Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
File: zf9bPNry6tG8MwlBG_lJLNmHr7o.mft (raw, json)
Hash identifier: FrKZ8SSPXB6p9L4wvpnyM2kV1u2ArXGPem6l3VHaiq8=
Subject key identifier: 69:5D:02:2F:01:46:10:FF:A2:27:D8:3F:4A:F4:B6:0B:86:08:89:E2
Authority key identifier: CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
Certificate issuer: /CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Certificate serial: 01984AAF2946495562328DD392FD990136F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
Manifest number: 045C
Signing time: Sun 27 Jul 2025 07:00:49 +0000
Manifest this update: Sun 27 Jul 2025 07:00:49 +0000
Manifest next update: Mon 28 Jul 2025 07:00:49 +0000
Files and hashes: 1: k3TRYEDrQBrO6eEJRbpRNKXsKDY.roa (hash: 4LCjfvPAnVknZ+aHhkSXzNTjWeSMT085uGaEj2C566Q=)
2: zf9bPNry6tG8MwlBG_lJLNmHr7o.crl (hash: gQrn4qkHe9BLYMWPnkvdxxvHF0CDmZkhBZ9iWxILBOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:af:29:46:49:55:62:32:8d:d3:92:fd:99:01:36:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Validity
Not Before: Jul 27 07:00:49 2025 GMT
Not After : Jul 28 07:00:49 2025 GMT
Subject: CN=695d022f014610ffa227d83f4af4b60b860889e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6a:2e:05:ef:ad:df:b0:65:55:85:dd:29:f6:
9c:a4:8c:bf:fe:f6:48:63:2a:e1:70:4a:90:6a:98:
ef:88:98:d4:8a:85:a7:58:12:cd:9c:2b:94:bc:04:
66:2c:d0:b8:8c:ca:45:0a:d1:ac:31:55:85:43:e9:
ac:f9:f7:ca:b2:84:03:d5:f9:97:e2:1e:88:ce:c6:
99:3b:21:cf:0d:cc:1e:9a:c3:e6:f8:54:47:4e:dd:
a3:e8:9f:4a:2f:f6:8e:0f:c8:70:da:f3:38:75:c6:
08:1a:87:a5:bf:20:45:ce:e2:4b:75:86:4d:b9:f5:
ff:93:11:5f:a8:e2:b8:2f:64:0c:0e:47:db:b2:aa:
19:1a:58:f1:60:14:ef:ae:49:8f:37:b9:15:c4:a0:
46:7a:7b:0f:f2:bf:d0:02:46:19:ad:1b:9c:aa:5e:
5f:8f:09:c9:5a:72:36:a2:49:e0:c2:a3:47:c5:cc:
07:65:17:5f:df:c6:28:83:a5:5f:ad:8b:ad:b1:67:
05:aa:46:d4:5e:d3:de:2d:14:18:00:27:0d:f3:be:
04:cc:ca:63:e7:50:85:69:a7:21:64:d3:5c:a9:8b:
92:2a:a9:7a:e1:7c:d7:b7:39:d6:c9:88:a7:26:3e:
1d:09:f2:88:af:80:dc:29:5e:d6:6e:7e:6f:2a:ab:
72:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:5D:02:2F:01:46:10:FF:A2:27:D8:3F:4A:F4:B6:0B:86:08:89:E2
X509v3 Authority Key Identifier:
keyid:CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:62:bf:d2:3c:6d:9b:37:f7:55:6e:5d:e3:dd:f2:76:30:c6:
b8:67:f8:85:3e:3f:b5:25:b0:72:af:98:13:8b:0a:98:f4:e4:
9d:c9:89:b4:a2:48:af:0e:68:82:89:00:a4:4f:b5:4b:1c:ef:
fb:22:0c:bb:2a:bb:6b:54:b3:30:0b:da:33:94:27:fb:34:d4:
3e:2b:d9:86:26:50:dd:57:72:c0:b1:96:b0:31:49:59:7a:f7:
2f:b2:91:1f:18:e0:c6:40:03:82:d6:cc:c7:a1:65:ab:cd:8d:
73:7f:2f:af:d5:64:ff:24:49:4a:0f:dd:46:6b:47:46:42:71:
e9:b1:89:b6:23:ae:4e:9f:53:71:58:7c:e1:51:f7:30:7f:2d:
be:4d:e1:1a:f6:15:11:b0:5b:73:ce:e5:e9:b6:d7:72:6d:1c:
08:4f:97:c0:74:5a:36:f7:f1:0f:89:f5:56:bd:ee:a8:67:4f:
99:da:15:b4:87:bf:72:4d:28:0e:c0:c9:3f:4c:02:8e:db:0a:
bd:54:91:98:f8:d4:5f:3b:b6:04:14:96:22:0c:82:5a:37:ae:
b7:7a:ab:4f:c1:10:28:2f:46:d8:4c:ce:06:b2:03:7d:77:95:
39:b4:99:3e:ac:06:77:57:81:5f:f6:d6:29:89:48:17:f8:03:
bb:be:21:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 09:03:40 2025 by rpki-client