
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.mft
File: z3P3vZzZk2geMP7FxZtHVlIroxw.mft (raw, json)
Hash identifier: J5ecMOI35x/D8fE7bZQWochcQgX2r7DwJziJ4jEUE0E=
Subject key identifier: 0B:3D:1B:01:49:0D:EF:6D:EE:55:6D:02:5E:DA:21:8B:D5:E1:FD:7C
Authority key identifier: CF:73:F7:BD:9C:D9:93:68:1E:30:FE:C5:C5:9B:47:56:52:2B:A3:1C
Certificate issuer: /CN=cf73f7bd9cd993681e30fec5c59b4756522ba31c
Certificate serial: 0197C2A4E4FB83B2EE935AB3FE52063CFE3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z3P3vZzZk2geMP7FxZtHVlIroxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.mft
Manifest number: 15B7
Signing time: Mon 30 Jun 2025 21:01:15 +0000
Manifest this update: Mon 30 Jun 2025 21:01:15 +0000
Manifest next update: Tue 01 Jul 2025 21:01:15 +0000
Files and hashes: 1: z3P3vZzZk2geMP7FxZtHVlIroxw.crl (hash: GpLcqeL7uOgXfqBJOK4jtvg2roq/F/Qn9XDCsgIc85k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z3P3vZzZk2geMP7FxZtHVlIroxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 21:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c2:a4:e4:fb:83:b2:ee:93:5a:b3:fe:52:06:3c:fe:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf73f7bd9cd993681e30fec5c59b4756522ba31c
Validity
Not Before: Jun 30 21:01:15 2025 GMT
Not After : Jul 1 21:01:15 2025 GMT
Subject: CN=0b3d1b01490def6dee556d025eda218bd5e1fd7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:76:b1:f3:77:4a:e1:d2:7e:1a:92:f9:05:9d:
fa:99:24:e0:0e:82:ab:c7:e8:8c:a2:5c:9d:dd:1f:
f1:2f:ed:c8:9f:a7:3e:2b:fe:d5:0e:e0:9f:ed:93:
25:0e:f0:6a:82:7b:c8:54:e9:44:df:a0:cb:e2:a5:
f0:92:c8:b6:42:f7:d5:57:50:ac:c2:fb:c5:c6:a7:
dd:12:29:2b:51:ce:c5:bf:92:02:10:e8:37:6f:0d:
4c:28:db:25:80:07:36:00:7b:19:e7:e2:cc:d1:4f:
45:fc:05:44:52:22:c5:40:f8:dc:74:db:94:d2:77:
6b:a4:8b:e4:d0:f6:2c:f8:77:56:db:d2:a8:d9:cc:
8c:71:ab:54:4d:67:73:fe:3d:70:49:b4:2f:b4:35:
a7:18:91:07:11:ef:02:68:78:df:12:f9:c0:c1:af:
58:40:5f:95:00:4f:8a:d2:2a:dd:6e:e7:50:1d:0a:
ee:bc:af:6f:5c:4b:73:79:b5:c5:e3:c3:6f:ab:a8:
ac:ee:93:c8:0c:2a:f9:ae:83:7e:75:98:19:9e:07:
1e:3f:cc:ed:94:c5:ff:1f:37:e9:f0:46:1c:a3:b5:
97:db:d6:bc:74:09:db:c3:b9:2f:68:0a:c2:49:a4:
63:49:f6:3e:f5:82:ae:8b:fa:17:d2:2c:e0:c2:6b:
d6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:3D:1B:01:49:0D:EF:6D:EE:55:6D:02:5E:DA:21:8B:D5:E1:FD:7C
X509v3 Authority Key Identifier:
keyid:CF:73:F7:BD:9C:D9:93:68:1E:30:FE:C5:C5:9B:47:56:52:2B:A3:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z3P3vZzZk2geMP7FxZtHVlIroxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:43:37:e0:d7:21:b0:fc:01:ea:13:4c:44:25:65:60:d4:7e:
5b:b1:1e:98:f2:3a:68:3e:60:c0:82:66:55:c6:22:58:1f:e3:
22:81:48:71:06:96:d9:48:0d:97:ff:d9:d8:8d:82:16:99:1d:
c0:03:83:56:bc:f9:1b:fb:bf:61:f0:b9:6e:35:3f:00:1f:99:
c7:ca:2e:81:51:d4:14:cb:c1:28:98:7f:31:34:02:f0:88:3f:
80:37:b0:80:e1:53:15:3d:3f:4b:c1:28:5b:04:31:97:5f:3a:
84:7c:35:10:80:aa:ed:5a:f4:4d:ec:46:c3:0d:96:2d:43:30:
43:77:4f:23:97:bf:b1:fc:1e:a3:e7:7c:dc:9e:08:87:61:05:
c4:8f:f8:0f:87:99:07:2e:d9:c3:9d:5e:ad:2d:40:23:e0:e5:
32:d1:e7:1a:b8:00:54:e6:e9:59:cd:65:d7:a2:d4:16:ff:bb:
9d:2a:f3:a8:4c:7c:2b:49:a7:e3:2e:e9:99:5f:09:86:e5:ce:
ef:00:25:12:d2:e2:da:87:94:6b:a6:c8:e4:38:2d:42:63:c1:
7d:5d:9a:db:de:b9:fe:52:d9:e0:fb:df:05:b6:20:d7:f8:2b:
6d:24:6a:2f:ee:fb:5a:89:91:47:99:3b:50:d8:23:3d:fc:e3:
0e:a5:9f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 07:04:31 2025 by rpki-client