Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
File: zl1FYESPeKTc3LeRoH2tIWOgjN8.mft (raw, json)
Hash identifier: 31x67yy5Z4Wvcy8LWuupULLaSMrP39iqdJGI3RgmhJE=
Subject key identifier: 4C:35:34:51:DF:2F:AE:CF:AB:72:92:57:93:2F:E4:2C:1D:4C:5C:72
Authority key identifier: CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
Certificate issuer: /CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Certificate serial: 0198CACA4787205FF2BA66F3BFA1A7AC73B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
Manifest number: 15D7
Signing time: Thu 21 Aug 2025 04:01:50 +0000
Manifest this update: Thu 21 Aug 2025 04:01:50 +0000
Manifest next update: Fri 22 Aug 2025 04:01:50 +0000
Files and hashes: 1: DnVFEpYRkYdsvx6fTEjYM0mnXYg.roa (hash: Q/XnpIbexx4X2BOItVZgFWxgUIF3KGLUNsRlADlMLPI=)
2: zl1FYESPeKTc3LeRoH2tIWOgjN8.crl (hash: 9SkAzuZ/y3ywYeJg3dXQbYpvOXq2HwLb/qgwBa1D6sY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Aug 2025 04:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:ca:ca:47:87:20:5f:f2:ba:66:f3:bf:a1:a7:ac:73:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Validity
Not Before: Aug 21 04:01:50 2025 GMT
Not After : Aug 22 04:01:50 2025 GMT
Subject: CN=4c353451df2faecfab729257932fe42c1d4c5c72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ca:85:72:a4:bc:c2:d2:49:a7:4d:94:81:24:
7d:86:5f:aa:f7:2c:44:3d:93:d5:44:ac:c2:e3:d7:
c1:08:43:18:7a:a8:2c:74:bb:a4:cc:e3:a6:a2:f5:
3a:59:50:12:8b:b7:39:13:33:30:a1:86:a1:ff:08:
a2:58:ed:8c:89:c2:1e:b4:0b:23:05:a4:e3:e4:5e:
c2:ab:5e:e3:6e:91:5b:c1:9b:c3:ca:40:fb:ed:26:
6f:ae:90:36:df:26:a5:96:d9:da:68:ef:f7:b6:00:
c7:00:92:31:9c:3a:1f:06:c1:86:0c:e7:47:09:b0:
4e:b3:ab:43:1c:bb:b1:5b:f6:af:62:ff:a3:3b:93:
55:b1:a0:cd:da:47:8f:ab:bb:aa:5f:74:7c:b8:14:
1f:f0:fd:ed:02:5d:c8:7f:08:61:ef:cb:85:5f:e6:
2c:c4:c5:5a:9c:89:76:ca:6b:f2:5e:43:f2:ab:b9:
7d:25:d1:37:0f:b8:2a:83:6f:c9:60:8e:68:88:dc:
70:5f:76:e2:6d:dd:b6:2e:9d:f3:e3:87:56:8b:32:
84:38:68:8a:16:44:59:25:57:10:24:14:f6:a0:9b:
b4:f5:c7:27:5d:62:bd:ef:f6:c4:da:b2:e7:ba:f6:
1d:a1:7d:0d:27:30:b2:95:e9:15:e0:c9:14:70:6d:
f5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:35:34:51:DF:2F:AE:CF:AB:72:92:57:93:2F:E4:2C:1D:4C:5C:72
X509v3 Authority Key Identifier:
keyid:CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:5b:90:c3:3e:d6:72:4f:d0:0d:ba:90:f3:4e:bf:a6:03:77:
31:d1:67:c7:41:e1:44:00:db:d4:6a:d1:c7:f5:41:f3:d4:4d:
f5:05:92:3f:e4:76:ef:94:3b:29:61:f1:d7:f5:ba:f1:8e:07:
18:32:96:27:51:77:65:4f:08:ef:90:69:82:f1:c3:0a:3a:15:
ba:d2:2f:da:06:25:ff:0d:5d:5e:60:84:27:c6:2c:cf:6f:93:
61:f2:cb:6d:5a:ea:71:f8:d0:ed:13:61:1a:c9:28:fd:e6:a3:
71:32:4e:de:2c:4e:1e:48:10:70:62:e1:c0:23:e0:89:41:3f:
a7:54:ba:cf:4e:9c:e2:e9:53:67:9f:ac:f0:f8:2d:a0:13:53:
44:3a:4f:34:9d:6e:fd:23:e4:17:90:de:fa:1e:01:d0:a8:0c:
e1:22:26:9c:f2:04:bc:3a:b9:98:c1:dd:53:71:69:bc:2c:93:
aa:da:cd:81:38:b5:3d:61:fd:8d:b8:eb:4f:be:f3:a1:fd:3e:
1a:59:9d:81:02:6d:1b:34:df:c3:c4:e2:ed:92:28:8c:ed:4b:
f6:8e:a6:db:d0:64:d6:41:c7:75:4e:73:ef:86:f5:42:6b:28:
ef:e9:8c:b4:61:2b:63:2a:9a:ef:f6:65:aa:5b:13:34:18:6d:
15:ff:64:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 13:52:10 2025 by rpki-client