Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
File: rz9wBQP0ByCoL3bvFc2mICLx-ak.mft (raw, json)
Hash identifier: wLBNGYz6Kj54P2ostOdACHkyb3tU6kiC1o249nLHr3A=
Subject key identifier: 2C:92:E8:5A:33:60:CC:71:A9:E1:50:66:E2:B0:B5:08:39:EE:59:B7
Authority key identifier: AF:3F:70:05:03:F4:07:20:A8:2F:76:EF:15:CD:A6:20:22:F1:F9:A9
Certificate issuer: /CN=af3f700503f40720a82f76ef15cda62022f1f9a9
Certificate serial: 01974EFC1BE31AEA8F60C0B7BABEE0D5D54C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
Manifest number: 0C45
Signing time: Sun 08 Jun 2025 10:00:34 +0000
Manifest this update: Sun 08 Jun 2025 10:00:34 +0000
Manifest next update: Mon 09 Jun 2025 10:00:34 +0000
Files and hashes: 1: rz9wBQP0ByCoL3bvFc2mICLx-ak.crl (hash: i+eZ+aDAYJiJsCykfiiozuF9z51bb0zSCKACK5d6/Is=)
2: zHaHHwpWkvwMR4EBkRKLj2nL7g4.roa (hash: dEmOAj28ftGGpyQRnDV2quElsA9Yrv1JJIOo7l9XjEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 10:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:fc:1b:e3:1a:ea:8f:60:c0:b7:ba:be:e0:d5:d5:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3f700503f40720a82f76ef15cda62022f1f9a9
Validity
Not Before: Jun 8 10:00:34 2025 GMT
Not After : Jun 9 10:00:34 2025 GMT
Subject: CN=2c92e85a3360cc71a9e15066e2b0b50839ee59b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7b:05:96:ed:b9:5c:cc:7c:13:b5:7e:06:81:
34:9e:6f:7c:58:bd:6a:f7:34:d4:b3:c7:1c:7a:1f:
88:ea:42:02:39:9b:7f:7a:aa:cd:8b:aa:ef:8e:9e:
b4:96:57:b9:d0:b5:4b:b4:e9:3f:cf:ed:10:82:88:
7f:5f:f7:f7:35:74:7f:bb:3e:a5:32:18:21:87:ad:
ad:5b:c5:21:ca:12:eb:74:23:b0:ec:02:76:8a:af:
03:04:84:87:47:0b:11:2f:29:e4:c4:0b:87:bf:af:
a2:74:a5:7c:f2:80:95:03:d7:1d:83:b4:f3:ff:54:
68:7f:dc:8b:79:04:a0:cb:61:e4:ea:3f:5e:0c:f2:
6a:9f:4b:de:80:4f:e3:82:33:61:f8:dc:f3:ed:df:
84:5a:bc:3d:de:cd:b5:63:18:f9:86:93:cd:fb:31:
f1:e3:f8:c3:68:ea:67:2c:6c:68:36:e9:19:a1:07:
c5:58:01:66:69:29:d0:17:a7:3a:cb:ca:94:36:99:
c4:38:36:45:8e:3d:b7:66:b8:b3:f7:ba:b2:20:e5:
a5:e9:0a:57:ca:1a:d9:c4:e8:d6:f7:49:a3:5d:28:
52:21:04:a4:7a:87:46:fa:37:90:82:bf:93:a4:81:
23:40:e4:7b:c7:d7:7a:35:73:3a:af:09:16:99:a7:
ee:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:92:E8:5A:33:60:CC:71:A9:E1:50:66:E2:B0:B5:08:39:EE:59:B7
X509v3 Authority Key Identifier:
keyid:AF:3F:70:05:03:F4:07:20:A8:2F:76:EF:15:CD:A6:20:22:F1:F9:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:54:56:39:b5:e0:a1:53:59:0a:c2:be:bf:9a:1e:ff:01:d5:
48:7a:97:cf:1b:2d:bb:41:ae:b1:5a:b5:a8:04:d0:b8:bf:d7:
bf:b4:75:94:92:94:97:cf:b3:fd:0d:2d:71:ad:c5:59:98:b8:
de:07:61:ab:fe:2b:18:ca:a1:62:f1:2f:89:82:2a:10:0a:57:
b4:dc:03:e6:7f:8c:95:75:c3:37:ad:f2:64:aa:ec:1d:99:fe:
a1:5d:a5:48:06:a5:3a:18:99:5b:84:c2:fd:e4:4d:17:50:2b:
62:8c:e7:4e:9b:b4:fd:8c:e0:ee:89:14:9c:b6:19:f7:8a:79:
39:dd:a6:e5:b2:cb:10:6e:24:ca:3c:ca:28:90:40:d2:2d:54:
02:3e:a8:c2:32:2f:bd:74:ca:97:a7:1c:4a:0e:d8:54:c0:8b:
79:f0:ab:1a:c0:6b:32:96:20:e4:d3:de:d8:03:52:89:9a:90:
fe:44:a2:5f:3b:7b:3c:03:d4:89:7e:41:fc:f5:83:d1:39:d3:
e8:6a:ff:b4:d4:25:f6:4d:c0:0e:ed:49:bb:81:7a:89:68:c3:
4b:26:55:4a:2f:f7:04:ce:6a:ed:eb:ec:73:e1:84:9a:2c:3e:
8b:29:3e:f0:d9:de:76:cb:5e:12:8f:55:06:92:b7:2d:f2:f9:
a7:ba:b7:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:39:45 2025 by rpki-client