Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
File: Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft (raw, json)
Hash identifier: +cNEQmvpw31KsX65xjCoStO1bzc5/AJdU0nRbyF5/DY=
Subject key identifier: 9A:09:DE:36:CB:F3:A3:E6:9F:8E:E6:E0:B9:4F:F8:C7:FD:88:D1:44
Authority key identifier: 67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27
Certificate issuer: /CN=6777a62846df4edbe5666b89e8420e919ab08627
Certificate serial: 0198D4E08FC689404045D04D529EE74024F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
Manifest number: 15A4
Signing time: Sat 23 Aug 2025 03:02:23 +0000
Manifest this update: Sat 23 Aug 2025 03:02:23 +0000
Manifest next update: Sun 24 Aug 2025 03:02:23 +0000
Files and hashes: 1: Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl (hash: 2xdS2T8/fBZBQpcq7gTniLvYJsw0yabM3XF62n+PV6I=)
2: ZBPuASXAJcjpb4z2Gk47z8Bokws.roa (hash: xXQRbhIxvcjZLo2Nk1OZPyhXjwNTzt2gl2oGbinvPSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:8f:c6:89:40:40:45:d0:4d:52:9e:e7:40:24:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6777a62846df4edbe5666b89e8420e919ab08627
Validity
Not Before: Aug 23 03:02:23 2025 GMT
Not After : Aug 24 03:02:23 2025 GMT
Subject: CN=9a09de36cbf3a3e69f8ee6e0b94ff8c7fd88d144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:6e:f8:13:34:c9:0d:e9:d7:fd:e1:ea:a8:cf:
86:8b:d3:7c:1f:9b:58:54:bd:60:29:5e:fc:7b:d7:
b5:46:fe:3a:29:76:6a:b5:1f:ca:30:30:1f:d4:1f:
80:35:62:a5:d4:31:c1:0a:13:2a:76:5f:17:42:b1:
ed:b2:32:01:d4:d8:80:75:70:85:af:e3:6e:77:a6:
84:56:86:f7:f1:a9:fd:78:4b:62:8d:3f:9b:58:cf:
bb:f4:9d:6a:08:b4:4a:20:97:39:9c:60:92:a0:4a:
93:78:c8:1a:02:70:f7:c8:53:52:b9:55:59:77:1b:
fc:b0:30:b5:43:26:f8:bf:af:9d:f1:ce:e0:8b:9a:
e9:85:50:56:25:29:77:01:ea:13:08:69:7b:a5:99:
12:0d:d8:3b:9a:8e:e2:a9:70:88:92:94:55:e2:09:
7e:44:ab:61:4d:53:7a:2a:d9:e8:f1:1a:73:26:2f:
38:4c:b0:a5:d1:ee:08:b9:23:e2:df:1e:bb:09:1e:
d9:20:49:4a:1c:c0:cf:d2:5d:26:31:6d:8a:ed:00:
18:b3:06:c2:ec:70:12:01:cc:01:d1:83:e9:ba:02:
9b:48:00:ca:e5:93:d9:28:f4:2e:35:4d:4c:f4:3d:
33:77:f5:4c:c3:31:83:6f:a5:10:88:05:3e:a7:98:
b6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:09:DE:36:CB:F3:A3:E6:9F:8E:E6:E0:B9:4F:F8:C7:FD:88:D1:44
X509v3 Authority Key Identifier:
keyid:67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:ce:93:7a:f5:6a:3d:55:d5:46:3b:80:0c:5a:41:60:e9:c3:
6e:53:e4:37:67:8b:8d:29:5a:3f:b4:ba:52:ab:47:ff:53:5c:
6d:e4:58:4d:59:2a:35:7f:77:40:ef:ea:16:f9:e6:ff:c1:4a:
63:58:a1:49:c7:11:3d:c9:22:2f:58:c3:5a:ed:b7:d2:56:1c:
fe:87:a6:c7:1c:e7:58:7c:f4:bd:cf:8f:4f:22:ef:44:b4:73:
85:3d:b3:9e:04:1f:89:b6:3e:f1:09:23:c1:d0:c0:cd:3c:b6:
12:2c:fc:4b:00:d5:83:7a:d4:73:f6:93:a4:62:1f:aa:84:94:
2f:94:ec:48:64:98:a8:10:db:10:6b:e4:2c:6c:63:06:69:28:
f6:bd:8a:47:de:7d:8c:15:72:5f:5d:91:84:e2:70:b1:ff:5d:
11:20:c5:b3:d4:dc:3d:6b:3f:6a:d3:11:7f:26:13:a8:eb:e3:
24:c1:6d:f2:8d:06:34:32:9e:b9:75:4e:3b:cd:5c:21:e5:1f:
38:53:7f:ad:30:89:0c:83:ea:b3:99:01:6a:da:72:8a:64:05:
c5:35:01:88:c5:b0:47:91:a5:9f:22:f4:dc:07:76:ff:39:43:
56:e5:f6:4d:a1:9d:98:a7:66:fa:70:2c:61:ad:ec:27:19:c7:
b0:6b:06:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:30:32 2025 by rpki-client