Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
File: zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft (raw, json)
Hash identifier: 9g14O7W+XWQpFKBe6uAvpiAfDdgP0DmhnwYzSxZA5V4=
Subject key identifier: 93:0E:6B:81:77:2B:AA:FC:DC:7C:C9:CA:53:F2:B5:C4:DD:0E:77:9D
Authority key identifier: CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
Certificate issuer: /CN=cc8df88054060df685bba9739123e8342d479e84
Certificate serial: 0198451A6ACE3532F62BDD5E088DB09D3D7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
Manifest number: 1598
Signing time: Sat 26 Jul 2025 05:00:15 +0000
Manifest this update: Sat 26 Jul 2025 05:00:15 +0000
Manifest next update: Sun 27 Jul 2025 05:00:15 +0000
Files and hashes: 1: Kyq8dvDQCWTM4SDI01T-WEma_xs.roa (hash: csmuD1qBTRKUBvLNGvxDwNNOARNFB8rqYka6vl5ZQvQ=)
2: zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl (hash: rCpC8qy16iinOMc3PUqDiAf8tKbKOlAM7gKcarSa6io=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 21:50:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:45:1a:6a:ce:35:32:f6:2b:dd:5e:08:8d:b0:9d:3d:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc8df88054060df685bba9739123e8342d479e84
Validity
Not Before: Jul 26 05:00:15 2025 GMT
Not After : Jul 27 05:00:15 2025 GMT
Subject: CN=930e6b81772baafcdc7cc9ca53f2b5c4dd0e779d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:60:7a:bc:c3:2d:71:af:5c:af:56:92:1e:44:
72:67:55:64:22:56:b0:e0:bb:eb:0c:52:7d:40:70:
d3:c8:8c:2f:69:76:94:dd:77:c6:1a:39:5a:a9:fa:
f2:2e:1a:9e:e7:6b:94:eb:4b:51:12:b0:7d:c9:cf:
a6:fd:60:b4:f4:84:04:65:2c:e4:f3:b8:f5:12:74:
73:5a:eb:f4:02:f3:c9:ee:67:e4:0c:14:12:07:fd:
e5:ac:32:bd:02:c5:ab:ab:b4:fb:dc:ab:d8:1a:6f:
da:46:05:44:24:5e:15:f7:98:bf:83:59:8b:ad:5a:
c3:4e:97:5d:12:d1:fb:b4:9a:af:ca:ce:53:a9:2d:
b2:96:5b:44:88:66:37:8f:f3:73:0e:df:1c:16:99:
17:2c:7e:4c:22:6f:a0:5a:cc:40:79:2f:4c:ab:2d:
60:d9:83:ec:fc:39:c3:41:19:9a:f1:6c:82:b3:ed:
e6:e0:a0:4d:b6:b4:76:90:81:e2:eb:b0:ef:7d:63:
85:39:dc:aa:0b:6e:e5:1d:a5:01:f4:59:c1:2b:bf:
34:75:89:7b:0c:00:b0:ea:70:6d:98:b5:03:6e:f7:
03:50:9f:a7:97:b7:44:2e:dd:ad:bd:22:a9:dc:07:
c8:6c:15:92:42:ca:19:d6:66:e3:24:bc:a6:65:44:
b3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:0E:6B:81:77:2B:AA:FC:DC:7C:C9:CA:53:F2:B5:C4:DD:0E:77:9D
X509v3 Authority Key Identifier:
keyid:CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:0e:fb:81:71:b9:2e:50:93:72:d0:6b:8f:f6:60:26:2b:76:
a6:21:7a:80:40:3a:6e:46:95:4b:97:4e:d6:c3:22:44:e7:b8:
e2:e1:56:da:5f:21:d6:44:1b:78:4c:ab:c6:03:3c:76:82:50:
ae:11:ed:33:b6:fd:74:65:69:32:82:a7:4d:92:bd:b2:bd:5c:
12:e1:ad:76:8b:15:e5:3b:7c:71:4f:63:26:c2:4f:54:1b:6e:
20:0a:33:5c:2d:e8:22:5e:db:11:4d:fa:58:92:09:d7:d4:7f:
ad:74:64:3f:82:62:2d:a9:36:87:a5:25:06:46:ab:47:a9:b7:
b6:c5:f8:65:db:19:d9:06:b7:2a:08:da:86:00:ca:13:8c:82:
ea:90:8d:47:d9:9d:9e:8a:fe:55:b3:32:de:61:38:5f:f3:0c:
73:d8:3e:a2:b6:9f:cd:dc:c3:2d:a7:be:af:a0:7b:06:ff:3a:
df:62:64:33:95:f6:4f:85:c9:7d:16:83:31:63:0d:ea:02:7c:
f7:bb:6e:59:e0:a9:6f:ce:e2:98:3e:dc:80:ef:12:95:3b:e4:
ae:8a:6c:16:e6:82:0c:34:e5:56:9a:d1:00:fa:0f:f0:c8:fb:
ff:8a:0b:68:dd:c9:75:e7:f0:7b:6e:d9:4a:e8:5f:c2:a1:b2:
27:56:a5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 06:38:29 2025 by rpki-client