Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
File: ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft (raw, json)
Hash identifier: lU88Z8T5v/7ObPWAecS+JtxEu08vp1KIbzlBR/hp/I0=
Subject key identifier: 75:AE:7E:3C:93:9B:CF:F2:E5:80:D8:E7:4B:A7:ED:AF:12:5B:AD:22
Authority key identifier: 64:D7:F7:E1:74:17:9A:13:3E:30:C6:60:ED:FA:86:E7:4A:40:DD:95
Certificate issuer: /CN=64d7f7e174179a133e30c660edfa86e74a40dd95
Certificate serial: 0197B7EA1C58AC1F923A60337E2ED171AAD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNf34XQXmhM-MMZg7fqG50pA3ZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
Manifest number: 15B1
Signing time: Sat 28 Jun 2025 19:01:02 +0000
Manifest this update: Sat 28 Jun 2025 19:01:02 +0000
Manifest next update: Sun 29 Jun 2025 19:01:02 +0000
Files and hashes: 1: ZNf34XQXmhM-MMZg7fqG50pA3ZU.crl (hash: aYurhRMTeqpO/y/8Rlo1kUaI5ISxWv1P6x4hlvEcQqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNf34XQXmhM-MMZg7fqG50pA3ZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:1c:58:ac:1f:92:3a:60:33:7e:2e:d1:71:aa:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64d7f7e174179a133e30c660edfa86e74a40dd95
Validity
Not Before: Jun 28 19:01:02 2025 GMT
Not After : Jun 29 19:01:02 2025 GMT
Subject: CN=75ae7e3c939bcff2e580d8e74ba7edaf125bad22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5c:65:9e:fd:49:ae:54:75:f4:f4:9d:83:64:
22:6d:eb:54:58:65:fe:eb:2f:44:9a:2e:1d:c4:13:
bb:1e:0e:91:b5:59:5e:3f:28:d3:ed:5d:17:50:54:
e4:43:49:4a:18:54:3a:7a:d7:c5:07:25:48:93:c9:
2a:8f:b9:b9:c2:7a:46:20:74:50:39:85:bd:89:6c:
36:fd:62:90:98:78:fd:7e:e3:8c:f7:86:8e:b0:aa:
b3:03:34:4b:a4:90:d3:25:7e:af:63:a6:65:eb:82:
e4:01:26:f8:2a:9a:a0:0a:8e:82:dd:76:4d:f4:75:
84:54:e7:a9:7a:c6:b6:cc:e7:fb:0a:22:89:94:84:
48:da:92:09:16:ab:63:48:90:87:52:c2:8b:de:55:
95:78:b4:e3:ea:92:fe:32:37:a9:83:b1:56:57:fb:
55:81:e9:08:4c:72:14:69:12:c8:52:07:99:4e:cd:
e0:97:69:9d:91:c4:05:0d:11:f6:45:9c:05:54:98:
1f:c2:af:74:8d:15:c2:6b:a1:61:fc:34:5e:d3:47:
d2:c5:79:4d:9e:65:89:5a:54:bc:59:90:6e:46:b5:
21:4d:74:db:dd:97:ca:7f:07:bb:e6:ff:c3:e1:07:
2f:2d:c4:29:08:4f:61:c7:f9:4f:c6:48:41:a8:fd:
81:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AE:7E:3C:93:9B:CF:F2:E5:80:D8:E7:4B:A7:ED:AF:12:5B:AD:22
X509v3 Authority Key Identifier:
keyid:64:D7:F7:E1:74:17:9A:13:3E:30:C6:60:ED:FA:86:E7:4A:40:DD:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNf34XQXmhM-MMZg7fqG50pA3ZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:a3:60:71:2a:2a:96:f5:4f:e6:96:c2:47:29:bd:fa:ed:5d:
a2:45:fb:0a:32:18:77:d7:d4:a8:e5:88:eb:38:35:13:a3:ce:
1b:6b:c6:0a:29:d0:76:f0:45:87:12:12:6f:63:a4:f8:9a:58:
7a:9e:58:63:1e:a8:56:a0:2e:a7:25:82:78:8a:13:c8:32:03:
f3:0a:b7:e7:89:97:64:8b:78:8b:87:03:66:a0:26:fd:65:d8:
70:68:6a:70:2f:bd:2d:7a:bd:14:33:62:bb:a7:f5:ee:a4:17:
ab:ac:43:8f:66:3e:73:2e:01:f5:5b:02:92:86:f7:27:7e:94:
1d:8c:af:45:b2:44:5e:5a:c2:26:70:27:65:67:93:eb:8f:3a:
fa:c9:1c:b3:20:d1:cb:e1:21:f1:fd:f3:2e:39:94:b7:c5:60:
ce:f9:ac:41:8f:7d:d6:6f:c3:0c:b5:57:73:d4:45:0f:2d:fb:
40:f6:a0:55:28:db:1b:57:8a:11:6c:4a:66:04:c9:58:b8:1b:
02:eb:ce:b7:e7:cc:2f:0f:36:8a:82:39:53:ea:a4:c6:d5:da:
0a:99:f1:4c:7e:80:ab:eb:93:5f:1a:cd:f4:c2:a2:39:28:8a:
65:b3:d8:d3:2f:36:bb:9c:37:5f:05:8d:0d:36:7d:c9:f9:6b:
8b:e1:92:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:31:14 2025 by rpki-client