Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
File: zCdbIX3x3piMohkqg64R3fQjpE8.mft (raw, json)
Hash identifier: AMCnFCNGffj/lz4joeP9hmv7S4lCXZctPH7JtpiI34Y=
Subject key identifier: 25:2B:E1:12:F1:BF:0A:65:75:C0:8C:C0:02:EC:06:68:2F:15:0B:59
Authority key identifier: CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
Certificate issuer: /CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Certificate serial: 0197BA0FAFE44FEFC8A9D4B7104192F25669
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
Manifest number: 0A6E
Signing time: Sun 29 Jun 2025 05:01:19 +0000
Manifest this update: Sun 29 Jun 2025 05:01:19 +0000
Manifest next update: Mon 30 Jun 2025 05:01:19 +0000
Files and hashes: 1: Nr1R18FVhyzjXhL2YKl54Kz1CcM.roa (hash: Ka3gajN2kG5bn7od03MC2i4kFc5aTTook8osIu09I1U=)
2: zCdbIX3x3piMohkqg64R3fQjpE8.crl (hash: gTS/0EXXgyRbY52zsR2sUvX3Ko4VaFSuG1BtC++iHB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:0f:af:e4:4f:ef:c8:a9:d4:b7:10:41:92:f2:56:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Validity
Not Before: Jun 29 05:01:19 2025 GMT
Not After : Jun 30 05:01:19 2025 GMT
Subject: CN=252be112f1bf0a6575c08cc002ec06682f150b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:32:68:7c:ed:a6:fb:71:db:21:b9:32:99:99:
20:bd:b5:1e:af:66:c3:4b:09:53:db:39:35:aa:82:
2f:c0:19:2b:de:83:17:ff:c6:21:ff:75:6c:a2:4b:
a3:f9:18:d3:81:ba:50:bd:42:ec:86:7a:3d:e5:ae:
a3:c5:51:91:af:48:6e:63:78:74:e1:fa:8b:a1:cc:
11:f5:65:c4:a5:6e:3c:0d:dc:60:ef:eb:83:4e:9a:
3f:51:bc:da:da:3e:70:c5:f4:ec:7e:54:9f:25:0b:
7d:a2:65:d7:d7:99:06:18:50:55:82:8c:6a:dc:55:
bd:0b:a8:9e:da:b4:64:0d:7e:6e:d0:16:14:ff:cb:
f6:d5:b4:dd:70:a2:f4:48:0c:56:fc:1b:72:61:1b:
8a:23:cf:5b:90:7e:dd:8b:ae:05:01:07:05:17:91:
48:31:b8:01:cf:c5:3c:e3:32:78:71:7a:73:11:35:
88:26:24:43:db:ee:76:3c:38:18:18:b4:b1:3c:c0:
40:52:19:0b:a5:a2:12:a6:60:3f:9a:c8:df:b9:f7:
3b:d2:e9:a1:7a:2b:36:d0:fd:c0:26:0f:3e:e8:72:
93:5b:04:87:fd:81:cb:1d:f4:b7:22:cd:d0:cd:cd:
f2:f4:1e:52:01:c0:69:eb:ca:3e:15:cf:21:3e:7c:
86:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:2B:E1:12:F1:BF:0A:65:75:C0:8C:C0:02:EC:06:68:2F:15:0B:59
X509v3 Authority Key Identifier:
keyid:CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:97:17:ee:dc:ea:ca:32:b2:fa:e8:eb:75:3d:5c:f3:ec:5e:
b9:6f:c5:55:6a:68:90:f4:06:f4:ab:44:ca:b7:7c:83:1f:f1:
08:ee:49:ea:2d:10:ed:01:ba:03:95:4c:c7:27:0a:d7:61:ac:
8b:55:25:67:c7:a2:16:ec:75:b3:37:9d:79:43:77:a2:cc:5e:
bf:14:0a:2d:58:86:d7:e2:73:15:62:d7:b7:c1:45:09:ff:77:
bd:03:a7:e9:22:a7:46:c9:ac:47:ab:b3:a9:21:ae:67:11:d9:
09:60:8c:0e:75:d5:4e:79:0b:10:59:ca:e8:b6:82:86:91:0a:
2a:42:5d:1a:06:7a:b6:c8:af:49:00:db:fb:d0:3d:24:fc:2c:
2e:02:35:79:86:20:d1:1c:4c:3f:05:cc:d5:7f:10:a5:9a:9d:
0f:aa:6e:7e:9a:9a:cd:06:a7:a8:ff:ac:cd:c4:03:86:b2:4f:
b7:3a:44:29:eb:c8:01:da:93:bc:59:1c:0c:47:00:f3:a2:74:
1c:c7:ab:d0:10:45:25:c0:78:0d:0d:e1:e8:92:bc:8d:86:5a:
e6:a8:69:ab:75:30:23:eb:4e:65:11:49:ad:c2:68:f3:fe:d9:
39:d4:e6:c5:f9:7a:9f:51:c6:ed:9e:22:ec:dd:b6:50:68:9f:
96:27:90:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:47:01 2025 by rpki-client