Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
File: zf9bPNry6tG8MwlBG_lJLNmHr7o.mft (raw, json)
Hash identifier: RGu4WY/ez4lH0DqE09CPF4J6QM6e1QYtM6uvoA5+Y7I=
Subject key identifier: B2:96:C7:AC:43:EE:1E:4F:EC:E5:C9:4F:CA:75:D4:3F:0C:2B:45:C9
Authority key identifier: CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
Certificate issuer: /CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Certificate serial: 019745F8CB53FE125975DF1B5AE61A144EF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
Manifest number: 03D5
Signing time: Fri 06 Jun 2025 16:00:22 +0000
Manifest this update: Fri 06 Jun 2025 16:00:22 +0000
Manifest next update: Sat 07 Jun 2025 16:00:22 +0000
Files and hashes: 1: k3TRYEDrQBrO6eEJRbpRNKXsKDY.roa (hash: 4LCjfvPAnVknZ+aHhkSXzNTjWeSMT085uGaEj2C566Q=)
2: zf9bPNry6tG8MwlBG_lJLNmHr7o.crl (hash: h3wLxQKkv8VEslDGv3No1SNIU+6eNHxJSi4Ggjr00t0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:f8:cb:53:fe:12:59:75:df:1b:5a:e6:1a:14:4e:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Validity
Not Before: Jun 6 16:00:22 2025 GMT
Not After : Jun 7 16:00:22 2025 GMT
Subject: CN=b296c7ac43ee1e4fece5c94fca75d43f0c2b45c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:05:af:4e:ed:4b:f3:aa:24:66:03:87:7d:ec:
53:bf:b6:1b:24:1d:7a:44:4a:e1:17:18:50:35:be:
5c:91:a8:cf:f6:b4:f6:af:04:6f:e6:61:c3:12:94:
a1:93:52:72:2a:b2:64:32:77:25:74:15:fc:9e:58:
ed:ee:13:53:ea:ff:08:df:6b:2e:20:5a:68:ca:5d:
30:d2:c2:3d:d4:2e:b7:12:94:0a:64:c4:bc:ac:9d:
34:e4:80:ce:cd:ca:aa:7a:0f:14:2b:16:2f:08:8f:
07:89:31:0e:c6:84:71:58:1c:72:b4:17:6d:24:4c:
5d:60:12:fa:a7:d7:1a:96:ae:6b:1b:44:c2:79:12:
b8:01:90:bc:f0:46:e7:ff:3a:fd:2d:af:cf:5c:e4:
b2:79:e9:d0:2b:71:50:62:7c:6d:65:64:07:4b:01:
d7:f1:29:22:f5:14:39:f7:63:de:3e:fa:5a:d2:2d:
ce:b3:46:80:00:68:e2:7a:9a:f2:e6:d7:05:bb:aa:
7b:be:ae:4c:fb:cd:6c:d1:2d:13:84:6d:9f:e7:a4:
32:a6:89:8a:6b:ce:aa:ae:27:a9:95:32:41:e0:82:
42:5b:3a:e6:de:84:54:b7:47:31:25:54:2b:41:f4:
d8:4b:04:c6:ae:f3:2a:93:0c:e0:fc:ec:be:97:87:
5d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:96:C7:AC:43:EE:1E:4F:EC:E5:C9:4F:CA:75:D4:3F:0C:2B:45:C9
X509v3 Authority Key Identifier:
keyid:CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:b2:10:3d:98:f4:f9:dd:4d:20:51:83:47:bb:3b:2d:2c:63:
41:f8:cf:0a:6d:65:7c:7b:d0:15:73:11:31:e3:29:4a:dc:10:
53:a2:9a:6d:22:35:80:05:14:a6:ee:a1:ed:3b:5c:7d:c5:71:
d0:15:86:f9:28:dc:3e:65:21:ab:c0:ce:47:bd:c2:15:ee:06:
b7:65:df:76:8a:8c:4d:8f:e7:d0:2d:78:0b:56:13:37:3a:f7:
c9:07:43:0c:84:29:79:eb:82:57:ac:6f:fc:ac:ad:6f:0a:d7:
4e:81:53:23:a2:69:a2:86:d0:d4:2d:66:3f:5a:f1:05:e9:72:
b0:69:95:c5:54:c9:86:f7:9f:2f:8d:4b:ed:2a:0a:b0:56:d8:
70:00:87:16:d0:d2:59:8e:e2:99:dc:03:57:f7:2b:a2:a5:2f:
77:4b:81:0c:e4:b5:94:d0:c2:be:9a:f0:f3:bd:c6:c8:e0:86:
d2:b9:df:30:45:e3:62:9f:69:cd:88:9f:f8:45:0e:e6:eb:18:
fd:4c:89:4e:c5:28:d2:8f:1d:26:07:15:54:ad:f0:67:11:fb:
2d:27:c5:6e:99:43:e8:25:33:9e:16:1c:41:5b:d2:24:3d:0d:
d5:d1:27:82:36:da:94:f5:48:67:b9:2c:2c:a1:4c:a9:4f:db:
a9:a0:d7:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:16:37 2025 by rpki-client