Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
File: zl1FYESPeKTc3LeRoH2tIWOgjN8.mft (raw, json)
Hash identifier: /aREhhxc3H1mx5txJx2984qpnkD3UiSl+iDywt5GZSg=
Subject key identifier: 9D:7B:17:DF:C1:1F:83:08:1D:CF:F8:CC:BD:E8:C1:33:3A:CF:36:7E
Authority key identifier: CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
Certificate issuer: /CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Certificate serial: 0197D9641E20A287D307969B0C2242AABD84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
Manifest number: 155A
Signing time: Sat 05 Jul 2025 07:01:46 +0000
Manifest this update: Sat 05 Jul 2025 07:01:46 +0000
Manifest next update: Sun 06 Jul 2025 07:01:46 +0000
Files and hashes: 1: DnVFEpYRkYdsvx6fTEjYM0mnXYg.roa (hash: Q/XnpIbexx4X2BOItVZgFWxgUIF3KGLUNsRlADlMLPI=)
2: zl1FYESPeKTc3LeRoH2tIWOgjN8.crl (hash: doz1rTEAyJ/QW551Cyqm/jNu+5fDf/Fk01Wvcnq5x5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d9:64:1e:20:a2:87:d3:07:96:9b:0c:22:42:aa:bd:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Validity
Not Before: Jul 5 07:01:46 2025 GMT
Not After : Jul 6 07:01:46 2025 GMT
Subject: CN=9d7b17dfc11f83081dcff8ccbde8c1333acf367e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e5:9b:92:a5:b3:00:90:69:87:5e:7d:9d:54:
be:75:3c:d9:fe:b3:14:2d:22:20:1a:89:cc:4a:bb:
11:2a:44:42:ea:1a:1a:aa:01:cb:fa:24:4e:92:4c:
5b:63:4a:b9:bd:5d:2a:28:54:c1:9f:99:0a:56:96:
30:a3:53:f3:dc:ca:5f:70:79:36:af:0f:8c:f4:8a:
e8:62:fa:b3:9c:24:c1:40:2d:e4:e2:ca:5c:98:cd:
21:39:81:b2:82:e2:33:34:41:81:f7:bc:b5:63:e1:
0e:79:99:b9:eb:1c:99:79:8b:9e:77:52:81:34:98:
6a:a8:1d:77:9d:ac:66:4b:8f:4e:0e:a0:d7:65:9b:
e4:be:35:9b:98:c2:62:c6:96:e4:8e:f2:ac:76:a1:
cc:e3:40:b7:ba:25:6b:32:bd:03:28:6f:e3:92:b4:
63:43:67:8f:b2:d9:ab:3a:4f:81:aa:bf:12:c0:cf:
de:f3:68:db:72:63:a0:6c:46:04:40:d0:dc:16:76:
b8:c3:ac:35:68:99:c4:30:7a:ff:05:c9:b7:3f:e3:
7a:d4:64:77:5b:62:bd:db:d4:a5:ca:cf:4d:55:35:
5f:b5:62:5e:7b:2b:2f:54:f2:6f:52:11:4f:74:38:
50:c2:34:d1:56:ca:80:c9:92:ac:f8:76:2e:b6:84:
51:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:7B:17:DF:C1:1F:83:08:1D:CF:F8:CC:BD:E8:C1:33:3A:CF:36:7E
X509v3 Authority Key Identifier:
keyid:CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:5d:93:53:5c:5e:e2:59:bc:21:5f:25:18:50:8f:80:3f:41:
ac:c2:a3:20:0f:dc:94:bd:33:16:39:5d:b6:cc:47:19:3d:f1:
bb:32:11:95:74:57:0a:98:44:9d:98:70:df:85:98:50:ff:a3:
80:2b:ff:7f:c3:97:4d:57:29:35:e8:f3:fa:97:59:11:c1:19:
dc:fe:d2:93:04:4f:48:11:18:63:13:cf:69:88:2a:11:48:bd:
46:bf:1e:e7:3f:c9:20:e8:68:83:d5:04:ea:01:36:fe:da:1f:
db:b7:c2:89:48:de:cd:9d:a8:f4:a7:6f:fa:c2:f6:ed:b9:54:
0c:d0:cd:ce:cf:68:9d:cd:26:ba:f4:b5:91:08:4f:66:20:a2:
0c:eb:bc:c5:9b:28:b1:69:93:bb:86:af:0e:1b:d3:0b:12:b0:
b2:53:81:5e:bb:3d:8e:7b:24:55:db:1b:5f:d0:1f:75:fb:7e:
b9:ef:ad:5f:7e:de:23:37:1b:63:9f:23:3d:0c:3c:19:ca:ca:
ba:3a:ab:99:b4:3b:e8:95:c6:a2:15:e8:b7:2f:46:26:06:2b:
2d:ef:0b:7d:60:b9:fb:b4:61:95:99:9c:be:6b:7e:93:dc:23:
14:d9:67:55:ba:f6:e2:5f:0d:a7:99:e9:8a:ae:53:45:f5:04:
44:45:78:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 11:43:58 2025 by rpki-client