Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
File: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft (raw, json)
Hash identifier: o4O67pRARQt+uSSwHkiF0U3y0kmG7YvrW5Bq0D2ZCx4=
Subject key identifier: 3D:5D:33:16:48:F4:98:12:97:9E:8F:DB:85:F8:97:29:DA:56:C2:B6
Authority key identifier: 64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
Certificate issuer: /CN=64a7a6cd583814d393bee2635b545574cc75620c
Certificate serial: 0196B5C6E0B75B11E474FBF6FE656D0C5453
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
Manifest number: 1162
Signing time: Fri 09 May 2025 16:00:31 +0000
Manifest this update: Fri 09 May 2025 16:00:31 +0000
Manifest next update: Sat 10 May 2025 16:00:31 +0000
Files and hashes: 1: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl (hash: i/qknjUsLXhNMw9zgRYAC6hJKWlORa2e7KwAfHCsSbI=)
2: rJRxxRneTTHrBiouHAwe-Vj2hOM.roa (hash: pnxg6ZPXerYJRTKN22NAobx2yMJvSslv4M+/PffiHGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 16:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:c6:e0:b7:5b:11:e4:74:fb:f6:fe:65:6d:0c:54:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a7a6cd583814d393bee2635b545574cc75620c
Validity
Not Before: May 9 16:00:31 2025 GMT
Not After : May 10 16:00:31 2025 GMT
Subject: CN=3d5d331648f49812979e8fdb85f89729da56c2b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d5:7b:ad:46:d1:3f:90:25:fc:9e:54:58:57:
39:7d:01:99:d8:53:79:21:f9:6a:9b:17:cf:84:17:
2e:c7:8a:e4:f8:7e:e5:3d:b6:6d:5f:97:b8:4c:c1:
de:1e:72:d4:45:29:2c:83:e9:28:99:cd:4d:df:04:
93:2f:2f:ed:bd:1a:8a:58:c0:18:fc:ae:c1:77:e1:
2d:32:76:97:83:9f:f6:d1:05:70:7e:06:b8:f2:12:
87:1f:20:95:8d:75:ce:5f:af:d4:33:a0:39:db:bd:
50:9f:ce:f1:36:66:7f:06:c3:bb:bc:02:22:11:d4:
ae:fe:3f:6a:ef:51:5d:85:c8:49:4c:cf:cb:89:6d:
72:b5:da:32:9d:fd:68:23:37:00:60:53:95:fa:7b:
85:58:5a:a7:b4:1e:a8:23:41:c6:21:e9:ea:f0:2c:
a7:19:aa:9c:ab:ec:f0:e5:a3:d4:3b:78:f3:be:28:
24:77:a6:74:95:e4:ee:a6:ce:a0:e5:92:6b:f0:c8:
b9:1e:ff:e7:3f:60:25:71:86:aa:9b:f1:e5:a9:26:
79:12:24:47:90:da:64:af:d2:f6:cb:48:f1:7c:9f:
d9:c6:43:e6:18:9e:77:a1:31:25:da:3e:90:5d:8e:
af:36:b5:6c:f0:dd:34:22:31:0b:68:11:3b:ab:28:
ec:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:5D:33:16:48:F4:98:12:97:9E:8F:DB:85:F8:97:29:DA:56:C2:B6
X509v3 Authority Key Identifier:
keyid:64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:f9:9b:f0:75:11:e1:70:d7:1f:52:7d:e0:6e:54:6b:9e:a9:
1f:51:cb:56:5a:34:62:23:6f:d1:ab:3b:f0:32:d5:f5:80:17:
e2:89:81:b4:f5:aa:20:dd:40:4b:78:a0:b3:8d:80:42:05:20:
f0:b4:27:aa:5e:82:ca:e9:f1:8b:95:d0:0c:9e:67:b8:77:82:
4b:22:b7:21:f1:3d:bf:4a:93:7d:c1:4f:30:a1:dc:5c:62:e7:
bd:2d:a3:8d:e7:7f:ce:92:45:67:17:fe:26:9b:7e:a3:67:f1:
af:cd:83:c7:05:ca:b5:9c:90:75:a9:20:c1:26:02:c3:15:73:
6c:a0:57:29:b8:e0:56:f4:a7:10:91:fb:64:c1:71:4b:b7:9d:
d0:b7:58:4e:51:04:65:5d:53:db:d4:df:28:b5:07:76:2e:15:
6d:bc:9c:6a:40:2f:cb:dd:bf:0e:48:8d:9b:79:60:c8:25:b7:
d1:59:19:88:39:72:b1:a3:c2:9d:3a:37:ea:05:87:94:fa:dd:
43:f7:86:d8:79:a7:be:d1:e0:84:43:40:bd:53:e3:f9:bc:72:
3b:d6:d9:a1:fa:dc:df:12:15:5a:a7:d5:a0:11:98:37:19:a6:
38:40:05:db:e5:af:b1:74:61:6b:fc:47:39:e1:68:fb:f1:23:
02:6d:60:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 21:48:49 2025 by rpki-client