Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
File: fzP8QNLgMzu8e96rK9hZlUMBwPE.mft (raw, json)
Hash identifier: T8Hieqn6XtXJZL8UfV1F+2WYQJYtCqF3hS1hdzapGfs=
Subject key identifier: 4A:72:51:4E:44:DE:52:13:7F:40:E5:B7:AF:AA:2D:34:27:D4:49:B7
Authority key identifier: 7F:33:FC:40:D2:E0:33:3B:BC:7B:DE:AB:2B:D8:59:95:43:01:C0:F1
Certificate issuer: /CN=7f33fc40d2e0333bbc7bdeab2bd859954301c0f1
Certificate serial: 0199228CB51CACC96025DDA65A7CB2F31350
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
Manifest number: 05BA
Signing time: Sun 07 Sep 2025 05:01:10 +0000
Manifest this update: Sun 07 Sep 2025 05:01:10 +0000
Manifest next update: Mon 08 Sep 2025 05:01:10 +0000
Files and hashes: 1: fzP8QNLgMzu8e96rK9hZlUMBwPE.crl (hash: pVdZHH4shrIa/ATYtzLgXncbLNSvK4uDOFJ9kBvsoiQ=)
2: ur3dSSpuEwtDhi5m-xYjQ9J-ZlQ.roa (hash: cwXAi1sfFPfN04wsw1nczJfstzqjCt7igbtZqfyu1Oc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:b5:1c:ac:c9:60:25:dd:a6:5a:7c:b2:f3:13:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f33fc40d2e0333bbc7bdeab2bd859954301c0f1
Validity
Not Before: Sep 7 05:01:10 2025 GMT
Not After : Sep 8 05:01:10 2025 GMT
Subject: CN=4a72514e44de52137f40e5b7afaa2d3427d449b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f8:19:30:f6:11:9f:0e:7a:e9:25:34:f6:f4:
be:0a:46:6f:d9:7a:85:b7:e7:52:60:d6:27:c7:0a:
a5:ed:95:a5:6a:1a:95:7a:31:3c:63:80:92:64:eb:
fc:8e:ae:a0:00:2d:f1:7e:25:0c:c6:5f:8f:a7:92:
c3:31:53:49:5b:6e:7c:a4:41:5f:45:9a:2d:a8:3f:
01:fc:4a:22:0b:a4:7f:16:df:07:4c:28:72:0f:f5:
78:9c:07:c8:f8:f9:42:9f:ac:4c:23:7c:cf:aa:04:
5d:b1:b3:9f:08:3b:70:8f:18:ec:90:06:8a:41:ad:
25:7d:11:e5:db:9e:10:3f:3c:fa:bf:34:4c:71:ec:
b5:b5:b7:a9:d6:4b:98:d8:b8:7a:ea:23:fe:50:93:
0c:9e:ef:e9:ad:dd:13:b7:88:7f:83:f0:22:2e:37:
8e:4c:d1:2c:d7:71:74:bc:bb:28:89:bc:39:3f:ee:
ab:bf:dc:86:35:95:90:48:64:4a:ed:3f:2e:00:9d:
85:21:95:82:b7:a3:07:37:fd:7d:f5:96:7d:ee:90:
9d:89:1a:3a:12:41:bd:a5:a5:a2:d5:0e:1f:b7:96:
d3:0f:09:e4:7e:e2:84:5f:6e:92:04:ab:6c:4c:4b:
8c:03:4c:37:7e:5c:0b:fb:fb:8d:04:6a:8a:45:95:
41:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:72:51:4E:44:DE:52:13:7F:40:E5:B7:AF:AA:2D:34:27:D4:49:B7
X509v3 Authority Key Identifier:
keyid:7F:33:FC:40:D2:E0:33:3B:BC:7B:DE:AB:2B:D8:59:95:43:01:C0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:84:3f:60:32:ad:5e:9c:9c:9f:27:29:7e:d2:b2:c4:a3:24:
22:69:b7:f4:fc:f9:0b:13:04:e0:cc:ba:87:81:a1:92:1b:e2:
44:f3:51:d0:b5:a3:ae:e0:6d:95:0c:78:67:00:88:0e:bf:e2:
97:35:54:2e:e3:bf:0f:7f:92:a3:73:fc:b1:7b:a2:3e:58:0e:
b5:b6:f2:5c:ca:1c:63:62:22:d8:b9:54:2e:cf:a2:74:98:2c:
f9:0f:b4:1b:66:84:e9:ca:8b:ab:21:c3:a6:fd:f5:2e:5a:c4:
11:f8:80:98:39:3a:f0:23:13:6b:7d:15:b1:18:f4:4c:4b:87:
ef:cd:00:f4:8e:55:80:e6:10:3b:c6:1e:f3:52:e7:1b:17:70:
22:6a:26:7c:72:67:7a:f0:53:4e:9d:a9:6d:c3:9c:7d:16:e8:
93:02:76:ef:eb:75:1b:59:7d:6e:fe:92:63:ee:6e:70:67:43:
d6:42:3a:14:bd:17:83:f3:30:d0:98:f6:0c:72:c4:11:04:7e:
00:30:4e:8a:8f:6b:b4:fa:c9:a9:0f:e4:d5:67:a8:98:27:15:
0d:2b:39:3f:f0:ec:2a:d3:12:a6:2c:01:be:bb:be:b1:61:c1:
01:15:ae:0e:a4:fe:14:a2:c5:59:b3:42:17:fa:e1:fc:e0:15:
75:d4:b8:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:22 2025 by rpki-client