Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
File: zNHiiTDXen65iRtvq7spFe44hao.mft (raw, json)
Hash identifier: pI+UFnP5rdhB28hw1YPDuENtDrKUXZeBYvZCBp+Z1BM=
Subject key identifier: 10:65:F8:6A:BB:01:11:DD:B9:FA:40:D8:24:56:DD:00:1D:09:C7:49
Authority key identifier: CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
Certificate issuer: /CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Certificate serial: 0198530D15EBD931B532DEF2D82300FA38DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
Manifest number: 1607
Signing time: Mon 28 Jul 2025 22:00:23 +0000
Manifest this update: Mon 28 Jul 2025 22:00:23 +0000
Manifest next update: Tue 29 Jul 2025 22:00:23 +0000
Files and hashes: 1: zNHiiTDXen65iRtvq7spFe44hao.crl (hash: LRT3Z89brVJUvDSJHr9MUclOamu1Bmjr3FVKfuIM6sU=)
2: zwMZXsX6Z6y_GtPEpsaBS7FPtIU.roa (hash: bi378rHsH1o9Uq16RD7qe5x44q14EkwJzXLivtK1Naw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 22:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:53:0d:15:eb:d9:31:b5:32:de:f2:d8:23:00:fa:38:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Validity
Not Before: Jul 28 22:00:23 2025 GMT
Not After : Jul 29 22:00:23 2025 GMT
Subject: CN=1065f86abb0111ddb9fa40d82456dd001d09c749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:04:85:8c:95:49:99:3c:30:fd:ac:be:58:28:
f8:16:a7:07:81:1c:ce:02:d7:34:e3:84:48:97:3d:
31:f2:ce:79:73:87:48:d7:f1:93:9f:ce:61:de:02:
31:2a:21:75:92:bd:29:fb:e3:53:29:74:45:f7:3f:
3c:bd:a4:de:64:2c:f4:4a:9c:a0:1e:0a:61:46:96:
92:ba:bc:bb:92:f9:9f:12:68:fb:be:13:16:b7:3b:
c3:f6:a7:46:d9:3f:03:b2:1f:9b:45:14:b5:dc:b1:
33:6f:c9:b9:7a:9d:34:4d:9b:6e:36:36:cf:0c:6c:
42:8d:22:c7:6e:44:85:9c:14:c4:54:76:38:32:f9:
30:ba:98:63:84:50:b4:37:1b:34:ee:46:23:ea:05:
6f:28:53:ed:a9:cf:82:dc:a2:49:0f:0f:78:b7:e6:
a2:77:d7:bb:82:0d:dc:11:b5:d4:2f:44:19:b4:de:
05:97:5c:6b:a4:56:ba:2f:3d:2a:bc:ec:ad:f2:19:
6e:94:fd:3f:73:d7:6b:a3:79:56:79:17:92:e6:2d:
54:4f:b9:3b:ee:26:63:c7:2b:b2:53:38:53:7e:24:
6e:1c:78:b9:e3:d3:3f:1a:3b:59:a7:a8:25:8b:1e:
1a:0c:15:df:fb:f0:9e:6b:27:5b:18:db:6c:e0:2f:
54:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:65:F8:6A:BB:01:11:DD:B9:FA:40:D8:24:56:DD:00:1D:09:C7:49
X509v3 Authority Key Identifier:
keyid:CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:e5:44:14:03:10:1a:87:b1:07:55:f4:4e:18:39:5e:9e:a5:
68:d1:58:96:79:a2:52:96:96:68:80:a2:4f:26:1a:70:a2:e7:
40:fc:54:54:96:e2:a7:e7:40:38:ad:a7:fc:c4:35:c8:0d:79:
62:46:a4:e9:9a:7d:eb:59:67:f1:15:82:00:7c:a2:60:44:c5:
57:26:05:64:eb:df:7f:28:e1:d5:e5:7e:b0:8e:45:11:1c:5d:
e7:5c:bd:81:95:1b:f3:b0:4f:7c:80:ce:e9:b0:68:7e:3a:1b:
d4:64:4d:f1:40:39:ad:be:62:43:e3:8c:7d:3e:2e:9e:d9:4c:
2f:17:7b:12:6a:8c:db:ad:7b:df:e6:3d:c7:01:03:ff:a9:06:
f3:4d:a8:cb:d4:93:40:94:7c:ee:ef:ee:0f:b5:62:e5:b5:1b:
a9:22:6e:53:00:5e:7f:26:07:68:a8:08:a7:95:92:96:e2:5d:
da:b2:3f:63:f3:2c:14:ac:18:c1:65:bd:03:3f:78:af:3f:6f:
39:94:e1:db:46:e6:5e:b6:93:9b:d0:17:9a:58:79:51:f2:b8:
bd:4f:70:5c:35:05:a7:46:42:39:c8:3c:f3:54:49:2a:3b:80:
a5:46:5a:3f:fb:b1:d6:e2:2e:09:af:a3:09:2f:93:75:4a:3f:
95:e3:8b:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 04:15:07 2025 by rpki-client