Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: WizUiBCRGFbXQ+FqfxKzeoeg/38NzmPNiL2ebbYteYU=
Subject key identifier: 9B:4D:79:54:CC:48:36:1C:AB:66:D7:DF:E1:72:F0:9E:D9:76:EA:47
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 01974F3363A7368C783B6954709F187D9105
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 05A8
Signing time: Sun 08 Jun 2025 11:00:57 +0000
Manifest this update: Sun 08 Jun 2025 11:00:57 +0000
Manifest next update: Mon 09 Jun 2025 11:00:57 +0000
Files and hashes: 1: 69EZo_UvSYLCIwLzPyqCblCyZzI.roa (hash: 2naW8CuEgpZKAi+BoeweFMMKRLa2fsvkiMt8udbwEtM=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: QSo26SHTnox5cZeKnZz2OTKQQwxuBcoHagnEQfQkV/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:33:63:a7:36:8c:78:3b:69:54:70:9f:18:7d:91:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Jun 8 11:00:57 2025 GMT
Not After : Jun 9 11:00:57 2025 GMT
Subject: CN=9b4d7954cc48361cab66d7dfe172f09ed976ea47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:1f:ba:34:53:2b:e5:40:64:3e:c9:89:cf:dd:
71:b0:a3:1f:34:29:cd:99:1a:53:dd:26:f5:20:8f:
94:80:72:30:24:11:f6:fe:74:d2:4d:b3:7e:2e:0d:
f8:1a:f8:56:74:7c:2c:2a:3f:f1:db:26:11:a5:63:
8c:01:ef:8d:1c:f5:29:dc:fe:22:b8:b1:d6:de:e7:
db:f2:20:d3:2d:69:6f:e0:f2:e1:d7:a4:95:27:b4:
b4:57:fe:cc:a0:32:b7:f4:96:00:a1:f8:87:1d:ad:
71:b1:d1:92:65:e7:42:b2:bd:ea:00:f1:f4:62:ae:
83:77:a2:06:fd:cf:1e:30:69:ba:47:1b:22:8c:51:
e7:7e:ec:3d:55:c7:a6:9f:b8:bc:d7:61:b4:37:65:
e9:a9:eb:d7:2d:44:9f:f3:3a:b3:44:e7:3c:66:a9:
f9:67:db:e6:1f:db:ff:e2:de:72:b1:62:60:f2:c2:
d6:31:eb:e3:42:a3:73:5b:f3:c1:76:a1:17:36:6c:
20:31:9d:be:bd:5a:06:b4:ac:e2:30:48:81:1f:91:
76:35:8c:40:a1:81:34:ee:a1:c4:05:a6:f9:a0:59:
da:97:e2:cc:ba:1d:b8:f6:ee:1c:95:24:c1:b1:a9:
3c:d7:35:2d:51:52:44:54:0b:04:42:44:84:16:11:
dc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:4D:79:54:CC:48:36:1C:AB:66:D7:DF:E1:72:F0:9E:D9:76:EA:47
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:e1:67:78:ae:bd:94:2a:53:ab:83:58:20:e1:51:04:8b:0a:
fd:cf:aa:02:0e:5b:da:95:e3:2a:33:7b:c8:9c:3f:83:f6:19:
1a:9f:dd:d8:f1:70:c8:93:e8:47:3d:f9:fb:d7:3a:47:a8:6a:
a5:34:9e:a3:eb:5f:4c:20:0e:82:36:ac:5e:82:4a:b0:83:19:
e2:e2:92:fa:86:dc:fe:4f:b1:17:be:f2:08:af:57:f2:af:f3:
05:12:f1:39:51:c7:a2:fb:81:6f:d9:cd:87:9f:d0:f4:66:07:
88:7b:7e:e5:1d:7f:50:44:dc:bf:4a:89:3b:45:bf:b5:54:9a:
f2:60:e8:9f:8d:96:20:6e:4b:b0:12:37:28:02:27:10:c1:6e:
61:46:82:25:f9:51:80:3a:2a:10:c2:65:e4:3d:1a:82:86:79:
32:35:8d:e1:82:e6:63:70:9b:40:3e:d0:fe:31:f1:0e:fd:76:
9a:9f:4a:5b:5d:de:cb:bc:41:72:c8:0a:33:3d:1f:2e:1b:11:
01:a5:db:14:4e:9d:99:05:14:34:09:2d:c2:f3:0b:0f:b1:f7:
c8:cb:87:98:01:69:1e:c6:06:f4:53:b5:fa:60:8b:a2:7f:bb:
03:71:08:56:8a:cd:cc:93:c0:31:44:0a:42:22:3c:e5:e7:e9:
56:11:4a:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:48:19 2025 by rpki-client