Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
File: z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft (raw, json)
Hash identifier: TmpPs0oNVb9XeTcSnraEuD0bBNwuDmnK0G6rOqkh1jw=
Subject key identifier: F8:F6:20:B7:61:4A:72:30:A4:0F:1B:DD:E4:C5:EA:FC:68:D1:34:03
Authority key identifier: CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
Certificate issuer: /CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Certificate serial: 019749684F81FF5300E24C6A40E67847BAD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 08:01:02 +0000
Manifest this update: Sat 07 Jun 2025 08:01:02 +0000
Manifest next update: Sun 08 Jun 2025 08:01:02 +0000
Files and hashes: 1: hPBXvKQdaqlVU4nQ-2Te7vaa8Bo.roa (hash: c9xr2QPdOJHBS76dYaN+BTyMMmlA60SbcteFKaCmJMA=)
2: z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl (hash: XETsV9OY2lsStQP9+BbdmEp9yt8wEpOh5Je7WczI3Fc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:4f:81:ff:53:00:e2:4c:6a:40:e6:78:47:ba:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Validity
Not Before: Jun 7 08:01:02 2025 GMT
Not After : Jun 8 08:01:02 2025 GMT
Subject: CN=f8f620b7614a7230a40f1bdde4c5eafc68d13403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7f:00:b5:99:cf:f3:69:01:76:69:33:a9:f7:
16:0e:ab:58:c6:a1:8c:ef:0a:ff:9c:8d:b2:40:bf:
67:b0:6f:97:03:91:54:02:34:c9:3e:73:67:a8:3e:
07:80:66:8e:66:7b:fc:54:03:4f:38:83:c7:89:25:
b7:50:0a:5e:c0:ea:d4:81:41:a4:1c:fb:f0:66:c2:
6a:b2:12:02:7e:82:aa:cc:31:f2:63:2c:9b:b7:7b:
ce:3a:4b:d7:de:db:e8:99:10:ff:43:1a:67:ec:31:
5d:f3:9b:79:d5:33:d1:47:bc:aa:44:8b:95:41:6d:
d2:6b:4a:5d:9e:5c:ed:58:7d:28:17:66:1d:be:bf:
93:47:48:f4:9f:8a:7a:26:e3:22:65:1c:73:59:92:
ae:80:e0:d0:aa:7e:42:ed:2d:29:5d:5d:0f:9f:e5:
ce:d7:89:e7:98:05:34:01:6c:b6:f6:d8:0c:16:2e:
09:e7:48:8e:d3:c2:9f:0e:a7:dd:d3:8e:de:e5:95:
83:06:20:ec:d9:a4:8c:16:96:29:8f:70:62:21:46:
c6:65:6d:cb:87:44:2f:25:8f:83:fe:3d:a5:b7:ec:
4e:95:5d:0d:bf:c3:b0:c3:0a:30:8b:d6:81:f0:03:
7a:0a:45:36:35:ee:dc:22:52:39:aa:12:2a:3e:0a:
11:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F6:20:B7:61:4A:72:30:A4:0F:1B:DD:E4:C5:EA:FC:68:D1:34:03
X509v3 Authority Key Identifier:
keyid:CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:23:0a:fe:02:84:0e:e1:b9:38:93:9e:f0:c2:a6:28:97:fb:
82:1a:b5:0c:78:77:0f:74:a2:8a:5f:1c:92:e7:20:d9:48:42:
bc:4c:40:a8:a9:4e:b7:63:74:3e:27:c9:24:27:e2:a6:46:d8:
39:05:64:7f:f2:12:46:ba:5b:9f:a3:a7:f6:67:0d:9c:5f:8b:
4f:92:8d:0b:cf:58:91:07:88:c5:e3:98:64:b2:15:d6:d1:7f:
9a:3c:e5:d6:47:30:56:4f:00:6a:a1:7a:bb:aa:a3:d9:65:16:
27:31:af:12:66:c2:1c:3d:da:ac:71:6c:87:45:48:af:b0:92:
66:c4:ce:1c:7b:e3:57:b8:02:d9:57:54:b2:fa:df:71:6f:d9:
6a:94:11:01:54:14:77:1f:f5:d8:90:a3:12:ff:c8:24:83:85:
df:44:5d:ad:f4:4b:29:95:6b:e4:16:87:47:c6:61:65:26:1b:
2d:15:35:1e:19:be:83:c2:01:c2:65:8e:e1:7b:2f:7f:6d:eb:
9d:48:65:b6:6e:c8:5b:48:09:14:f5:04:a3:70:26:15:bb:38:
67:93:58:12:6f:b5:6d:09:08:48:f1:da:e3:1b:60:e5:9b:a3:
fd:6a:36:c5:e3:14:fb:8a:14:62:ed:a5:04:74:53:a3:f1:ce:
b4:7e:c0:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:08:05 2025 by rpki-client