff:63:dd:de:01:21:5f:0c:4f:f1:
7c:1e:57:8e:fe:12:bf:82:e4:2c:6d:04:73:32:f8:3d:97:21:
a8:fc:02:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 00:20:18 2025 by rpki-client