Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
File: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft (raw, json)
Hash identifier: 3Y8tDkEuCuHH1a/gzUFZ6L+gf+tNV86fqDuvRMUghwM=
Subject key identifier: AC:95:D7:C8:1C:1B:B5:42:79:65:0E:9A:C4:64:EC:F2:32:65:8F:51
Authority key identifier: D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38
Certificate issuer: /CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238
Certificate serial: 0197B70EC6A1454EFCA2BB23A55F0B1D1C0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
Manifest number: 066A
Signing time: Sat 28 Jun 2025 15:01:28 +0000
Manifest this update: Sat 28 Jun 2025 15:01:28 +0000
Manifest next update: Sun 29 Jun 2025 15:01:28 +0000
Files and hashes: 1: 20Dw3EtRjT0VsUf9XJsc0R3Ci-Y.roa (hash: eYk/5sRuyCDN9GA+BHkMTQtHbaoi0rArz9DpKNEObWk=)
2: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl (hash: d5TJm8pISM4AdLdOfbl09ISQ6qAs/0rh/ayN5xoZ2Mw=)
3: 4syStsiJ4_nkcJBvU4Ns9Pjm0oQ.roa (hash: 2p6GX7iVYhsRkTJt8jEU86F9xE4rex2UzZbhNm8D8D0=)
4: N_GpQaNWWGxkbuDZ3ulfH-r64tk.roa (hash: IM2SiURjMxHWXsFqFI4woiJ2ADSr+qZUIrRaSOqm3m0=)
5: oHg8th2m-6lkqpucCywGnTPw2Y8.roa (hash: fBPsGM2/mDx5oeAlhLVhusnxHUP4XIwFmPZfB6dTzC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:c6:a1:45:4e:fc:a2:bb:23:a5:5f:0b:1d:1c:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238
Validity
Not Before: Jun 28 15:01:28 2025 GMT
Not After : Jun 29 15:01:28 2025 GMT
Subject: CN=ac95d7c81c1bb54279650e9ac464ecf232658f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:db:05:a2:49:cb:58:0f:6e:dc:55:3b:6c:8a:
03:aa:5f:db:98:02:c0:a7:62:89:af:d7:74:1d:11:
73:a5:3e:da:d0:79:ac:b6:32:6c:73:f4:2b:60:15:
4c:b6:cd:2c:6b:34:3b:1e:81:cc:f9:63:51:00:4e:
7b:ba:52:91:ca:55:24:ee:83:18:8b:06:5e:d3:d3:
c5:d8:33:62:ae:4e:65:67:2b:d5:8a:ab:24:11:3e:
df:66:e9:fb:46:d1:b6:d7:cf:13:8b:8c:f5:85:ef:
b4:5f:c0:fe:d5:cc:57:0f:31:04:19:45:76:a3:1e:
16:84:8a:cf:65:79:a8:26:ac:42:0c:6a:52:5d:78:
8f:97:75:59:13:ee:c1:6f:15:cc:48:4c:09:c8:dc:
89:c6:3f:dc:51:67:2e:f6:6c:10:26:0c:1f:fe:8f:
64:4e:de:c3:45:75:c3:05:84:1e:c7:71:b6:bf:89:
89:1c:55:8c:ed:c7:d1:26:f0:ce:62:76:f2:d1:1a:
4e:71:b3:d8:7f:d4:bd:a6:e8:2a:32:2a:c0:51:4a:
76:53:a9:c3:49:e0:18:c4:e2:11:ad:dd:24:a0:60:
6e:04:b6:ee:ac:46:f0:37:28:af:16:7b:a4:e3:77:
26:97:fe:5e:4d:37:00:eb:f1:05:50:73:8d:32:69:
da:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:95:D7:C8:1C:1B:B5:42:79:65:0E:9A:C4:64:EC:F2:32:65:8F:51
X509v3 Authority Key Identifier:
keyid:D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:ee:1e:a1:26:4d:16:9b:cd:c6:fa:db:ad:8e:b5:1b:98:9b:
15:e5:29:47:80:e6:4d:f4:c7:f9:e5:03:45:3a:a9:cd:d5:1e:
94:9c:ef:43:b5:8f:f8:90:87:e0:b0:89:33:27:1a:44:5f:07:
40:52:5c:65:03:4e:dc:01:5f:9b:6e:47:81:12:2e:b3:94:b6:
a5:12:20:78:da:1e:a9:0d:a4:0c:9f:af:65:ee:00:ed:0e:75:
d8:24:39:d0:cc:23:54:63:8b:50:92:e9:38:ca:68:8d:f3:28:
ba:75:80:c3:71:87:8d:49:f6:0a:e6:42:aa:f5:fc:9e:67:9a:
53:70:8f:9d:95:40:e9:d6:91:6c:6e:75:d8:8a:a9:cd:97:b7:
13:15:c7:16:c6:e2:68:12:b0:f2:13:a5:e7:0f:10:88:c2:2a:
7c:54:1f:98:f5:b7:9b:7e:28:f7:f3:1b:b1:16:43:05:84:88:
00:f6:75:96:f8:2e:97:59:47:60:95:c0:22:cc:76:e5:34:42:
39:28:0d:72:b0:81:e5:0f:fc:08:f8:26:f0:ae:8e:4d:87:e5:
52:52:b6:9a:26:b0:28:4c:b1:e6:7c:5e:2e:b8:b0:62:73:ea:
e5:a6:75:36:27:03:b1:48:4b:3c:11:3b:fe:c7:b2:e7:7f:11:
2f:bd:c2:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:55:22 2025 by rpki-client