Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.mft
File: Z2JE3gGQpt1aiZorN7ACua5jLIY.mft (raw, json)
Hash identifier: CIDgN7VM8BuGWo1xLKVshqjk2XmuuRd0WAhhQBf2HTw=
Subject key identifier: 27:01:2D:95:92:1F:F5:83:E1:23:C5:83:13:BB:83:B2:7A:39:61:CE
Authority key identifier: 67:62:44:DE:01:90:A6:DD:5A:89:9A:2B:37:B0:02:B9:AE:63:2C:86
Certificate issuer: /CN=676244de0190a6dd5a899a2b37b002b9ae632c86
Certificate serial: 019935026328BA51CB6639653EFFBC61E1CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z2JE3gGQpt1aiZorN7ACua5jLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.mft
Manifest number: 167A
Signing time: Wed 10 Sep 2025 19:02:52 +0000
Manifest this update: Wed 10 Sep 2025 19:02:52 +0000
Manifest next update: Thu 11 Sep 2025 19:02:52 +0000
Files and hashes: 1: 21cAYiN5jMpqkJRdEkHSMeQVgkY.roa (hash: KwzUXQv1pIgCUyqyYd3vxndo9n20A9iWRxEC49c1pqI=)
2: Z2JE3gGQpt1aiZorN7ACua5jLIY.crl (hash: 9+RmBl88d8rbTYc1vx1OlQWSZdPQSlScZQNg+5kJCog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z2JE3gGQpt1aiZorN7ACua5jLIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:02:63:28:ba:51:cb:66:39:65:3e:ff:bc:61:e1:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=676244de0190a6dd5a899a2b37b002b9ae632c86
Validity
Not Before: Sep 10 19:02:52 2025 GMT
Not After : Sep 11 19:02:52 2025 GMT
Subject: CN=27012d95921ff583e123c58313bb83b27a3961ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:78:46:ce:b6:3e:6b:44:9e:4a:30:83:a2:19:
31:d3:1a:c5:fd:d5:a7:27:cc:c8:6b:51:e2:ef:53:
d8:19:f8:63:95:ab:b3:76:89:21:95:e4:63:36:2b:
56:22:49:be:b2:c4:de:d9:e0:20:a9:b6:6f:b3:bc:
06:81:f5:f2:c5:9c:e1:f7:8b:f3:e2:25:af:aa:2c:
6b:6e:f8:26:96:a8:b7:da:c8:d0:6d:d8:40:7b:c7:
05:d9:28:74:17:bc:bc:5a:ec:03:6a:28:12:e2:c8:
96:d4:20:60:11:10:c7:a0:b9:50:57:ed:bf:ba:ec:
ab:88:9f:7a:ae:cc:62:a2:2c:7c:fa:18:3b:c7:7f:
f0:36:d5:5a:69:5b:fa:f0:84:e3:88:5e:7e:9b:02:
48:f7:b0:5a:f7:60:17:9e:ed:7f:31:c0:98:36:c3:
af:bb:28:1a:d0:7a:47:d6:c0:80:2b:7c:a0:b5:fc:
e2:b4:6e:52:b2:77:73:78:85:94:04:cf:59:f9:39:
09:fb:95:13:37:8c:2f:c5:26:69:20:6b:a8:78:6a:
35:c0:a4:97:18:fd:bb:53:c9:3d:37:72:b3:b9:5a:
f7:39:45:ea:2b:6d:3f:f3:ca:8d:fb:ff:57:28:18:
00:63:86:27:5c:04:a8:38:f1:5c:76:ce:60:7b:41:
69:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:01:2D:95:92:1F:F5:83:E1:23:C5:83:13:BB:83:B2:7A:39:61:CE
X509v3 Authority Key Identifier:
keyid:67:62:44:DE:01:90:A6:DD:5A:89:9A:2B:37:B0:02:B9:AE:63:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z2JE3gGQpt1aiZorN7ACua5jLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:81:0b:cc:c9:42:6c:c4:c8:3b:6d:44:02:bf:3a:d8:8d:79:
28:6f:ec:90:d0:9e:b1:fc:ea:92:1a:94:8b:ab:cf:dd:bc:45:
bf:9f:ca:e9:2a:60:b4:ce:b3:39:ff:05:13:58:89:39:02:5b:
62:d8:d7:95:e4:f3:16:14:7d:80:60:10:ad:4c:70:11:19:39:
e8:a6:cb:cd:49:ba:3a:3d:a0:90:d4:f1:79:d6:33:ea:f1:58:
6e:38:22:21:93:2c:e6:c8:23:a6:60:cf:f5:f1:12:31:86:f8:
14:97:1b:1e:7c:77:f7:26:cb:c3:53:6f:10:68:db:00:a5:ca:
89:f4:ff:63:7e:62:1d:1b:0e:27:4d:23:21:77:f7:e4:a2:54:
9b:8e:86:48:fe:6f:0c:7c:01:e8:f1:30:54:72:08:49:0a:82:
5b:ef:be:45:19:7a:94:d9:74:44:b6:a5:07:23:29:08:8e:15:
bd:71:8c:98:ed:ed:51:03:b2:ac:46:47:1f:a8:18:e7:08:94:
1b:64:92:d7:57:4c:7d:71:02:b9:57:f0:62:94:09:cb:b4:7d:
4d:37:bc:7c:2a:35:51:ce:dc:86:db:db:b1:c6:22:00:09:e6:
01:e0:32:0e:e6:e4:ee:72:97:23:31:c3:ea:f8:d2:b9:35:9a:
88:4b:28:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 20:32:57 2025 by rpki-client