Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
File: zsY7h6iuwJPb5H3MqShg6oQSKOA.mft (raw, json)
Hash identifier: SJfnStGKgj2O2Hwb0us4yPHxtoHAqD5TTmDGrKfNOG0=
Subject key identifier: B8:F2:17:44:74:2F:45:4D:5C:DB:27:68:24:33:1E:75:89:F4:81:AD
Authority key identifier: CE:C6:3B:87:A8:AE:C0:93:DB:E4:7D:CC:A9:28:60:EA:84:12:28:E0
Certificate issuer: /CN=cec63b87a8aec093dbe47dcca92860ea841228e0
Certificate serial: 019922FA1821C1C89537A31B3AD107C84C3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
Manifest number: 0B7A
Signing time: Sun 07 Sep 2025 07:00:39 +0000
Manifest this update: Sun 07 Sep 2025 07:00:39 +0000
Manifest next update: Mon 08 Sep 2025 07:00:39 +0000
Files and hashes: 1: oDVjxYPm7vPq-9FQVAv-wdPcmhE.roa (hash: SVNTWU/SFE8BeAZ7Bb0M+S0ysWhdx0WLLM1QECYtWDg=)
2: zsY7h6iuwJPb5H3MqShg6oQSKOA.crl (hash: h40iKH3AatIpZf/Yldzew89ZF4qwmewvrt7wTDWdb1A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:18:21:c1:c8:95:37:a3:1b:3a:d1:07:c8:4c:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec63b87a8aec093dbe47dcca92860ea841228e0
Validity
Not Before: Sep 7 07:00:39 2025 GMT
Not After : Sep 8 07:00:39 2025 GMT
Subject: CN=b8f21744742f454d5cdb276824331e7589f481ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:df:d3:43:81:8a:e7:6c:5a:7e:bd:78:a2:7d:
bf:11:0d:a0:df:8a:17:95:48:4e:39:1d:a2:69:30:
e1:07:a4:34:30:b9:3d:27:6d:f7:43:5d:2f:eb:57:
a1:fd:37:e5:9b:62:9b:4e:60:36:a9:39:fc:b9:11:
c6:06:6b:6e:1b:b2:e0:e8:3f:8c:d1:30:16:59:83:
11:72:d5:6b:9e:15:10:c5:89:ab:10:ed:94:43:7f:
74:1b:8f:36:47:1c:28:34:c5:c0:e2:2e:5d:40:37:
4b:17:3f:f1:22:38:2d:ad:4d:57:46:f8:70:49:32:
21:df:42:dd:94:5c:f2:55:58:bf:7f:cf:58:15:44:
e9:18:14:fd:0d:24:02:61:76:b3:a7:75:dd:e1:e5:
4a:dc:a8:73:5b:f5:69:22:e1:4d:5c:0f:ef:77:83:
1b:3c:99:a6:37:49:9f:aa:b7:17:c0:2b:b6:ae:a1:
74:61:84:e4:ff:26:4e:49:b2:27:22:0a:e9:12:48:
b8:af:16:6d:d4:3f:bf:ae:32:15:0b:44:b9:6e:ca:
8c:cf:e5:4b:32:79:85:8b:f8:d2:6d:29:83:9e:e9:
89:8e:5c:a1:bb:e8:6b:11:fc:54:9a:05:09:03:4e:
dd:0f:ea:72:e8:7c:25:95:49:3f:27:bd:36:50:f1:
50:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:F2:17:44:74:2F:45:4D:5C:DB:27:68:24:33:1E:75:89:F4:81:AD
X509v3 Authority Key Identifier:
keyid:CE:C6:3B:87:A8:AE:C0:93:DB:E4:7D:CC:A9:28:60:EA:84:12:28:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:fb:92:5f:be:5d:bf:ee:1c:6d:f3:d2:a4:44:e2:82:ba:b7:
73:d7:1f:7d:3d:9b:46:7b:72:34:0a:0c:64:38:72:26:61:a4:
9d:ac:e9:2c:61:41:c9:f1:8f:8e:af:c4:c2:a9:01:15:8c:b1:
6f:77:c6:90:8c:c9:a1:a5:b6:6d:75:72:ce:1d:1c:d6:44:e6:
aa:5f:9a:6a:42:8a:ed:2b:96:2b:c0:64:ae:15:88:d6:bf:4b:
e9:6f:bb:32:b1:c6:ed:ca:31:43:2b:67:2d:61:a9:db:0c:cd:
ce:95:71:dd:34:a2:52:3e:77:62:ee:23:e8:5f:85:9a:1c:86:
21:82:a9:87:a9:a4:b3:b6:38:89:0c:a4:35:76:89:16:ea:7a:
6d:56:73:7d:f9:12:95:99:06:1f:d1:29:2a:b9:9c:87:92:40:
e5:c2:9e:4f:94:51:ec:f0:5e:e0:2f:d8:cd:d8:58:5c:d9:db:
ee:c0:a2:77:22:98:3f:9e:03:61:ad:b4:2c:88:16:83:15:5d:
de:cc:60:f8:1b:6b:58:b6:e4:00:86:01:55:a2:e8:6e:26:b2:
89:c0:aa:43:76:10:18:bb:f7:59:ac:3f:27:c3:44:01:ec:da:
e4:a5:a6:44:b7:ef:83:2b:cb:56:c8:9c:85:ff:42:6c:82:61:
e6:ff:10:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:42:33 2025 by rpki-client