Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/b2e1ef-75b4-4fe9-871b-3bc3df7a298a/1/ZapFG3g_yRoEuC-C8VbwtIlxXck.mft
File: ZapFG3g_yRoEuC-C8VbwtIlxXck.mft (raw, json)
Hash identifier: PNEw1uEMHzM4YhdreVTzpnjB9zcs0dEWGQIqIBAq62E=
Subject key identifier: 88:52:61:C2:75:0E:8C:40:6C:36:FF:3E:D4:A6:97:83:57:BE:13:4C
Authority key identifier: 65:AA:45:1B:78:3F:C9:1A:04:B8:2F:82:F1:56:F0:B4:89:71:5D:C9
Certificate issuer: /CN=65aa451b783fc91a04b82f82f156f0b489715dc9
Certificate serial: 01984287B2FAFF32CA748295C131F40C990C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZapFG3g_yRoEuC-C8VbwtIlxXck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/b2e1ef-75b4-4fe9-871b-3bc3df7a298a/1/ZapFG3g_yRoEuC-C8VbwtIlxXck.mft
Manifest number: 0EC7
Signing time: Fri 25 Jul 2025 17:00:46 +0000
Manifest this update: Fri 25 Jul 2025 17:00:46 +0000
Manifest next update: Sat 26 Jul 2025 17:00:46 +0000
Files and hashes: 1: ZapFG3g_yRoEuC-C8VbwtIlxXck.crl (hash: l0unadIMbTTp2FTshSldyr+rCcyXNp/bd0Ts1AQmWNg=)
2: v7McWGmC6x_jve8hO4dvjOUzDnU.roa (hash: pEIX+2zdNDbAjQYiraeVFcmiQz+0WDogJaC+EZR5c2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/b2e1ef-75b4-4fe9-871b-3bc3df7a298a/1/ZapFG3g_yRoEuC-C8VbwtIlxXck.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/b2e1ef-75b4-4fe9-871b-3bc3df7a298a/1/ZapFG3g_yRoEuC-C8VbwtIlxXck.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZapFG3g_yRoEuC-C8VbwtIlxXck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 17:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:42:87:b2:fa:ff:32:ca:74:82:95:c1:31:f4:0c:99:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65aa451b783fc91a04b82f82f156f0b489715dc9
Validity
Not Before: Jul 25 17:00:46 2025 GMT
Not After : Jul 26 17:00:46 2025 GMT
Subject: CN=885261c2750e8c406c36ff3ed4a6978357be134c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ed:de:49:27:57:4b:9a:27:f0:8e:02:09:74:
29:79:fb:ce:f2:28:32:ea:d7:f8:7b:73:e7:ac:14:
4b:de:71:b5:29:41:f1:7f:be:37:aa:17:f6:79:e1:
67:6a:f8:d0:d5:aa:c7:c1:36:93:5a:be:cb:c7:3d:
51:08:b4:81:74:44:9c:97:97:61:99:f4:29:83:16:
fa:be:42:70:26:e4:5f:a5:56:cb:82:20:8e:f9:3d:
f0:90:76:a1:02:e7:34:dd:a0:ed:7f:b1:53:41:14:
bd:ed:a9:b9:31:51:b1:b5:c8:1b:1b:73:8b:0c:75:
84:7e:43:6d:25:29:17:7f:08:b7:a9:09:61:4d:2a:
88:a4:d2:f8:26:61:66:4f:f0:9c:bb:1c:8f:45:74:
10:17:9f:89:56:e2:79:19:3c:92:b0:e6:60:2e:64:
7e:8c:0f:9a:c9:75:80:e2:e5:ec:d8:1c:90:7a:4b:
0a:c9:ae:60:5d:1a:7a:95:92:59:a1:4a:d0:45:7a:
99:19:1d:b7:9d:30:3c:c0:c1:61:e4:d0:69:37:1d:
ba:27:80:5b:9c:12:cc:f5:9b:3d:83:fe:90:c6:be:
f2:e4:a4:65:88:2e:c6:46:19:00:9b:4e:a0:a4:cc:
17:89:f4:c3:47:be:d0:9f:fd:1e:54:46:9d:e6:22:
72:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:52:61:C2:75:0E:8C:40:6C:36:FF:3E:D4:A6:97:83:57:BE:13:4C
X509v3 Authority Key Identifier:
keyid:65:AA:45:1B:78:3F:C9:1A:04:B8:2F:82:F1:56:F0:B4:89:71:5D:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZapFG3g_yRoEuC-C8VbwtIlxXck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b2e1ef-75b4-4fe9-871b-3bc3df7a298a/1/ZapFG3g_yRoEuC-C8VbwtIlxXck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b2e1ef-75b4-4fe9-871b-3bc3df7a298a/1/ZapFG3g_yRoEuC-C8VbwtIlxXck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:db:16:60:48:dd:f3:32:8f:49:ee:9c:38:03:91:f1:bf:4b:
c7:d3:d7:6b:34:0c:a5:99:12:a4:9c:0a:7e:c2:ae:77:32:bf:
61:b2:78:46:84:7a:3e:3d:50:e9:1f:e6:bd:ef:dd:ba:e4:e3:
d0:a6:89:59:1f:88:d9:9a:82:d4:77:09:f5:f3:86:0a:55:91:
7e:9b:09:73:14:db:84:29:93:31:71:ea:ef:7a:de:1f:13:41:
c4:44:8a:03:b6:57:72:dc:a3:2a:69:da:70:2f:9e:98:c6:a1:
4c:73:7c:14:56:55:dd:e8:a3:36:54:5f:97:93:8b:52:ad:55:
4a:71:fb:6a:5e:21:70:49:01:b4:bb:c5:dd:f7:18:18:da:5b:
d3:c2:8c:3c:aa:2d:2a:a7:cd:ed:0a:d7:fc:0a:34:79:c8:e2:
82:47:1f:aa:93:0e:05:0e:46:ad:d2:50:5a:94:5a:26:cc:76:
de:c8:31:56:88:ac:89:5c:a2:be:39:cc:b0:1b:2e:cb:58:23:
f9:3e:18:b8:ae:24:6c:8b:ce:9f:ed:a1:6e:71:90:67:dd:fd:
97:51:29:22:3b:92:90:09:9f:09:64:71:a9:a6:97:7c:ab:3b:
a2:42:56:fe:5f:66:34:de:c5:bc:8b:7c:3e:e7:8d:57:14:96:
64:a7:2d:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 01:05:20 2025 by rpki-client