Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
File: cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft (raw, json)
Hash identifier: edkKTujjmgdj2fVw4UETdhkYXc/Rxmp541nML81rJBk=
Subject key identifier: 6F:EB:DF:6C:8F:C7:C8:3E:77:60:20:C7:C1:1F:84:7B:D1:6C:49:32
Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Certificate serial: 019921B238950EF40A4F354AB0996D8A9899
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
Manifest number: 14E4
Signing time: Sun 07 Sep 2025 01:02:31 +0000
Manifest this update: Sun 07 Sep 2025 01:02:31 +0000
Manifest next update: Mon 08 Sep 2025 01:02:31 +0000
Files and hashes: 1: 0uVokjA0n-IKYM4dLwrHfcYoXtI.roa (hash: h5xCuikP/FGyLSLux1dmHiJam1SLoPwDAncSRikSHHc=)
2: cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl (hash: caXW49mDSu3jrNZ43mahvy6JesR4KWt1w8RQmHV+esw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:38:95:0e:f4:0a:4f:35:4a:b0:99:6d:8a:98:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Validity
Not Before: Sep 7 01:02:31 2025 GMT
Not After : Sep 8 01:02:31 2025 GMT
Subject: CN=6febdf6c8fc7c83e776020c7c11f847bd16c4932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:94:b6:39:c9:4c:c4:07:5b:2b:41:5f:91:91:
4d:7f:4b:4e:8b:d5:3b:38:92:fa:38:64:2d:29:f8:
eb:f2:4b:ec:e8:9b:eb:10:23:29:3d:b8:7b:31:da:
fc:f5:fe:24:7d:86:5e:2a:c2:97:a6:5e:88:77:1a:
31:59:71:b1:a6:bc:eb:ef:ba:ea:d9:c7:79:6f:c2:
2b:65:f5:74:98:44:7c:cf:b3:d8:55:dd:74:93:47:
3d:a5:ee:91:db:d3:32:33:8d:b6:bf:ac:d2:20:5e:
41:3b:0a:05:57:b5:28:16:11:f0:a8:d6:1d:ca:b8:
6a:89:6d:20:f5:ff:91:c4:bc:21:8a:4f:8f:60:e7:
02:88:bb:1b:4f:20:0a:73:98:c6:41:a4:1b:28:1a:
d4:3f:42:3c:4f:43:31:01:85:06:d5:11:8a:40:38:
6c:bb:cf:0d:27:8e:ff:a9:f4:ae:ac:85:e3:62:2e:
6b:ad:c0:1d:05:d3:e5:47:55:75:c8:de:fe:e4:94:
3e:92:1c:2a:bc:8f:b3:79:5d:10:a9:e3:c3:7e:ea:
b2:d7:bf:60:81:72:c8:76:ac:87:48:c8:54:c2:c3:
f3:f2:a2:d7:19:60:8b:62:e6:5a:37:55:ce:b5:a3:
a4:6d:a1:a5:ad:26:ad:c6:c1:2c:e4:95:98:a3:ec:
1a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:EB:DF:6C:8F:C7:C8:3E:77:60:20:C7:C1:1F:84:7B:D1:6C:49:32
X509v3 Authority Key Identifier:
keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:a0:c1:65:f1:87:30:07:f5:c5:1a:67:be:94:b1:98:5f:bc:
93:71:a5:10:a7:6b:a3:a0:5a:26:8b:81:2b:d9:0e:c3:f9:10:
05:4f:bf:da:ec:85:6a:34:b1:27:3c:84:f6:f8:c8:e5:19:04:
11:9a:64:ef:f9:92:6e:fd:ac:1e:cd:6c:3c:f0:da:01:0a:ac:
11:d2:6c:cb:be:df:b5:d3:8b:e9:d9:8a:68:f1:30:e2:c9:e0:
5c:a0:17:c3:40:f4:53:ff:91:f9:70:64:f5:78:13:ff:38:7b:
03:b4:2a:d5:5f:4c:e1:24:2a:c1:41:58:64:3d:52:8a:e3:81:
c7:b1:95:16:26:da:cc:e1:11:67:ad:c1:aa:8f:24:f6:f8:32:
36:b9:a9:cd:34:98:d8:be:3c:f5:c2:fa:2e:eb:2e:e1:ee:a8:
8a:05:2d:f7:ce:33:12:3a:32:42:b7:9d:0b:e9:b5:29:4c:71:
ee:d2:25:e9:48:2d:64:8c:a4:96:5f:49:a8:86:20:ab:e7:b1:
be:ce:7e:33:67:fd:ab:1b:e0:a3:d6:1d:1f:4e:50:b1:02:5c:
e1:d5:78:ef:5a:3d:94:cb:75:de:cd:40:a5:e0:0a:26:e4:6f:
0d:23:0d:79:ed:39:d2:7b:66:6f:3c:da:80:f9:d1:f4:c3:70:
b7:47:c6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:49:58 2025 by rpki-client