Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
File: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft (raw, json)
Hash identifier: narZBK1fugOAYN5LXh870uklY9hqz11wJePMBXPoZSM=
Subject key identifier: B2:6D:3C:CD:0D:7B:49:E1:2B:75:80:78:BD:01:B0:17:2D:19:3E:2A
Authority key identifier: 67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
Certificate issuer: /CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Certificate serial: 0197B6D7A6E814E11D597059461F84C09357
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
Manifest number: 14C5
Signing time: Sat 28 Jun 2025 14:01:15 +0000
Manifest this update: Sat 28 Jun 2025 14:01:15 +0000
Manifest next update: Sun 29 Jun 2025 14:01:15 +0000
Files and hashes: 1: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl (hash: 4h8WUHLH3B4hCCpXJFvK5FLZDvrHiwSGNDQ9oKWZTfM=)
2: lHo6E8O3jVZPWE_3CSGUh-yWmns.roa (hash: EcydcckC44FXLMG0RzB+bDpZsk7fNTw0ZBUYetuTeMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:a6:e8:14:e1:1d:59:70:59:46:1f:84:c0:93:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Validity
Not Before: Jun 28 14:01:15 2025 GMT
Not After : Jun 29 14:01:15 2025 GMT
Subject: CN=b26d3ccd0d7b49e12b758078bd01b0172d193e2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:13:a0:51:71:70:6c:0d:3d:be:59:8f:44:0f:
00:46:e9:72:00:be:3e:6d:15:cd:57:50:58:aa:9e:
f6:6c:45:0b:cd:26:03:63:8d:a0:32:4e:9b:be:4a:
b5:c0:b9:e3:78:c3:e1:b3:b9:a4:78:4a:b0:92:3e:
29:22:76:f0:22:89:e4:85:29:a9:ee:1a:d6:29:01:
e7:7a:62:76:df:a6:fb:37:ae:33:8a:90:34:a5:bc:
f9:b9:85:12:05:32:a4:e7:cb:5b:a8:e0:f9:da:10:
1b:2a:49:ef:b5:0f:60:69:cb:12:22:ec:53:98:84:
13:1d:93:96:2b:e5:f9:1b:02:a1:27:cf:09:e6:c2:
77:8e:22:48:84:6a:43:45:9c:7a:f1:c1:c8:b6:18:
b3:cf:78:93:c8:8b:4e:ca:41:ea:fb:04:79:1e:ef:
f3:23:c6:2a:74:75:be:fa:03:b7:d0:a9:90:e6:b8:
7e:1f:e7:6d:f6:da:43:0c:26:81:d2:cd:5e:2a:cc:
05:0b:b3:8e:79:a3:48:81:05:f8:86:a2:b4:b9:4b:
13:70:a0:8e:84:32:14:f0:de:c7:4b:a1:3e:57:4e:
cf:b0:3f:3b:bd:9d:38:a1:84:e3:f8:f0:26:63:3c:
7c:fe:48:9f:3c:f8:28:74:69:b7:2a:31:eb:67:51:
4f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:6D:3C:CD:0D:7B:49:E1:2B:75:80:78:BD:01:B0:17:2D:19:3E:2A
X509v3 Authority Key Identifier:
keyid:67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:5a:91:db:8f:35:e4:f9:32:2f:1f:82:6a:71:dc:0c:7a:3b:
35:64:ee:a0:b2:14:17:1a:16:b4:21:e5:6c:7e:91:93:40:dc:
7e:ab:c1:8d:e7:eb:eb:5c:2b:c6:43:3c:84:3e:21:51:a5:19:
e9:ad:62:93:64:40:02:cc:09:9c:70:25:be:8b:42:7e:53:b6:
1b:25:a4:0b:f3:18:0c:4b:25:b1:a0:a1:f8:09:68:e7:ea:2a:
ca:fa:27:7d:b9:19:6f:32:df:36:95:f9:7c:fc:fe:19:e0:55:
e7:f1:07:79:ce:89:8c:14:7d:f7:71:3a:53:9d:76:7a:47:8e:
ce:08:63:07:d7:85:9f:d5:9d:39:e1:c3:ff:cf:a0:17:25:a9:
c9:02:12:69:d9:fc:47:cc:70:67:a0:c8:7d:77:0c:ae:e3:2d:
9f:9c:f8:35:88:db:b2:f2:ae:30:63:44:0f:58:74:6c:82:0a:
06:35:3f:ed:64:f3:31:17:37:e3:d1:f4:9f:f3:26:de:f6:35:
d0:15:3a:c4:34:a3:3a:73:ad:9a:d8:32:af:99:9a:49:c0:15:
35:3c:27:a3:b6:db:71:14:c6:10:ae:ed:82:c1:98:79:75:f5:
4c:6a:e5:33:b5:76:a3:ee:43:82:c5:65:f6:af:5e:b7:ea:f9:
e4:62:7c:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:41:21 2025 by rpki-client