Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: lPsgGYZkevbqmDj7cDq/N3tf/uCVSabIVz5n/fv8dlA=
Subject key identifier: AE:5A:2C:66:F6:23:1E:D9:76:95:2C:43:97:9C:28:DE:57:68:6D:61
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 019935DC99DF8342105E9680D1CF101F6A4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 06A4
Signing time: Wed 10 Sep 2025 23:01:13 +0000
Manifest this update: Wed 10 Sep 2025 23:01:13 +0000
Manifest next update: Thu 11 Sep 2025 23:01:13 +0000
Files and hashes: 1: 69EZo_UvSYLCIwLzPyqCblCyZzI.roa (hash: 2naW8CuEgpZKAi+BoeweFMMKRLa2fsvkiMt8udbwEtM=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: Hltv8/OINh3RcsGGCvRc8LRKN9Iffi4y78+i6U6YEws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:dc:99:df:83:42:10:5e:96:80:d1:cf:10:1f:6a:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Sep 10 23:01:13 2025 GMT
Not After : Sep 11 23:01:13 2025 GMT
Subject: CN=ae5a2c66f6231ed976952c43979c28de57686d61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c9:24:ca:ba:c3:04:cd:51:3c:9c:3f:0f:2a:
2b:50:a5:4b:6a:45:ea:3e:4b:04:e3:ee:b6:5b:5c:
24:86:f7:a2:97:15:54:56:79:c8:d8:f2:6c:41:a6:
14:51:d9:c3:a4:b1:ae:40:2f:6d:46:cb:2e:ac:9f:
d4:93:0f:9f:f4:f0:fb:12:6b:af:36:77:2e:3d:6e:
a3:ac:01:98:9d:3d:5e:ba:16:6a:bc:d3:e8:e2:52:
2c:0f:1e:8d:97:ee:bb:f4:7e:39:2e:e6:57:7d:de:
40:67:31:07:ff:95:e1:18:8d:16:33:ac:3f:5e:fe:
11:b7:b6:8b:f4:7b:3f:88:ad:a2:e1:7b:42:48:d9:
7d:fe:85:59:28:cf:bd:29:ec:16:5a:5b:94:2c:d1:
b0:68:b1:66:ae:29:6c:14:d1:3e:c7:33:83:f7:4e:
cb:17:88:d3:7d:fa:0a:62:f4:18:70:3c:e3:22:e1:
06:21:d5:a6:4d:21:46:e9:b2:c6:b6:75:73:3f:0f:
ea:04:06:95:4a:78:2c:f4:ef:15:98:4e:12:d5:d0:
04:d5:06:74:42:14:9c:81:da:96:fc:6a:94:bd:c5:
b7:61:01:e6:e5:0c:44:91:c9:d3:0f:3a:82:19:50:
ea:1f:f3:28:e2:2c:08:0e:2f:24:5d:10:ed:b5:ff:
12:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:5A:2C:66:F6:23:1E:D9:76:95:2C:43:97:9C:28:DE:57:68:6D:61
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:8c:07:b1:f8:ac:6a:ab:b2:ca:81:da:6c:5a:8d:e1:75:85:
26:72:be:1b:2c:db:27:2e:53:01:d7:df:e2:5e:9d:d9:3a:1b:
e6:3c:be:29:1f:bc:24:39:8f:ab:ba:2b:5b:b1:1d:18:f0:42:
37:f3:8f:ef:da:b2:51:f7:b7:24:19:1e:05:59:b9:5f:9d:bd:
a2:90:55:54:ee:a0:a2:ac:e5:10:26:7a:e5:4a:c4:bb:ce:45:
05:7c:63:40:af:d2:2a:a2:f9:7d:ce:20:ac:02:69:75:e6:cd:
6a:e1:4a:76:08:9a:17:a2:5d:d9:02:21:8e:e3:ad:d6:33:1a:
3c:1f:fe:3f:36:8d:4b:f9:26:75:1c:f9:19:49:3e:96:2c:b9:
01:27:9f:11:29:40:07:a2:11:bf:b1:db:74:e5:a8:f8:81:92:
cb:e7:e3:8e:a3:59:34:1d:f3:45:ed:0b:97:9a:7a:40:cc:81:
c0:fc:2e:5f:25:a0:5f:33:76:51:ab:fb:38:43:57:18:57:cf:
82:a9:59:24:32:09:f9:1c:04:be:b4:ef:7c:4e:12:fe:9e:48:
ee:b8:e8:38:c3:6d:63:19:d6:70:28:bb:6f:5a:95:00:ad:0f:
94:cc:c5:2e:f4:72:6b:fc:89:60:a4:80:6c:b1:c7:ea:a6:0c:
a7:1e:21:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 03:08:36 2025 by rpki-client