Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.mft
File: dIZPUCPsYmPvnxb5AYf18oBh0RU.mft (raw, json)
Hash identifier: z2RYIMTEE5sqKy7Bllw1zzBcvF57wxLGycfAAWs4H5k=
Subject key identifier: 25:57:FF:42:0A:49:EC:8A:36:2C:02:B1:77:63:29:05:4A:97:34:FB
Authority key identifier: 74:86:4F:50:23:EC:62:63:EF:9F:16:F9:01:87:F5:F2:80:61:D1:15
Certificate issuer: /CN=74864f5023ec6263ef9f16f90187f5f28061d115
Certificate serial: 0198526887BD16B109EB632EBFDB51856660
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dIZPUCPsYmPvnxb5AYf18oBh0RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.mft
Manifest number: 0BF3
Signing time: Mon 28 Jul 2025 19:00:38 +0000
Manifest this update: Mon 28 Jul 2025 19:00:38 +0000
Manifest next update: Tue 29 Jul 2025 19:00:38 +0000
Files and hashes: 1: dIZPUCPsYmPvnxb5AYf18oBh0RU.crl (hash: QaIkkzD/QMqiFjzwP+9hi/22BuqEyPQ+NIu7g9HF/1A=)
2: vj_VJ7c4UiwkU_5yyGsly7O6qIk.roa (hash: RoD9r1uYXNwcvEQVZCci6nqFAbGm9X9wv8JUg9I5naM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.mft
rsync://rpki.ripe.net/repository/DEFAULT/dIZPUCPsYmPvnxb5AYf18oBh0RU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 19:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:52:68:87:bd:16:b1:09:eb:63:2e:bf:db:51:85:66:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74864f5023ec6263ef9f16f90187f5f28061d115
Validity
Not Before: Jul 28 19:00:38 2025 GMT
Not After : Jul 29 19:00:38 2025 GMT
Subject: CN=2557ff420a49ec8a362c02b1776329054a9734fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e7:25:d6:e2:18:cc:ac:fb:c0:2c:52:e1:97:
08:1e:f1:52:21:cc:91:cf:c4:13:7b:76:86:c1:72:
90:8e:89:5b:6e:44:c1:4f:97:3e:8b:d2:05:10:05:
e9:56:74:3c:2f:9d:fa:52:18:fd:39:e8:87:71:2e:
15:4d:b8:d2:e8:de:0e:09:18:f1:d8:0d:54:65:3c:
d9:e8:64:0b:38:30:68:73:0b:30:20:28:a1:bd:1f:
58:bd:5a:b9:0a:e5:be:2c:19:18:1d:da:f0:e0:9c:
8b:50:5a:c8:22:55:46:12:61:aa:52:58:75:78:c6:
3e:13:26:6d:cb:6d:db:7f:02:75:a3:e3:12:6a:7e:
1e:8a:a5:dc:63:7a:9d:26:27:6f:8e:a1:24:06:1e:
d4:bb:05:58:fd:7e:12:1f:86:74:01:83:52:6c:94:
09:56:f8:89:94:c4:7d:c9:b9:bc:20:69:2c:cf:32:
2c:b8:6f:eb:d6:04:12:a5:85:d5:ac:16:4f:3e:93:
f2:0e:65:59:77:6f:6c:cb:24:e2:86:cb:1a:f6:62:
e4:f1:de:a7:99:8d:1f:ef:90:bd:51:fd:97:ec:ef:
6b:cc:a2:ca:65:17:d1:62:79:d4:74:c6:42:53:9e:
23:40:ce:64:d5:95:2f:98:77:26:6d:bc:7f:1a:d1:
8a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:57:FF:42:0A:49:EC:8A:36:2C:02:B1:77:63:29:05:4A:97:34:FB
X509v3 Authority Key Identifier:
keyid:74:86:4F:50:23:EC:62:63:EF:9F:16:F9:01:87:F5:F2:80:61:D1:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dIZPUCPsYmPvnxb5AYf18oBh0RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:d1:71:c4:1f:5d:e9:07:b8:56:c7:bd:02:92:d1:98:9c:b2:
fd:63:43:d6:7f:97:c3:01:b7:49:5f:d2:1c:19:ed:b4:cd:47:
13:a8:77:5f:44:3f:62:62:4c:94:52:4f:5c:2d:93:1e:d9:3e:
62:78:77:85:b1:28:63:7e:2e:69:2d:81:dd:e6:68:b7:a3:af:
bd:6f:6a:17:65:37:58:da:15:c0:a9:2b:97:5c:05:8f:f6:ea:
fe:2d:24:32:6e:54:61:54:5a:75:b5:3a:03:4f:8b:55:76:5f:
7a:33:6f:d2:80:7b:94:c1:d7:12:55:45:8f:40:7c:09:b9:89:
80:32:c4:ff:75:14:11:7f:19:29:25:e8:e2:f8:b0:2b:b1:20:
fa:6c:4c:4c:3e:a1:e1:ae:ad:1a:a7:92:34:da:3a:2b:32:aa:
96:a3:6d:7c:f9:40:0a:c4:8e:4b:37:d1:5e:99:1b:6e:4e:c1:
35:ab:61:04:71:85:f4:3f:ab:eb:5c:ad:fa:bc:ce:d4:cb:a7:
53:7d:dd:e2:87:7f:a8:18:39:50:84:95:5f:79:fa:1c:0f:ba:
0d:c3:ea:d8:e2:4f:5f:da:ea:8c:f6:0d:4d:1a:45:6d:0c:2c:
50:a4:42:a9:22:1b:4b:91:82:05:cb:8d:10:a5:0f:15:08:88:
fa:06:88:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 04:44:41 2025 by rpki-client