Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
File: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft (raw, json)
Hash identifier: ySfGEaXu2XeG5dmhAz+dtR4dcqOZZVPRrQ1rggSFwLE=
Subject key identifier: 1B:C3:C4:C3:8D:A5:7F:62:A3:0F:E9:A3:03:10:79:5B:9E:7D:1E:A5
Authority key identifier: CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
Certificate issuer: /CN=cf40e25606651a075484c709fa766d80dad52d9c
Certificate serial: 0198D660B7F192A1E1C38834A0DABF63B906
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
Manifest number: 0456
Signing time: Sat 23 Aug 2025 10:01:59 +0000
Manifest this update: Sat 23 Aug 2025 10:01:59 +0000
Manifest next update: Sun 24 Aug 2025 10:01:59 +0000
Files and hashes: 1: hGH_yKtqtaewmmke-m1I7cISSH0.roa (hash: T3QXU6gMQq0RcA3qUlvm1jUKiUtDYtXE4Lz78+TSbU8=)
2: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl (hash: hVqVG+j7CBwBiHbdz9fSahER0yvwVYbLhWWUxyvfa24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:b7:f1:92:a1:e1:c3:88:34:a0:da:bf:63:b9:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf40e25606651a075484c709fa766d80dad52d9c
Validity
Not Before: Aug 23 10:01:59 2025 GMT
Not After : Aug 24 10:01:59 2025 GMT
Subject: CN=1bc3c4c38da57f62a30fe9a30310795b9e7d1ea5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:44:9c:e7:2d:7f:24:72:0f:fb:84:88:e8:e7:
74:96:c1:fc:39:ff:98:d7:95:87:c7:5e:8b:42:a3:
be:60:ae:4f:7a:28:29:bb:75:e6:39:96:af:21:8a:
fd:e4:20:05:46:65:6b:00:5b:b8:9c:03:45:df:6f:
8a:af:a8:3c:d4:be:74:60:82:4a:72:4d:21:cb:ab:
45:2b:5d:8d:b6:70:38:64:69:f8:08:5a:8a:46:1a:
8c:7e:32:b4:40:06:25:05:13:53:d1:b5:76:ff:d9:
d4:24:d3:e9:0e:3b:30:91:99:71:ab:d1:ba:57:6e:
cc:bf:68:37:32:fe:ff:d0:aa:10:3f:80:51:c9:92:
f6:e9:91:39:c9:d4:d9:d3:8c:31:47:2e:de:4d:86:
6c:f9:7f:8c:da:bf:6b:44:b6:cc:49:81:03:4e:76:
d0:54:3f:f3:31:d6:3e:f7:34:b3:65:6a:a0:85:1c:
e9:84:64:74:94:65:21:d4:34:40:ac:4d:0a:bf:b4:
06:ee:e3:0e:f6:22:d6:29:de:f8:08:85:99:c4:3f:
6f:9d:3a:77:35:80:67:2a:fc:af:cb:1d:83:66:5a:
bb:f4:e8:13:c9:de:28:e9:45:2c:7a:d2:41:80:2f:
9e:93:d7:50:5e:07:b8:34:f4:e1:9c:0f:2c:3f:4c:
0b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C3:C4:C3:8D:A5:7F:62:A3:0F:E9:A3:03:10:79:5B:9E:7D:1E:A5
X509v3 Authority Key Identifier:
keyid:CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:5d:f2:11:8e:fd:34:97:64:dc:14:b4:3e:e4:3c:1d:f5:63:
b8:fd:2a:ae:5f:ad:9d:a1:97:e0:2c:b2:2a:19:08:75:9c:ba:
9e:16:c8:e5:c8:4d:77:1c:f6:b6:85:b6:d7:53:79:1b:34:dd:
9c:92:e3:b6:76:af:5a:46:26:43:c0:0d:5c:58:75:81:1c:cd:
09:f0:32:70:be:de:95:44:c5:bb:dc:b7:36:32:78:b1:38:8e:
12:7d:95:af:94:a4:8e:ef:3b:4d:fd:df:30:58:58:6a:6d:74:
a0:68:ae:f2:06:0d:c2:4f:a3:5d:84:0a:26:51:51:c6:0d:f3:
2c:b4:ad:2c:75:29:20:cf:4f:17:99:4f:57:c0:5d:c2:bf:eb:
c8:1c:33:47:9b:22:fa:d0:8f:c2:64:a8:a5:5b:4c:f0:9f:f8:
1b:f7:14:5e:96:e0:48:11:99:3d:36:6e:5c:d8:14:58:be:3c:
dc:29:41:35:e2:5a:02:9e:fd:5c:ad:a9:e5:bb:17:5c:ff:3a:
90:c2:e3:3e:aa:8d:8a:62:61:71:28:35:ae:08:13:4c:0a:a2:
00:22:9d:55:5c:77:d7:c4:6a:f6:74:5b:18:04:1f:be:31:53:
a4:e5:aa:61:d5:6b:03:3b:4d:e1:a5:b5:7c:18:e7:85:ad:17:
d4:9c:3a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:29:55 2025 by rpki-client