Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
File: zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft (raw, json)
Hash identifier: vE3PCD8R6is9nhg1VZsG/XnaejFm3yFyODgWYSgyx6Q=
Subject key identifier: 10:E9:20:EA:13:AA:D1:17:6A:21:81:41:05:59:3C:20:AA:1F:CA:09
Authority key identifier: CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB
Certificate issuer: /CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb
Certificate serial: 0199233110C830967019A36611C50CE0A0CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
Manifest number: 0C24
Signing time: Sun 07 Sep 2025 08:00:42 +0000
Manifest this update: Sun 07 Sep 2025 08:00:42 +0000
Manifest next update: Mon 08 Sep 2025 08:00:42 +0000
Files and hashes: 1: pbWUlF6kph4C-luLlJFzTT778aw.roa (hash: FFtm0Ye7lx+oD8pt9jf446A0y5P8uQmRXJuEy3Pug1Q=)
2: zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl (hash: sar6AwaIdP0PZooCfntVwX57nsFUkAoTHYXAOL5mlWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:10:c8:30:96:70:19:a3:66:11:c5:0c:e0:a0:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb
Validity
Not Before: Sep 7 08:00:42 2025 GMT
Not After : Sep 8 08:00:42 2025 GMT
Subject: CN=10e920ea13aad1176a21814105593c20aa1fca09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7b:8d:86:08:53:0d:bd:6b:ca:a1:50:bb:aa:
2c:7c:5f:37:8e:33:d5:62:7d:0b:0c:7c:fe:6e:99:
60:63:8e:a4:9b:32:b8:bf:01:43:01:75:d0:25:91:
31:d2:49:21:39:48:9f:23:4a:25:8e:37:a9:1c:fb:
b8:24:85:af:2f:4f:28:d0:61:56:54:33:3a:6b:1d:
d5:48:7c:8e:2a:4f:77:3b:2b:ac:2c:7d:6d:ac:0e:
89:c1:76:7d:c8:07:5e:d3:0b:58:43:ec:ce:93:21:
df:a4:33:c3:87:0a:f4:9d:fe:fd:6e:9c:93:42:60:
74:70:6a:6b:eb:3a:82:3c:4b:3d:ba:08:20:fd:53:
7b:74:73:a4:4f:73:f4:e2:07:6a:21:92:86:a4:8c:
69:0b:70:35:ca:5a:a9:54:62:01:1a:b7:35:1a:88:
1e:e3:2b:d3:72:93:88:9b:f4:19:55:1c:74:35:e1:
9e:2f:a0:c8:e3:88:4d:5c:bc:f0:a2:bb:7e:e3:62:
ae:1a:9e:f9:6b:d2:72:b4:06:81:f3:b5:7d:6d:d5:
82:c7:ab:52:f8:d7:0b:84:45:fc:12:d3:52:42:f7:
35:7c:dd:fd:25:ea:ae:64:18:7b:a7:98:b2:f6:3b:
d6:a2:05:12:a1:fc:aa:d2:9f:cf:d9:bd:b5:54:9c:
c7:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:E9:20:EA:13:AA:D1:17:6A:21:81:41:05:59:3C:20:AA:1F:CA:09
X509v3 Authority Key Identifier:
keyid:CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:6e:f1:3e:d9:44:6a:8c:1e:7f:f4:ae:5e:23:2d:71:47:8f:
4d:25:78:4f:fa:da:a3:41:12:0b:06:e5:74:9f:e4:47:86:8c:
fa:79:3a:27:9e:e4:b3:a6:c5:ce:46:04:85:bd:06:e6:c3:2d:
c4:55:f8:d2:c0:23:df:67:97:c9:6f:9d:ca:d7:dc:df:51:d9:
00:12:7f:a3:16:ac:50:40:25:d7:d0:77:13:80:96:da:c8:13:
8e:d5:26:22:b8:4c:97:88:6e:f6:08:fb:e2:b6:da:36:b8:66:
48:3a:34:48:e0:72:09:7b:b6:92:88:c8:a7:15:b6:4e:f6:2f:
10:85:3e:7c:07:7a:fa:00:c3:b4:a0:da:8c:5f:08:c5:7d:80:
ff:ed:3b:31:8b:7b:32:18:ac:25:9c:26:b9:6e:88:fd:5c:c7:
4c:4c:0b:f4:50:73:69:42:8e:5e:cf:85:6e:d3:78:1c:59:d0:
e1:21:f3:9b:53:d8:05:8b:cd:9b:6c:4f:d1:76:9f:7f:a7:52:
83:1e:6f:ed:7e:a1:32:c7:37:41:23:a3:e4:4d:53:ec:4b:a9:
d7:35:ac:2f:49:c8:83:44:d1:ee:f5:48:38:22:44:a6:83:3f:
19:74:7d:a9:b6:4e:a8:fe:cb:e9:7c:cb:c0:f8:b0:04:f5:47:
a1:dd:64:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:40 2025 by rpki-client