Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.mft
File: ZAD5U62_21K3iBX-z8DozeCXYsM.mft (raw, json)
Hash identifier: s+MjutNr0O2FXqAbtA2j4NhQj0jGjalBtM4oxLNik6A=
Subject key identifier: 58:9A:E5:F4:2B:F9:62:0E:BD:FC:B7:37:A3:C1:D8:91:9A:5C:E1:51
Authority key identifier: 64:00:F9:53:AD:BF:DB:52:B7:88:15:FE:CF:C0:E8:CD:E0:97:62:C3
Certificate issuer: /CN=6400f953adbfdb52b78815fecfc0e8cde09762c3
Certificate serial: 0197B88FD8A82EABCAEC32950FD3E85805BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAD5U62_21K3iBX-z8DozeCXYsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.mft
Manifest number: 10A5
Signing time: Sat 28 Jun 2025 22:02:04 +0000
Manifest this update: Sat 28 Jun 2025 22:02:04 +0000
Manifest next update: Sun 29 Jun 2025 22:02:04 +0000
Files and hashes: 1: ZAD5U62_21K3iBX-z8DozeCXYsM.crl (hash: 8AiOVUl+OLiM4N4ncZjZ8dk7ecg4KXMlgeH6S7Ed3Ik=)
2: v8jGZZ2sPrkxPTZ3eZtK4NYbA6E.roa (hash: 0l4hT05AEA8nsr6nY5F6IkEiZ/ck5kp606jyOTBkkrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAD5U62_21K3iBX-z8DozeCXYsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:d8:a8:2e:ab:ca:ec:32:95:0f:d3:e8:58:05:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6400f953adbfdb52b78815fecfc0e8cde09762c3
Validity
Not Before: Jun 28 22:02:04 2025 GMT
Not After : Jun 29 22:02:04 2025 GMT
Subject: CN=589ae5f42bf9620ebdfcb737a3c1d8919a5ce151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5a:f0:4d:3a:3b:78:58:20:64:42:58:ff:12:
8d:9f:26:e7:95:b9:25:50:0c:59:65:c9:b6:7a:4e:
56:c7:18:7f:77:2f:8f:36:28:ca:a0:62:31:ce:bc:
97:b9:f8:72:74:f6:9e:b6:42:fa:0f:40:9d:02:6b:
84:59:f5:5d:fd:c0:f8:b3:8a:3f:84:d7:8e:88:93:
e8:9e:d6:80:28:2a:fa:a8:94:ab:37:db:98:06:e5:
85:8b:41:d1:95:30:dc:18:c3:21:e4:de:67:62:79:
a8:6b:12:c0:b8:87:83:c0:cc:b8:f5:1b:e7:74:a5:
76:37:69:f2:d1:16:e0:36:b7:3d:e7:b6:7e:70:5d:
0e:7a:4e:0e:e1:dd:18:0a:ed:17:c1:be:8e:e0:a3:
8b:38:27:ef:dc:1c:58:e0:5f:6c:12:a3:f9:ba:94:
d7:7a:aa:e7:ea:b5:0e:b9:d0:c7:b1:99:03:e7:2d:
af:30:f0:25:88:e8:96:fc:84:19:06:ec:97:07:ab:
b9:00:9a:3e:66:27:e2:74:63:da:26:d1:41:59:44:
9b:1f:44:7f:39:c9:da:62:e7:2c:ac:03:4e:e2:57:
dc:cb:a2:f6:07:d9:84:58:f9:63:15:d3:e5:af:92:
53:04:06:d5:e9:60:37:9f:ff:4d:5d:6f:e2:b6:9f:
86:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:9A:E5:F4:2B:F9:62:0E:BD:FC:B7:37:A3:C1:D8:91:9A:5C:E1:51
X509v3 Authority Key Identifier:
keyid:64:00:F9:53:AD:BF:DB:52:B7:88:15:FE:CF:C0:E8:CD:E0:97:62:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAD5U62_21K3iBX-z8DozeCXYsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:d9:47:1c:09:e9:fd:aa:fc:53:73:37:ce:b9:d0:f5:a7:80:
d1:26:21:42:52:7e:6f:4d:6e:de:9a:1b:91:a9:1b:43:9d:99:
94:81:69:4a:06:81:3c:b8:ab:46:20:30:a9:ca:20:e5:0b:2f:
17:76:c3:ab:89:d6:c2:87:d3:e1:39:5c:28:a5:e3:dd:6e:64:
1e:8d:03:6f:37:e1:a3:84:bc:9d:5d:62:bc:26:87:cb:8b:69:
6f:93:f0:aa:87:3a:c9:90:af:cd:00:69:96:62:07:be:bc:cb:
70:04:32:72:38:4f:64:31:f0:db:1c:8e:59:13:36:7b:23:59:
4e:d4:3d:28:2a:2e:e7:dd:e4:01:56:d2:84:5d:12:aa:48:5d:
88:55:91:dc:56:71:d2:3c:05:98:9b:7c:32:eb:4a:8c:69:d1:
55:28:72:03:03:d0:08:31:04:4e:f4:8a:0b:d7:fe:85:a9:47:
50:c6:84:9a:05:fa:c7:0d:3b:b9:3e:06:2f:5b:0f:b9:d0:b6:
18:f6:8f:d7:18:5d:d1:a8:ea:bb:41:b2:ce:53:32:0f:57:09:
c8:c0:bb:8e:cf:5d:6e:27:2c:46:33:59:0b:93:3a:95:e0:a6:
75:64:3d:b9:1f:26:ba:94:d0:e5:26:4f:b0:7f:ff:74:e2:7f:
eb:0e:e3:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:51 2025 by rpki-client