Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.mft
File: Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.mft (raw, json)
Hash identifier: 0sRNwkQauL9N7RZF+Jj2FgYuOpNrHF2pZMKE5KrJ6Po=
Subject key identifier: F0:01:FC:FF:05:0C:E3:5A:F1:3D:8B:E0:D3:80:70:39:2D:83:A9:60
Authority key identifier: 67:5F:BE:4B:1F:00:23:3E:D7:67:99:00:71:F0:45:90:C9:0C:88:7D
Certificate issuer: /CN=675fbe4b1f00233ed767990071f04590c90c887d
Certificate serial: 01984B541FC51B7680E13B2B973D69506A1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.mft
Manifest number: 0E9A
Signing time: Sun 27 Jul 2025 10:01:01 +0000
Manifest this update: Sun 27 Jul 2025 10:01:01 +0000
Manifest next update: Mon 28 Jul 2025 10:01:01 +0000
Files and hashes: 1: Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.crl (hash: 2PkgEfJSqWSIPBtziJzpWfnjjfB7zQv9jS/Tv2DAU1A=)
2: _BrWLEBfYPYfGOoM_00MeFoB9s8.roa (hash: ONS0Sr1NVQgM4PQUgLtLkyRNai6z7sLm2R6unFgdvYQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:54:1f:c5:1b:76:80:e1:3b:2b:97:3d:69:50:6a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=675fbe4b1f00233ed767990071f04590c90c887d
Validity
Not Before: Jul 27 10:01:01 2025 GMT
Not After : Jul 28 10:01:01 2025 GMT
Subject: CN=f001fcff050ce35af13d8be0d38070392d83a960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c5:54:6e:4a:b6:ca:04:88:03:10:3a:4a:26:
60:1f:91:9c:b8:c1:61:90:58:ca:da:50:d8:0a:14:
77:64:b3:fc:e5:e5:4b:fc:9d:50:20:30:30:f2:8b:
5d:13:2c:18:82:40:41:2e:19:6d:9e:af:16:ba:76:
89:7c:11:0b:e2:89:ab:47:98:22:f2:00:27:97:05:
2e:9f:7b:fc:59:7b:b4:af:be:d3:f6:3d:76:5e:a4:
e0:89:9c:4e:ec:a6:d6:cb:13:94:af:41:24:b2:0e:
98:d4:35:88:87:1e:cc:0a:2f:b4:61:29:ec:c7:21:
87:3f:b0:e7:03:f3:01:db:ea:a0:26:09:1a:bb:7a:
04:3f:aa:8c:72:21:a5:1a:6c:86:47:d7:3e:80:5f:
96:fd:23:be:aa:35:8e:dc:aa:07:ef:69:0f:a4:e8:
40:df:b5:2b:90:31:0e:45:84:04:81:b5:38:c3:19:
0f:33:48:cc:9a:c1:ac:51:70:96:71:0c:76:57:88:
12:a6:d6:b6:06:66:63:f3:ec:c4:02:fe:fe:97:15:
c2:e6:dc:9b:82:c2:cf:b5:ae:a0:7d:59:a4:71:e1:
38:37:ed:44:99:35:a0:ab:6b:92:90:5d:4c:3c:a1:
5b:60:17:23:43:6f:f0:19:06:1c:f0:73:d8:fd:34:
cb:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:01:FC:FF:05:0C:E3:5A:F1:3D:8B:E0:D3:80:70:39:2D:83:A9:60
X509v3 Authority Key Identifier:
keyid:67:5F:BE:4B:1F:00:23:3E:D7:67:99:00:71:F0:45:90:C9:0C:88:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:f4:df:5b:bc:44:cc:98:44:32:4a:a7:83:cb:2c:a3:fa:73:
11:48:ab:53:56:c2:38:ec:dc:3a:5b:bb:76:de:b1:4c:6c:00:
9b:44:60:2d:1a:14:d4:cf:3b:ce:b8:fe:36:8e:cf:3a:57:28:
af:d9:0b:2c:9b:06:cc:64:4f:96:d0:f4:a6:e4:43:e4:83:d4:
fc:0c:af:cf:e8:89:82:fa:98:ea:99:1b:15:e6:70:69:2d:9c:
f9:07:87:01:cf:48:2b:f6:3c:be:5d:c0:0c:d4:80:40:78:6d:
5a:06:0a:a6:d1:ac:5b:25:b8:6d:a2:ed:15:e7:64:a9:1e:4e:
bb:20:65:ad:bc:53:3a:b6:f3:bf:26:20:60:51:0f:21:ee:69:
27:da:3a:04:a2:35:49:09:ba:f3:04:5e:70:19:c7:9f:69:7b:
21:9e:11:04:22:10:f2:a0:43:7f:0f:13:a4:de:dd:a5:2c:e6:
a7:48:90:6b:f6:e0:5a:8a:71:26:80:0b:26:58:4e:05:5a:b8:
5d:81:1e:33:b2:b2:fe:a8:a0:8b:78:53:a0:1d:11:9d:e7:0d:
f5:29:5b:0a:27:cc:7f:3f:78:75:a5:6a:51:d7:1a:00:a4:25:
47:b4:5b:b2:47:c3:a6:64:b4:df:b7:39:e0:7a:95:5e:4f:f7:
f3:a9:c0:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 13:20:33 2025 by rpki-client