Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
File: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft (raw, json)
Hash identifier: OeV1LU0WgXtWLyCKo0ppAittcOkxZ1cNIBI2BhBW2Ps=
Subject key identifier: 05:01:45:97:5D:BB:36:A0:0D:9A:F9:BB:67:25:49:A8:E1:6D:7D:E5
Authority key identifier: 64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
Certificate issuer: /CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Certificate serial: 0197B7450467E7A9C196391812555883A1E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
Manifest number: 0138
Signing time: Sat 28 Jun 2025 16:00:42 +0000
Manifest this update: Sat 28 Jun 2025 16:00:42 +0000
Manifest next update: Sun 29 Jun 2025 16:00:42 +0000
Files and hashes: 1: 6w-yXh1-tMAIvo8oiWeiA5ImsoE.roa (hash: I2XmgPmlr8AeGcV748BNU3DKlg3Epa3bbBrXS+lzrBo=)
2: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl (hash: cGYEPyxIzryJLuvgPoBqBTOQGve15XJg1v6Mm5S6y/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:04:67:e7:a9:c1:96:39:18:12:55:58:83:a1:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Validity
Not Before: Jun 28 16:00:42 2025 GMT
Not After : Jun 29 16:00:42 2025 GMT
Subject: CN=050145975dbb36a00d9af9bb672549a8e16d7de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:96:5b:cd:3d:ef:2a:5e:78:de:b3:e2:f9:62:
dd:d2:5b:b2:d2:33:d1:14:b1:74:fe:fb:28:b3:80:
26:14:c0:c5:eb:75:d0:4b:fa:11:10:8b:22:35:1b:
e8:53:46:3c:5a:5b:85:a5:15:f9:38:98:cd:50:9b:
45:ba:26:d3:9d:66:93:2c:b2:53:dd:d6:13:5f:90:
b7:55:c5:44:03:18:92:dc:6e:f3:dd:e7:ec:58:62:
37:2a:26:37:28:f0:61:ba:a9:2b:cf:88:36:41:fb:
69:9a:17:e7:ef:00:e5:8b:18:b3:40:36:0b:f9:e5:
88:f9:a4:e1:03:96:b3:dd:e6:b7:f8:1c:ca:73:95:
62:39:37:75:3a:d1:a4:61:64:f0:6c:e1:b1:d0:3c:
6c:8e:20:42:3b:4f:54:9a:3a:e0:81:e3:70:a3:01:
63:3b:4c:43:f2:a5:4b:96:f0:b8:5a:a2:37:a8:b3:
9b:3a:aa:99:66:e1:23:48:3f:83:3e:f1:3b:4c:22:
4b:56:2d:b4:f1:2a:e8:f3:a0:de:66:23:28:40:44:
64:6f:7e:cc:ae:62:22:c4:b8:ed:2e:6f:fa:06:48:
33:e0:63:3f:4a:d2:a2:a5:37:d9:fc:d6:b8:40:5a:
7c:1d:56:37:ed:44:67:dc:1f:7e:7c:e0:1a:37:f8:
e3:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:01:45:97:5D:BB:36:A0:0D:9A:F9:BB:67:25:49:A8:E1:6D:7D:E5
X509v3 Authority Key Identifier:
keyid:64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:77:36:8f:48:47:16:54:03:c3:a6:4b:ad:59:e1:b2:28:e6:
72:45:bb:c2:b4:31:7e:4a:11:81:ab:67:b1:56:94:69:75:9d:
a1:e4:70:54:70:36:9b:78:d7:76:3f:cc:a7:7f:4e:26:97:c7:
1e:b0:89:5e:40:13:5b:80:57:52:4a:dc:2f:44:87:59:62:f0:
93:1d:2c:0b:5f:32:4e:05:7e:02:f2:cd:b0:bb:64:f7:b0:33:
53:76:c9:22:5b:e5:9c:a3:1a:2d:82:e3:e1:b1:63:f1:fd:2f:
a4:ca:5b:ca:09:a8:9a:e6:88:63:94:b3:4e:60:c7:12:66:9d:
dd:06:3b:f3:07:47:8d:1a:0f:92:3f:d5:22:30:98:16:c3:8c:
60:f3:42:1e:a4:c6:b7:24:b6:c9:94:ec:24:57:62:5b:2f:a5:
12:f1:03:06:e4:8b:71:30:ed:7b:ee:6f:09:01:dc:a7:9f:27:
2d:30:95:09:6f:ea:92:49:d6:97:b3:c1:0a:b2:04:51:dc:4f:
71:c1:59:f2:50:93:3e:20:b1:73:37:29:6f:9e:21:01:30:9f:
ce:52:6d:e0:42:df:7e:75:a7:92:93:45:67:95:2a:cb:af:0e:
37:e4:0d:97:32:9f:26:a0:2b:6c:af:cf:c5:42:18:38:23:87:
4a:88:1f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:33:01 2025 by rpki-client