Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/26331c-34a1-4bc5-b75c-f2c7922faf32/1/z-DfghIUOCcckTwk_1D9O2LUDcY.mft
File: z-DfghIUOCcckTwk_1D9O2LUDcY.mft (raw, json)
Hash identifier: aSL0thOG9VIVxUl8fZFgC6PHC6mLVJTQ3PG4ggh2IJI=
Subject key identifier: 70:E9:8D:DA:C4:7A:9F:42:54:DA:66:76:34:82:93:5A:60:4C:4A:73
Authority key identifier: CF:E0:DF:82:12:14:38:27:1C:91:3C:24:FF:50:FD:3B:62:D4:0D:C6
Certificate issuer: /CN=cfe0df82121438271c913c24ff50fd3b62d40dc6
Certificate serial: 0198499C66F59ECC0596336AFA4CD5E59D21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z-DfghIUOCcckTwk_1D9O2LUDcY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/26331c-34a1-4bc5-b75c-f2c7922faf32/1/z-DfghIUOCcckTwk_1D9O2LUDcY.mft
Manifest number: 0620
Signing time: Sun 27 Jul 2025 02:00:43 +0000
Manifest this update: Sun 27 Jul 2025 02:00:43 +0000
Manifest next update: Mon 28 Jul 2025 02:00:43 +0000
Files and hashes: 1: dg19fPDPdlao_unFvCVYC9RvrNk.roa (hash: 1cfvjDRPYU7JD/YdM+FbsUT+iUhZddEmRAh2tZhtxpM=)
2: hjhGPiy3UFBr9ANkRCMDMmtPbyY.roa (hash: sqw0T+Zj9m/aPxSyQB0liPAB0Jl/klsDHqYei7sLIoY=)
3: mrfqZX09-GYD22YGA7OHI1KATR0.roa (hash: iAu2ErUzWfhvcM5+CamqqvdYTRwJsRA5N+3mtIKS/Kc=)
4: ovGP4arKXoonSAQIQ1WNcsWj-gQ.roa (hash: T9HKSRGXUzrIsVuq9KTvv/Pp6ahuWPC0kj3dMzK0+WE=)
5: z-DfghIUOCcckTwk_1D9O2LUDcY.crl (hash: soQh1/y+6F5tPnMC2KLRucBFlPgvu7rYpe02CCv7N7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/26331c-34a1-4bc5-b75c-f2c7922faf32/1/z-DfghIUOCcckTwk_1D9O2LUDcY.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/26331c-34a1-4bc5-b75c-f2c7922faf32/1/z-DfghIUOCcckTwk_1D9O2LUDcY.mft
rsync://rpki.ripe.net/repository/DEFAULT/z-DfghIUOCcckTwk_1D9O2LUDcY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 02:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:9c:66:f5:9e:cc:05:96:33:6a:fa:4c:d5:e5:9d:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfe0df82121438271c913c24ff50fd3b62d40dc6
Validity
Not Before: Jul 27 02:00:43 2025 GMT
Not After : Jul 28 02:00:43 2025 GMT
Subject: CN=70e98ddac47a9f4254da66763482935a604c4a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:75:c9:e6:32:2b:39:de:28:a3:59:ec:2e:c7:
83:b7:07:4e:4a:db:01:8b:60:a1:65:40:9e:b2:1a:
6f:0b:93:2f:12:ef:60:b0:b8:09:fe:1f:2e:8a:2a:
ae:c5:de:08:64:76:f9:c6:7d:61:84:5b:51:d1:c0:
76:72:90:f1:a4:6b:d2:79:f2:db:f9:94:91:38:79:
97:3d:e9:93:7c:ed:c5:e7:1d:c3:d4:ea:35:c6:40:
22:73:ff:6d:64:ba:b0:63:e7:d7:f1:c7:04:e2:3c:
e7:e7:73:e3:5d:a6:7e:88:31:8c:ec:d4:be:4a:4f:
57:ef:79:88:c9:68:ec:8a:6f:98:58:75:f5:bc:7f:
e4:56:fd:04:86:46:b9:67:ef:b8:71:54:86:40:20:
54:fc:bf:b5:ba:51:ca:45:2e:0e:f4:00:7d:c6:60:
b4:26:4f:f4:60:45:68:f1:fd:22:9d:cf:36:34:f8:
f4:8e:94:17:c6:0d:a2:b4:ae:9a:9c:a8:32:e4:3e:
0e:76:71:08:5c:4b:c1:07:21:95:89:c3:65:d3:89:
e2:4c:e2:ac:ad:1a:22:24:10:03:d5:07:6c:34:9d:
67:78:5a:55:81:6c:c1:1d:37:ad:85:4f:df:c9:ac:
3a:24:45:82:ea:1e:03:a5:87:5f:b4:87:61:95:e6:
e9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E9:8D:DA:C4:7A:9F:42:54:DA:66:76:34:82:93:5A:60:4C:4A:73
X509v3 Authority Key Identifier:
keyid:CF:E0:DF:82:12:14:38:27:1C:91:3C:24:FF:50:FD:3B:62:D4:0D:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z-DfghIUOCcckTwk_1D9O2LUDcY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/26331c-34a1-4bc5-b75c-f2c7922faf32/1/z-DfghIUOCcckTwk_1D9O2LUDcY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/26331c-34a1-4bc5-b75c-f2c7922faf32/1/z-DfghIUOCcckTwk_1D9O2LUDcY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:9b:4f:94:85:d9:8d:c6:d8:0f:69:ee:57:2f:8a:8a:f8:2f:
0b:cf:02:63:64:0b:cb:6b:3b:9a:09:a6:12:d7:64:77:02:ba:
70:50:66:17:b4:bf:5f:0f:a7:56:dd:bd:ab:ae:96:3d:b0:23:
20:70:cd:98:b1:26:b5:12:19:0d:9c:0a:90:5d:4e:5d:9a:4c:
2a:4a:f5:b6:5b:49:e9:57:63:71:a9:7a:54:df:78:e4:ab:95:
e6:0a:6e:87:03:2d:4e:18:81:70:8d:63:30:97:45:70:30:e7:
70:d4:a4:34:ad:be:6d:3c:e6:41:14:1d:42:b4:92:63:6f:ba:
ee:4b:dc:fd:7b:07:0a:3c:cf:c3:ec:d7:1b:bb:7b:e7:9b:67:
be:a5:8a:48:cf:18:91:54:46:b4:de:c2:d5:6c:8b:09:23:f4:
1c:a4:1a:c6:47:a4:59:5f:2e:c4:92:21:06:fb:7a:77:70:12:
1c:a2:59:85:8c:3f:74:ca:05:0b:29:0b:6e:b3:cf:79:30:49:
d1:f1:7c:83:82:2f:0e:c1:dc:61:e8:ea:f3:18:dc:6a:fc:df:
5e:a3:1d:dd:64:f2:8e:18:79:15:2a:0b:39:9f:ee:7d:08:7b:
da:13:56:bb:a9:4e:d4:97:e8:cd:6b:9f:ce:f1:fe:70:c1:42:
d4:39:c8:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:04:51 2025 by rpki-client