Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
File: 0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft (raw, json)
Hash identifier: Y0Gb933yfw/1+mCha+TyhOqYgK9UzUkeIvmMysE3Mmg=
Subject key identifier: 5E:8A:77:02:95:EF:5C:E6:24:89:0B:E7:21:3B:39:8B:DC:72:AA:89
Authority key identifier: D1:99:3F:78:CA:E4:45:9A:9B:9E:26:89:AD:30:F0:BC:44:CC:67:24
Certificate issuer: /CN=d1993f78cae4459a9b9e2689ad30f0bc44cc6724
Certificate serial: 0197B88EB00E71C43DE45FFF63A9BB91881A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
Manifest number: 0308
Signing time: Sat 28 Jun 2025 22:00:48 +0000
Manifest this update: Sat 28 Jun 2025 22:00:48 +0000
Manifest next update: Sun 29 Jun 2025 22:00:48 +0000
Files and hashes: 1: 0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl (hash: 9SGaev0DI9t1bAD1KR7MNsTjKs1HbtqycdPh+N1tne4=)
2: 3P6wXNJcDC3b35lAwjjqX-1dpME.roa (hash: u7hgo1u27j1RyUhAH8Or7hL0YQ+vaU+na5DgQVVElfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8e:b0:0e:71:c4:3d:e4:5f:ff:63:a9:bb:91:88:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1993f78cae4459a9b9e2689ad30f0bc44cc6724
Validity
Not Before: Jun 28 22:00:48 2025 GMT
Not After : Jun 29 22:00:48 2025 GMT
Subject: CN=5e8a770295ef5ce624890be7213b398bdc72aa89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:31:e1:da:cd:c4:f9:ce:2d:a2:09:4d:52:aa:
40:47:98:c7:e5:d6:14:94:d0:62:95:08:af:87:2f:
cb:56:50:c2:d2:51:a2:1d:1a:58:c4:0b:02:00:fb:
4e:d9:b3:f8:0b:6e:d5:4b:9d:36:b2:a1:6d:20:9b:
08:9f:6f:47:85:f4:48:13:23:3b:62:63:a5:48:f0:
b4:45:1e:d7:15:e2:54:45:82:34:42:e0:4d:43:f5:
12:19:9c:0a:d7:0b:73:82:d4:d2:35:3c:da:74:17:
d7:cd:27:1a:51:61:82:55:7c:46:a6:49:26:35:a4:
c9:9e:28:18:79:32:21:53:af:74:76:d3:2d:72:dd:
45:90:17:35:06:a2:47:ed:7a:e3:4c:ab:15:75:ff:
e4:d2:f2:c1:95:18:22:8e:43:2e:93:51:c4:d9:73:
99:83:3b:ad:b3:84:7c:3a:d1:04:02:9b:ad:9e:24:
2b:4c:3c:df:10:e9:72:ec:70:ed:ac:e6:53:15:5d:
f0:2c:fb:c9:be:05:25:e6:21:dc:57:10:14:af:cb:
c3:8e:bf:ac:a0:f4:bf:af:31:1e:c9:c2:f0:81:9d:
1d:38:47:ce:0b:bf:49:5b:a4:31:ed:7c:57:83:18:
d8:a5:4e:56:af:c4:b2:39:9f:28:86:f0:00:62:c6:
b4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8A:77:02:95:EF:5C:E6:24:89:0B:E7:21:3B:39:8B:DC:72:AA:89
X509v3 Authority Key Identifier:
keyid:D1:99:3F:78:CA:E4:45:9A:9B:9E:26:89:AD:30:F0:BC:44:CC:67:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:c4:cb:bf:dc:1c:f6:92:f5:30:66:05:4e:c5:0f:49:e7:ee:
ca:df:51:3b:8a:12:6a:45:4d:ba:09:78:27:e7:62:20:5f:28:
81:98:c1:b8:54:f4:d6:23:ff:98:45:6a:b0:86:d6:11:82:c7:
37:7c:5e:c6:53:3f:b1:0c:2e:8e:7b:a3:91:ae:23:92:10:67:
18:8a:f7:fe:5d:2d:69:48:b9:02:2c:15:d7:37:d9:7b:f7:fa:
3c:4a:ce:4f:1f:3f:3c:9f:c2:c7:72:60:07:5f:71:c5:7f:27:
b2:5e:34:ce:eb:86:d8:85:57:99:31:cf:0c:e1:4e:52:f5:ee:
14:40:96:4e:66:75:97:ca:c0:72:2d:10:b9:60:f0:da:7e:4b:
cb:ea:59:e5:13:83:04:bc:f0:04:28:18:05:9f:d1:64:b0:84:
da:05:83:0b:f6:82:f8:da:f5:38:76:b1:d0:af:02:74:a8:ad:
4d:c2:0f:1e:cf:42:71:07:c9:94:ae:fc:6d:4b:1d:37:fd:6a:
73:82:30:be:0b:4e:7e:3f:3a:37:75:e8:c2:fb:2b:d5:5f:bb:
c2:75:14:4c:f5:7c:e9:ce:61:5b:bf:16:a7:b1:28:a6:a2:51:
78:57:3a:27:0e:08:c6:37:50:a9:59:4e:3d:57:8a:0d:25:8b:
8f:4b:c7:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:55 2025 by rpki-client