Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File: Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier: BGKtvlU0kLoczzTdMqHKsDXuVSEWOE/SOKYgcUhdhmc=
Subject key identifier: F5:82:0A:C3:45:7A:2E:7B:DB:32:FB:22:95:89:66:39:A9:1C:8B:02
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer: /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial: 019839847351B1A6004E17E098FEC57CB82C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number: 01EC
Signing time: Wed 23 Jul 2025 23:00:38 +0000
Manifest this update: Wed 23 Jul 2025 23:00:38 +0000
Manifest next update: Thu 24 Jul 2025 23:00:38 +0000
Files and hashes: 1: 7RtSvYvJ-s26z4jJmihBpc9PPTg.roa (hash: +WPL+eLMOyDQbtRDqabesCoaqYzO2nUYgvkky6oLihM=)
2: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: ga/IvTgtMU0ZX483mcGRNClKtu9jcmvjzbh+pJszBpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:39:84:73:51:b1:a6:00:4e:17:e0:98:fe:c5:7c:b8:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Validity
Not Before: Jul 23 23:00:38 2025 GMT
Not After : Jul 24 23:00:38 2025 GMT
Subject: CN=f5820ac3457a2e7bdb32fb2295896639a91c8b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:53:d0:ef:c1:86:78:93:90:1a:31:49:a4:38:
c2:b7:b0:13:e5:5a:85:35:4a:85:e7:98:3c:a0:3e:
32:1f:4a:6a:4d:1f:1e:07:64:e0:f4:80:35:ca:86:
1f:c2:7b:b3:10:ee:b2:91:c3:b0:a4:13:8e:9f:5d:
08:84:d0:34:9b:4f:f5:c4:3b:cc:e5:06:2a:d7:8d:
7c:f1:8d:69:da:be:e3:c1:b1:8f:a1:70:2d:5e:6a:
5f:a9:16:7b:b6:bc:94:20:46:6c:86:45:5c:4a:0b:
b2:63:d4:70:17:90:47:4c:d6:12:5b:03:00:f1:a9:
0a:fc:dc:ed:f0:80:61:1d:97:08:13:03:21:39:f3:
af:b7:63:35:12:73:2a:e4:83:79:6e:7f:4d:6c:00:
1a:19:ab:5b:f3:dd:61:0b:7b:1e:86:22:cb:e6:e5:
d3:dc:b1:30:cd:47:45:b6:1f:87:f5:8e:c8:3b:75:
29:ac:3e:4a:ba:53:65:31:7b:8b:02:a7:85:51:7f:
4f:29:c3:6e:8c:0b:89:e4:85:2f:8f:75:73:9b:ff:
87:c7:7d:f9:6b:1c:7c:d1:4b:a9:66:05:bf:98:f4:
2d:3b:03:a7:b3:99:f2:c5:b0:a9:2a:ce:c1:61:3e:
f9:8a:7c:35:75:a3:06:a3:61:1c:b0:90:a8:ab:9d:
0a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:82:0A:C3:45:7A:2E:7B:DB:32:FB:22:95:89:66:39:A9:1C:8B:02
X509v3 Authority Key Identifier:
keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:6e:13:2a:e1:97:45:95:66:2e:96:8d:71:ec:96:02:1c:24:
92:ad:b7:77:92:e9:5e:0a:25:54:73:73:07:59:29:a8:08:4d:
fb:b3:53:42:5b:ac:2a:7a:5a:08:f9:05:f4:59:1a:64:2d:16:
63:6d:4c:87:6a:6b:2e:08:cc:94:99:5b:9a:67:cf:a9:ab:b3:
32:e5:10:40:9f:b9:03:e6:0a:65:1c:ff:1b:28:2a:aa:ff:ce:
f2:fe:1b:11:46:15:cf:30:cc:42:d2:d2:50:94:8f:a1:2f:45:
68:54:4a:15:4b:95:4e:c0:c9:18:e9:36:ae:96:ad:d2:dd:b2:
17:b1:bf:c5:96:cf:64:29:a9:ea:0b:51:00:45:c1:00:3a:ec:
88:d5:df:28:60:c6:66:4a:39:4a:c5:5a:f6:12:08:bf:70:df:
74:7b:50:5d:a5:d6:21:a1:7c:f6:bb:29:4b:ed:6c:a4:21:1a:
1f:4b:69:89:24:0c:86:1c:b9:b0:bc:cb:2a:dc:d7:8c:d7:77:
82:f9:7d:9e:25:57:56:37:d8:33:e5:a1:6c:d0:7b:c9:08:80:
50:d2:1f:fc:df:67:33:34:b9:a8:f9:27:97:40:2d:35:80:a9:
ad:3b:e6:6a:97:6a:31:bd:20:28:eb:dd:05:fa:d4:5f:9e:17:
39:ed:ba:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZg5hHNRsaYAThfgmP7FfLgsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiM2Y2ZmE5ZjAzNzc2NWU3NGJkZjJhYzgyY2NiYWJjN2U0
ZmM4ZWQwHhcNMjUwNzIzMjMwMDM4WhcNMjUwNzI0MjMwMDM4WjAzMTEwLwYDVQQD
EyhmNTgyMGFjMzQ1N2EyZTdiZGIzMmZiMjI5NTg5NjYzOWE5MWM4YjAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2lPQ78GGeJOQGjFJpDjCt7AT5VqF
NUqF55g8oD4yH0pqTR8eB2Tg9IA1yoYfwnuzEO6ykcOwpBOOn10IhNA0m0/1xDvM
5QYq14188Y1p2r7jwbGPoXAtXmpfqRZ7tryUIEZshkVcSguyY9RwF5BHTNYSWwMA
8akK/Nzt8IBhHZcIEwMhOfOvt2M1EnMq5IN5bn9NbAAaGatb891hC3sehiLL5uXT
3LEwzUdFth+H9Y7IO3UprD5KulNlMXuLAqeFUX9PKcNujAuJ5IUvj3Vzm/+Hx335
axx80UupZgW/mPQtOwOns5nyxbCpKs7BYT75inw1daMGo2EcsJCoq50KJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPWCCsNFei572zL7IpWJZjmpHIsCMB8GA1UdIwQY
MBaAFCs/b6nwN3ZedL3yrILMurx+T8jtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3o5dnFmQTNkbDUwdmZLc2dzeTZ2SDVQeU8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jNTRmNDItOTEyZi00YjgxLThiMDAt
NWMwMGZjZDczNjE5LzEvS3o5dnFmQTNkbDUwdmZLc2dzeTZ2SDVQeU8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9jNTRmNDItOTEyZi00YjgxLThiMDAtNWMwMGZjZDczNjE5
LzEvS3o5dnFmQTNkbDUwdmZLc2dzeTZ2SDVQeU8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlW4TKuGX
RZVmLpaNceyWAhwkkq23d5LpXgolVHNzB1kpqAhN+7NTQlusKnpaCPkF9FkaZC0W
Y21Mh2prLgjMlJlbmmfPqauzMuUQQJ+5A+YKZRz/Gygqqv/O8v4bEUYVzzDMQtLS
UJSPoS9FaFRKFUuVTsDJGOk2rpat0t2yF7G/xZbPZCmp6gtRAEXBADrsiNXfKGDG
Zko5SsVa9hIIv3DfdHtQXaXWIaF89rspS+1spCEaH0tpiSQMhhy5sLzLKtzXjNd3
gvl9niVXVjfYM+WhbNB7yQiAUNIf/N9nMzS5qPknl0AtNYCprTvmapdqMb0gKOvd
BfrUX54XOe265A==
-----END CERTIFICATE-----
Generated at Thu Jul 24 08:18:04 2025 by rpki-client