Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
File: 7pzNOKXWSWiAvAlHBuaPoE-izZY.mft (raw, json)
Hash identifier: gkZZppfBzW73Rn/49Pu0s40/HJmJc5YQDz9VGUBNHsM=
Subject key identifier: 38:C5:42:69:4E:4B:8B:DE:7E:0F:75:A2:B2:9F:2A:EE:60:AE:9E:E7
Authority key identifier: EE:9C:CD:38:A5:D6:49:68:80:BC:09:47:06:E6:8F:A0:4F:A2:CD:96
Certificate issuer: /CN=ee9ccd38a5d6496880bc094706e68fa04fa2cd96
Certificate serial: 019921B260F1935D82F3FD45F8A1C81BC1FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
Manifest number: 022D
Signing time: Sun 07 Sep 2025 01:02:42 +0000
Manifest this update: Sun 07 Sep 2025 01:02:42 +0000
Manifest next update: Mon 08 Sep 2025 01:02:42 +0000
Files and hashes: 1: 7pzNOKXWSWiAvAlHBuaPoE-izZY.crl (hash: dmS3f2+cD7fPtKt419bYoavZJu78GPqtCavJUb8djbQ=)
2: zUvaZsb6AAcGs5bszD-Bq4oB3BE.roa (hash: 2T5+Ho1mw99m4EQU26GsTeUM3Ju0dbCS0haz/aa2sBA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:60:f1:93:5d:82:f3:fd:45:f8:a1:c8:1b:c1:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee9ccd38a5d6496880bc094706e68fa04fa2cd96
Validity
Not Before: Sep 7 01:02:42 2025 GMT
Not After : Sep 8 01:02:42 2025 GMT
Subject: CN=38c542694e4b8bde7e0f75a2b29f2aee60ae9ee7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1d:ff:3b:01:43:82:51:6f:2d:d7:2a:4d:01:
c4:40:a1:a4:07:3e:40:09:82:2e:a0:a8:ab:9a:6d:
d7:2a:42:a9:a4:c2:b4:8b:c3:09:2a:b2:4a:5c:5f:
72:8b:c2:5f:55:6d:b3:84:78:87:60:ff:13:43:1e:
5d:46:fb:de:ac:81:f5:61:66:1b:9e:45:d1:2f:f3:
0f:3f:d2:0a:1f:ef:ad:80:ab:0b:5b:64:6b:be:0d:
1f:5d:18:d4:68:c1:72:f7:fd:89:95:5b:68:aa:b4:
0c:ee:d8:28:b6:01:c7:5a:56:be:52:f4:81:bc:70:
30:be:26:a8:d1:dd:7b:f2:7a:67:09:4d:4f:ce:34:
ad:a0:e0:12:eb:a2:8f:4d:95:8c:16:97:58:aa:fc:
ce:9b:0a:00:74:05:36:2c:ed:22:95:86:fb:9d:1c:
91:33:72:1e:e8:a6:67:49:e7:86:d3:a1:bc:b1:ea:
1d:ef:d4:59:ea:d0:4e:af:3b:a1:29:c0:54:bc:ac:
02:5e:c7:09:f2:d9:23:f1:e0:76:9e:8e:96:91:2e:
46:07:70:43:e1:0f:5d:da:62:2b:d6:48:cb:36:44:
9c:51:bd:39:f1:81:86:5a:63:19:d8:9b:10:73:87:
d2:6b:f4:4f:85:73:cf:d0:e7:cf:6a:09:01:7e:f8:
ce:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C5:42:69:4E:4B:8B:DE:7E:0F:75:A2:B2:9F:2A:EE:60:AE:9E:E7
X509v3 Authority Key Identifier:
keyid:EE:9C:CD:38:A5:D6:49:68:80:BC:09:47:06:E6:8F:A0:4F:A2:CD:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:5e:4a:29:5d:59:a5:90:13:fd:c4:2c:25:74:42:60:8b:69:
79:dd:3b:1d:b9:98:ee:09:5e:f9:64:45:ed:e3:da:7f:3f:a5:
bb:77:13:08:2b:50:a0:e9:21:d7:bf:54:52:4c:c8:34:5f:75:
87:cc:6e:aa:6c:56:b1:91:0a:4e:5e:39:f3:db:e3:0c:70:28:
fa:24:b7:34:04:62:bd:47:39:ee:86:d0:8f:1e:71:d9:19:5b:
32:bd:23:3b:73:06:74:3d:8f:2c:b0:c8:58:7a:f8:1a:0b:27:
14:a4:d0:18:ec:48:69:37:c5:94:40:44:8f:05:c2:56:76:d6:
78:a4:36:89:55:6d:7d:6d:e9:03:f1:37:ea:98:3f:73:79:a5:
a3:da:aa:4f:fd:1f:59:f7:bc:bc:2d:5f:26:d6:a3:ee:35:4d:
54:bd:4d:29:5a:d3:95:93:46:e2:f9:ee:e8:81:ba:17:6b:cc:
55:19:4e:b8:6d:33:a1:99:5f:3e:51:d2:11:46:16:53:0d:d4:
44:a8:9b:77:ba:cb:ed:2f:7e:03:dd:76:49:dc:b7:86:96:3d:
ad:ae:47:d6:42:54:72:e5:e6:18:17:57:0e:bd:d0:81:d0:72:
40:39:61:b7:09:aa:2d:54:e8:d4:ec:19:ad:47:cd:20:3b:08:
b8:16:09:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:15:14 2025 by rpki-client