Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
File: zQPRPdJvAESig_xqEedWoqK1aRs.mft (raw, json)
Hash identifier: 1fT7McSPsxT9Kq+Y09FF19AFj5wJUjqPOkt2B7vRc28=
Subject key identifier: 37:EE:40:BD:44:05:52:68:DE:42:0E:67:A4:84:A3:6C:25:06:72:FD
Authority key identifier: CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
Certificate issuer: /CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Certificate serial: 0198D5F1947F92D5EF44EC6F9A42C8E6F772
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
Manifest number: 014F
Signing time: Sat 23 Aug 2025 08:00:35 +0000
Manifest this update: Sat 23 Aug 2025 08:00:35 +0000
Manifest next update: Sun 24 Aug 2025 08:00:35 +0000
Files and hashes: 1: yLKyshLk5Y8qo2HfRt0bfJWqtcI.roa (hash: CLpNYZZ3o+zwOI76Lm9XQZQEHlIeProjGVosiuqFQCw=)
2: zQPRPdJvAESig_xqEedWoqK1aRs.crl (hash: TYYvc43/x3O4wBtdm1DgzhplCHu5eMA1eLVhoZYF0dc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:94:7f:92:d5:ef:44:ec:6f:9a:42:c8:e6:f7:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Validity
Not Before: Aug 23 08:00:35 2025 GMT
Not After : Aug 24 08:00:35 2025 GMT
Subject: CN=37ee40bd44055268de420e67a484a36c250672fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f3:ac:4e:37:fd:ab:57:b5:11:b9:33:65:4d:
6f:5b:cc:11:8a:f2:b9:f8:ab:a6:15:fb:66:2b:a5:
d4:d3:7b:d6:e1:7c:32:71:fb:35:b5:6b:f7:b8:cd:
cd:cb:1b:29:be:8f:97:1f:be:00:0d:dc:ab:a6:37:
6f:c1:3a:82:6f:b7:1e:eb:bb:d0:35:d9:91:a7:05:
77:e6:ce:e0:df:ce:a7:79:ef:c9:fa:b9:fa:de:8d:
3a:c3:7b:a8:ea:cd:00:02:32:74:fc:02:29:82:95:
f4:0f:7d:d1:5b:f1:25:d7:7c:cb:40:7b:85:40:55:
e1:f3:fd:a1:eb:5e:37:ce:4f:da:2b:aa:46:99:26:
14:6b:d6:85:d8:8c:63:f1:7a:bb:82:ae:f4:90:d8:
6e:8b:c8:20:d5:b0:6e:fb:70:fe:79:28:76:f3:27:
07:0e:18:68:88:03:c2:f1:31:9b:38:ca:2c:08:0e:
a6:7b:67:90:af:ab:75:1c:8a:c8:7d:a4:90:11:6d:
e3:0a:34:f0:51:92:83:d5:46:5e:42:76:85:b4:a9:
fc:af:cf:ff:8b:9a:2d:63:fa:0c:26:ae:e7:c3:e7:
aa:5f:9b:1d:09:48:fc:8a:60:4e:1b:b3:ab:f2:ba:
2d:6e:b4:7c:ba:bf:ad:e0:48:fe:de:40:ce:74:0e:
66:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:EE:40:BD:44:05:52:68:DE:42:0E:67:A4:84:A3:6C:25:06:72:FD
X509v3 Authority Key Identifier:
keyid:CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:11:8d:b4:09:b0:96:30:26:eb:7d:d2:62:88:2c:81:06:74:
76:df:55:30:13:a0:c2:2e:11:de:26:9c:e3:6d:d9:a1:56:d4:
6c:2c:29:8d:67:55:dc:3e:71:2b:35:13:a5:6a:73:b2:0b:6e:
85:20:45:97:3f:4b:73:6e:d9:c0:02:ef:3d:b2:40:d1:e2:b2:
a7:ed:18:ff:fa:18:fb:3e:dc:38:2a:78:6f:b6:da:e4:ee:6d:
8e:86:a8:93:bf:63:0e:a2:f7:06:f3:f9:85:dc:84:b9:f0:6b:
09:20:54:79:2e:e8:26:5c:7c:80:6b:ba:af:20:d4:d7:66:e0:
12:9b:e1:22:3f:08:f1:4c:6c:72:e9:01:4b:ba:ac:1f:6a:fd:
d3:98:5e:d1:6f:18:cd:40:f9:1e:ae:06:c9:b9:69:8e:6e:9e:
0b:1c:ea:d3:cf:82:e6:35:11:d8:f1:0b:1c:f2:80:11:e3:89:
7e:b6:4d:60:ee:b3:14:ca:3f:fd:a5:1a:37:45:6a:27:e0:08:
e4:11:e3:8b:c8:15:56:72:e3:23:12:18:9f:b3:7e:3b:48:c1:
06:0b:b1:0b:fc:d5:f0:b0:d2:12:5e:c8:d0:9c:c3:33:29:9c:
95:3e:87:b4:b5:4a:e4:60:64:7d:12:93:7a:9d:71:8a:52:28:
2e:d9:03:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:25 2025 by rpki-client