Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
File: z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft (raw, json)
Hash identifier: 0rS/zK2XSPmzihWtTj3h0nYc66UT5ivE/mhxjK2LURw=
Subject key identifier: B2:3D:AE:E3:EA:6C:15:03:41:2F:3E:B8:7F:07:13:3E:2D:45:B3:D6
Authority key identifier: CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
Certificate issuer: /CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Certificate serial: 019939B93A3542E52978EB1CBA2E575AAE88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
Manifest number: 167E
Signing time: Thu 11 Sep 2025 17:01:04 +0000
Manifest this update: Thu 11 Sep 2025 17:01:04 +0000
Manifest next update: Fri 12 Sep 2025 17:01:04 +0000
Files and hashes: 1: hPBXvKQdaqlVU4nQ-2Te7vaa8Bo.roa (hash: c9xr2QPdOJHBS76dYaN+BTyMMmlA60SbcteFKaCmJMA=)
2: z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl (hash: oqpfFP59LEcBZ4Zb3YhW2Oyd/k5w5k7d1ZJKtvnJ220=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 17:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:39:b9:3a:35:42:e5:29:78:eb:1c:ba:2e:57:5a:ae:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Validity
Not Before: Sep 11 17:01:04 2025 GMT
Not After : Sep 12 17:01:04 2025 GMT
Subject: CN=b23daee3ea6c1503412f3eb87f07133e2d45b3d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:eb:43:22:66:90:57:bb:39:d4:a3:09:9b:df:
fb:f7:57:ba:94:0d:c6:4d:e0:66:6f:cb:38:ec:3c:
82:29:70:67:83:28:23:e3:13:fe:65:1c:ff:0b:f1:
45:1d:45:2b:df:de:fe:bb:ca:16:9a:a6:37:ac:ed:
c8:bf:b9:8c:32:60:fa:2d:68:9f:01:51:c5:c5:5b:
0b:84:d5:ed:46:59:c2:37:8d:06:8c:42:80:e2:de:
3e:62:b3:34:d6:e0:b3:9e:a4:f9:6b:f8:7f:80:8a:
17:5e:8d:1b:22:39:98:87:dd:8b:2d:12:24:33:ff:
80:e3:e0:ca:6c:3b:da:3e:03:71:a4:97:8c:0b:d1:
f3:f5:fd:ff:20:2d:a3:c6:af:9e:6a:59:27:5d:9d:
2f:b9:96:b3:f5:62:c3:43:64:3a:d5:30:f5:f6:6c:
20:d3:c8:78:34:63:e1:6e:b3:d4:1b:60:a6:0d:d3:
35:55:02:d6:2c:e7:c5:6d:ec:3b:8f:e2:98:17:44:
c9:b6:ff:00:7f:34:0c:f3:3f:2b:a0:18:d1:03:a9:
49:29:8d:be:98:57:d9:c5:ee:4f:b0:7a:2f:82:a8:
6b:b5:83:18:35:c6:f9:9d:15:69:77:3d:86:fe:2d:
80:73:90:2a:1c:97:b3:23:b4:98:32:6c:fc:84:32:
59:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:3D:AE:E3:EA:6C:15:03:41:2F:3E:B8:7F:07:13:3E:2D:45:B3:D6
X509v3 Authority Key Identifier:
keyid:CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:99:90:7a:9f:e5:95:86:6e:ce:0c:ea:c0:9b:09:d0:b6:1e:
f9:1e:72:a6:c9:ed:62:f5:3c:ac:b3:61:92:d6:77:58:2f:9b:
93:fe:15:01:30:28:52:6e:cf:d9:e0:f6:93:75:c1:c0:3a:27:
5e:d2:c9:f9:af:5e:53:5e:93:66:cb:1b:35:42:53:10:83:52:
be:e3:91:77:99:8f:3a:09:3b:c8:59:88:e9:20:dc:af:db:b0:
97:9e:7e:c3:6f:fc:ba:56:bd:71:80:38:85:6c:2f:65:17:2f:
13:26:3d:a5:68:b9:1c:5e:b7:71:49:44:d9:82:86:33:9d:39:
85:0b:27:34:a6:c3:81:dd:6e:80:96:4e:6c:65:b7:12:eb:b3:
5f:4f:2d:4e:47:9c:73:e0:4c:c9:a4:cd:8b:01:21:18:62:bb:
e2:2f:09:ae:4a:15:b1:b5:4f:0c:5b:1c:da:1f:c9:3a:43:a9:
76:32:4e:14:81:5d:2d:a8:75:42:78:42:14:94:39:2f:44:a0:
26:53:d2:3c:5d:e0:b6:5c:3b:ab:6f:e8:65:21:1d:77:0e:c6:
01:e7:78:bc:24:3f:6a:58:31:b4:48:8b:71:6d:bd:e6:b6:11:
3e:fa:8b:60:62:76:f8:cd:28:35:61:52:0a:c9:56:3a:c3:c1:
a9:32:5a:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 12 02:12:10 2025 by rpki-client