Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
File: sz3NILWulcFy0y7XKevzBhl7I-c.mft (raw, json)
Hash identifier: 7mOkCubiaFn3rHKDRBzVAMVug1JFXLJ4742TxGC40Ew=
Subject key identifier: 39:BA:45:36:04:F1:BC:E7:BA:E1:8D:B7:FE:BF:8C:63:D8:09:C5:3F
Authority key identifier: B3:3D:CD:20:B5:AE:95:C1:72:D3:2E:D7:29:EB:F3:06:19:7B:23:E7
Certificate issuer: /CN=b33dcd20b5ae95c172d32ed729ebf306197b23e7
Certificate serial: 019933B77DC06E7AF77AABB1EC5830545ACD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sz3NILWulcFy0y7XKevzBhl7I-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
Manifest number: 167B
Signing time: Wed 10 Sep 2025 13:01:27 +0000
Manifest this update: Wed 10 Sep 2025 13:01:27 +0000
Manifest next update: Thu 11 Sep 2025 13:01:27 +0000
Files and hashes: 1: CIm7PdRT4tGc0ohUd0vMkXyk2Z4.roa (hash: bKi9ERQ3HDvQWS3A9n+SnlJFymCAx7E6eQcIAFgcP7o=)
2: sz3NILWulcFy0y7XKevzBhl7I-c.crl (hash: EN2HMZUY115jtCfCxohSros1LsauoHC5uVdZKpp79cs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
rsync://rpki.ripe.net/repository/DEFAULT/sz3NILWulcFy0y7XKevzBhl7I-c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:b7:7d:c0:6e:7a:f7:7a:ab:b1:ec:58:30:54:5a:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b33dcd20b5ae95c172d32ed729ebf306197b23e7
Validity
Not Before: Sep 10 13:01:27 2025 GMT
Not After : Sep 11 13:01:27 2025 GMT
Subject: CN=39ba453604f1bce7bae18db7febf8c63d809c53f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4c:e6:f8:e8:15:7c:87:94:70:d0:bd:bb:33:
0a:17:52:78:e5:99:97:e3:6c:b4:ca:d9:8a:43:e8:
61:c2:a7:dc:15:71:60:6d:16:a7:c8:06:62:fd:2b:
b5:78:af:42:53:63:04:c5:32:bf:ab:fa:39:ec:a3:
7c:4d:90:57:d4:f4:f6:fa:1f:f4:69:d8:ac:44:50:
08:b1:54:c8:fd:04:28:8d:e4:20:55:89:2a:90:61:
6c:ca:dd:3e:98:70:82:03:7c:3f:ad:c8:e6:87:8e:
f0:a4:28:14:42:ad:f0:c0:e3:93:de:81:58:2e:49:
b7:b0:16:8a:c7:ba:d6:8b:3f:a9:ba:39:79:7c:49:
a9:1a:1a:e2:98:e3:9a:6f:66:e8:47:de:1d:ec:00:
18:31:cb:dd:7d:70:9b:4d:da:c1:25:8f:2e:e0:bc:
76:6e:4e:59:ac:ed:55:45:ba:12:77:f2:18:c4:e6:
50:0d:e4:3f:03:eb:90:97:5c:9e:07:8e:aa:7f:21:
08:7d:76:47:a3:97:e0:20:f6:9f:9c:e0:93:14:b1:
95:dc:a0:5d:0b:69:e9:d8:fe:c0:1f:3c:ba:c4:75:
6f:50:88:39:b4:28:84:00:b9:75:16:73:e5:ea:c2:
de:31:ce:d7:e4:00:79:da:40:d3:44:ca:3e:cd:ff:
e7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:BA:45:36:04:F1:BC:E7:BA:E1:8D:B7:FE:BF:8C:63:D8:09:C5:3F
X509v3 Authority Key Identifier:
keyid:B3:3D:CD:20:B5:AE:95:C1:72:D3:2E:D7:29:EB:F3:06:19:7B:23:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sz3NILWulcFy0y7XKevzBhl7I-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:ec:ed:17:ec:9c:e5:bd:38:8a:e8:8e:b1:7d:23:f2:cc:9a:
d5:1b:b2:9f:b9:ca:ff:8f:d4:5c:1b:9d:b9:9d:6e:f9:16:ef:
b8:db:01:4b:1c:db:30:85:34:fa:b2:2d:b2:1d:52:52:4f:d0:
59:a1:a4:12:56:da:a3:4e:37:28:fa:a0:8f:85:f3:4f:54:51:
12:b0:ef:9f:7b:41:c5:ce:54:80:ff:47:61:1f:2c:06:52:88:
c4:9d:d8:8c:f7:18:84:c5:23:36:db:41:9f:c2:29:73:51:b6:
da:3d:c7:3a:d3:9e:45:7f:d6:c1:0d:f9:c0:48:6e:a7:d3:bb:
ae:65:b8:6a:f0:40:f2:bd:2f:fc:b0:7f:fd:c4:d4:d0:a8:f7:
0d:e9:d1:b3:ab:62:0b:e5:2a:c9:df:e5:b8:d5:4e:ca:ac:21:
33:47:c3:d5:4a:1a:29:f4:45:ab:70:f3:60:b4:70:26:bd:80:
75:a7:5d:97:15:e6:28:59:3a:de:3a:d0:59:c0:c2:2b:de:b3:
7e:a1:c2:9b:fe:8c:3e:f2:30:80:b7:aa:b8:6a:65:03:fc:eb:
79:84:c8:aa:9c:4f:43:77:31:31:d9:f3:89:df:90:57:9a:7d:
ad:3e:ea:7d:b9:51:26:3a:79:12:e8:67:5b:c7:11:6d:a8:b6:
21:c0:33:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 15:31:12 2025 by rpki-client