Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
File: zUNP2FkiOudujXhkipNylejs15o.mft (raw, json)
Hash identifier: +wS1lozsr1bzqiEc97fR3QFXAEaPkZxECBFHhS+eldE=
Subject key identifier: 6D:E3:98:0E:DD:5D:CE:35:CB:44:2E:71:CA:4C:65:D2:EF:F0:7B:64
Authority key identifier: CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
Certificate issuer: /CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Certificate serial: 0197B6A214A44DCC39A818C7D9570B7D331D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
Manifest number: 0562
Signing time: Sat 28 Jun 2025 13:02:44 +0000
Manifest this update: Sat 28 Jun 2025 13:02:44 +0000
Manifest next update: Sun 29 Jun 2025 13:02:44 +0000
Files and hashes: 1: R9FIW-YXitjJpX1Q3jcy6-oEIFI.roa (hash: UPbldeCj6tFYKOIutM8BR+cGGez6vIB0/3ZKKmpjUZo=)
2: zUNP2FkiOudujXhkipNylejs15o.crl (hash: oHgHDB7uUipmI47qOYPN2ZIKSpMFpqfuQBJPzt3VQgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:14:a4:4d:cc:39:a8:18:c7:d9:57:0b:7d:33:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Validity
Not Before: Jun 28 13:02:44 2025 GMT
Not After : Jun 29 13:02:44 2025 GMT
Subject: CN=6de3980edd5dce35cb442e71ca4c65d2eff07b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:54:50:49:48:27:90:0c:75:01:e3:43:ad:db:
c5:2e:b5:e0:6a:8d:62:91:2a:23:d7:5e:d1:5e:82:
c8:ab:97:46:7f:8a:17:28:2f:df:ea:6f:1f:11:9c:
79:49:1e:fb:df:c0:c8:7d:bc:88:c5:6d:6e:97:2c:
1a:24:1f:55:82:df:3b:49:25:44:aa:f0:a1:80:39:
f4:fd:69:df:0d:a6:fa:af:f0:6f:87:42:82:9a:0f:
c3:18:3e:c0:b5:27:7f:e9:92:f4:53:07:fe:1c:b7:
1b:63:2d:93:a7:f3:84:af:59:98:c9:50:2e:9d:73:
30:96:8d:32:ba:7d:39:2e:f5:cc:14:35:c7:ea:d3:
02:76:10:85:1c:4a:98:f7:1c:8b:08:f6:c1:9e:51:
66:6d:7d:80:6e:15:00:03:4a:28:3a:bb:88:08:fe:
e3:42:32:bd:84:37:e9:28:81:d1:f7:81:e5:c0:83:
88:64:7b:d9:cf:7c:99:b0:e5:a9:73:24:3e:aa:e9:
df:02:b4:29:db:8a:1b:2d:75:bc:78:d2:56:af:79:
b8:a8:be:96:dc:9b:88:ea:38:4b:41:c8:b7:9a:dc:
c8:61:d3:2a:d5:02:c6:07:4e:b7:c6:8d:80:7d:06:
c6:dd:30:91:18:5f:a9:75:20:c3:d2:3b:11:a6:80:
b7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E3:98:0E:DD:5D:CE:35:CB:44:2E:71:CA:4C:65:D2:EF:F0:7B:64
X509v3 Authority Key Identifier:
keyid:CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:27:bd:1b:6c:da:d1:35:06:3e:8a:67:49:d5:4d:f7:9f:da:
3f:fc:52:99:bf:a6:38:de:61:46:f1:d3:9f:ec:7b:33:3b:56:
6a:40:6e:48:34:e6:9f:56:49:a2:76:88:31:18:71:34:a9:09:
d5:e1:e1:92:cc:e9:93:34:12:80:03:0a:c2:5c:4a:fa:83:b7:
3a:3f:7f:f4:5c:8a:6c:5a:22:6f:d2:74:9f:a4:47:8c:17:8b:
59:11:69:bc:5e:ea:97:4c:0d:ed:3a:6f:27:e9:20:96:96:5b:
c3:db:dd:eb:80:16:7a:7c:9a:30:b0:f3:64:34:a7:3f:0c:9b:
58:29:2e:d2:ae:1c:ed:a9:1b:42:be:37:0d:63:69:3d:b8:bb:
6e:5c:90:e3:d9:e3:44:6e:5e:1b:d4:3d:1d:52:58:3f:1d:e0:
f3:27:23:e1:89:36:f9:7d:2a:f4:44:d8:92:22:1f:79:e8:79:
27:85:a5:40:97:4a:a8:b2:31:a1:7a:e8:61:a8:6f:52:a9:1d:
c4:e4:cb:79:ce:d1:69:ee:20:88:03:a3:da:a8:6d:4a:57:c1:
37:d8:05:f4:49:e7:ee:cb:05:8f:7e:33:c5:a2:6a:58:55:fd:
80:d9:ba:f4:5c:35:49:89:2f:60:c5:34:38:5e:a0:44:6f:72:
b5:02:eb:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:06:55 2025 by rpki-client