Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
File: zQPRPdJvAESig_xqEedWoqK1aRs.mft (raw, json)
Hash identifier: UlgY9n2ardgB358YT2/IKzJ3yCaD3XcDCM/ZhYLopEk=
Subject key identifier: E5:29:FF:00:1A:85:95:AC:18:F3:54:60:40:D2:6E:8F:6F:D7:AD:E6
Authority key identifier: CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
Certificate issuer: /CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Certificate serial: 0197B820D76D763B2B75431E70BFADC33C21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
Manifest number: BB
Signing time: Sat 28 Jun 2025 20:00:49 +0000
Manifest this update: Sat 28 Jun 2025 20:00:49 +0000
Manifest next update: Sun 29 Jun 2025 20:00:49 +0000
Files and hashes: 1: yLKyshLk5Y8qo2HfRt0bfJWqtcI.roa (hash: CLpNYZZ3o+zwOI76Lm9XQZQEHlIeProjGVosiuqFQCw=)
2: zQPRPdJvAESig_xqEedWoqK1aRs.crl (hash: eKPfayOIQVh0a0NdMyXHE84ZmpGitYcbajQb/va4C7c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:d7:6d:76:3b:2b:75:43:1e:70:bf:ad:c3:3c:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Validity
Not Before: Jun 28 20:00:49 2025 GMT
Not After : Jun 29 20:00:49 2025 GMT
Subject: CN=e529ff001a8595ac18f3546040d26e8f6fd7ade6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c9:0b:66:48:dc:f9:70:46:c1:ab:6b:e4:9a:
a7:df:72:d7:7b:1e:05:79:a9:da:14:27:eb:05:e9:
6c:49:84:47:c2:03:eb:e3:27:8e:50:c1:fe:76:ca:
67:3c:e9:5f:aa:02:cf:15:dd:30:01:6b:cc:1b:d5:
5a:d4:d5:a2:18:a3:6f:41:21:99:43:e6:9a:aa:fe:
e4:91:ec:38:84:25:77:01:e3:cf:d5:d6:bc:07:8b:
44:48:83:90:43:52:68:9d:e2:5e:78:42:d6:9f:2c:
c1:5b:0f:a4:97:dc:4c:dc:77:a3:af:b2:0c:4a:ac:
20:d3:1c:ad:fd:de:d3:63:7e:3a:73:3a:10:3b:9e:
a0:e6:ce:68:37:d6:7a:50:fc:fe:05:75:bd:d2:e0:
2f:b7:8d:05:c1:d0:12:37:7f:16:3d:4e:48:6a:d5:
60:38:f2:2c:b8:04:61:42:b9:3a:96:38:7b:8c:f8:
9d:6c:ea:72:84:7d:e8:4f:12:7b:4e:ba:a3:c0:7f:
4e:7f:8f:88:62:8b:1a:18:05:0a:8b:88:6b:39:93:
20:a8:30:fd:de:d7:7c:82:97:90:16:20:c2:9d:70:
57:2f:06:8a:d2:5d:b5:dd:42:b7:de:0a:2d:c7:9c:
e8:3d:40:be:a0:77:75:06:24:55:06:32:e4:fd:a8:
fa:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:29:FF:00:1A:85:95:AC:18:F3:54:60:40:D2:6E:8F:6F:D7:AD:E6
X509v3 Authority Key Identifier:
keyid:CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
db:50:1d:04:c9:7e:6c:ec:46:0f:32:9e:18:c9:3f:ab:93:e9:
19:96:c0:c0:7a:6e:a2:59:75:f9:92:76:68:c4:08:bb:92:8e:
36:a7:1d:28:6c:c5:27:5e:99:08:22:76:13:23:e2:1a:ae:01:
b2:94:00:94:6c:07:c2:80:52:46:e5:42:9c:1b:18:2d:f0:a1:
74:c8:65:e2:da:6d:f7:a0:40:29:eb:4e:6d:3a:b5:8e:a5:87:
20:79:10:80:f4:35:fe:82:e4:f3:b5:7c:d9:89:bf:df:37:84:
70:25:49:c9:cc:9e:52:c5:7e:bf:0b:45:fa:3b:18:64:44:0c:
d3:e7:2a:8c:01:cd:5d:c2:b4:6f:fe:d6:f0:f9:60:af:61:d7:
9a:29:84:74:14:db:2d:fb:65:22:b5:03:ee:81:56:95:39:01:
44:03:52:c7:3d:36:0d:94:b6:f2:55:c1:d5:9a:d0:d7:f9:94:
81:1f:90:97:43:09:b1:cb:df:24:cf:4e:a1:3f:9d:30:75:4b:
99:2f:b7:82:de:17:17:25:a2:c8:5f:e6:3f:c7:ef:1b:7c:76:
04:3b:51:b5:3b:9a:82:01:97:bd:f9:56:26:bc:3d:25:85:c3:
95:e7:ec:ca:4a:ea:e6:fb:80:61:9e:c7:a8:c9:b6:f2:30:cd:
20:5e:60:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:39:44 2025 by rpki-client