Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: tFgCIyzNQWICWYpoHyZEwjfIOJrkbmlLuHTmln0DMRI=
Subject key identifier: EE:9F:91:C2:78:33:EC:D6:1A:36:6A:75:7F:E6:81:05:DC:AC:26:89
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 0198D73B4EFFDEDEE604695B4A70CBBED069
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 0673
Signing time: Sat 23 Aug 2025 14:00:44 +0000
Manifest this update: Sat 23 Aug 2025 14:00:44 +0000
Manifest next update: Sun 24 Aug 2025 14:00:44 +0000
Files and hashes: 1: 69EZo_UvSYLCIwLzPyqCblCyZzI.roa (hash: 2naW8CuEgpZKAi+BoeweFMMKRLa2fsvkiMt8udbwEtM=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: 8Me/XVtNzJR52DzB/N4s6VlMvx4riadtlP1tmn/LOzc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:4e:ff:de:de:e6:04:69:5b:4a:70:cb:be:d0:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Aug 23 14:00:44 2025 GMT
Not After : Aug 24 14:00:44 2025 GMT
Subject: CN=ee9f91c27833ecd61a366a757fe68105dcac2689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7e:14:f7:76:3f:e5:58:48:32:7e:0a:c2:a3:
71:c7:8b:ae:2b:31:a8:49:a7:5c:06:a4:a0:1e:22:
38:49:e2:ac:09:a0:4d:ab:fd:ed:19:9d:f6:c5:4b:
35:b6:c6:2a:f6:9d:09:f8:b8:cf:e8:8b:a6:5e:30:
5b:4d:73:d5:6c:cd:fe:54:12:39:fa:45:90:9c:51:
9f:0c:79:69:9f:f1:ec:cf:14:17:60:0f:4c:8b:c8:
0d:15:d5:4b:9f:92:da:07:04:a5:c7:40:5d:46:bf:
45:d4:b2:33:2d:a4:87:32:92:fa:7f:73:47:65:2c:
b4:d0:5e:41:13:97:78:3e:de:4e:97:ff:a6:f5:f6:
c8:2a:7e:b7:00:94:64:a9:04:6f:04:39:af:49:83:
64:99:64:8c:3b:c5:1f:9b:05:b4:7e:ca:2a:7a:9e:
d2:64:68:e8:7b:96:3b:93:40:ee:fa:7b:98:ef:a8:
99:e2:89:c9:d8:90:74:d6:e5:2e:5e:9c:72:c8:73:
fe:d6:87:ba:6a:3f:ff:d9:f9:2b:bc:07:fb:61:10:
84:f9:b4:f3:07:00:c0:5e:18:3f:2f:af:de:7f:ff:
c0:37:85:60:d5:e0:8b:5e:31:1c:a9:b9:7b:46:62:
cc:8d:fd:cf:bb:ac:8e:8a:f1:f4:59:86:51:a1:08:
23:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:9F:91:C2:78:33:EC:D6:1A:36:6A:75:7F:E6:81:05:DC:AC:26:89
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:c4:0e:49:45:d8:86:b6:1c:9a:24:d0:e9:08:48:cc:c6:88:
d0:22:df:7e:08:5b:82:18:d9:c1:1b:30:f7:42:59:aa:28:56:
2e:97:85:f4:5a:ff:52:90:bc:2c:a1:f4:86:83:41:18:03:87:
f7:37:92:f6:7d:bb:ce:57:be:f1:c6:36:9f:7f:c8:9e:dc:05:
31:8f:0e:04:d3:64:30:1c:c8:b9:d0:90:64:74:8e:89:6e:37:
d8:56:85:98:65:ac:f4:36:5a:77:12:c3:29:eb:e1:ee:0a:e1:
3a:ab:b6:71:e3:e6:54:f0:94:5b:ca:67:97:b2:fe:91:8e:d7:
96:f3:65:ca:0e:b1:46:d8:41:4e:19:80:fd:a3:f7:2d:b4:64:
af:bc:c9:ba:1a:15:1d:8f:ae:95:50:ec:5e:58:46:28:a0:85:
65:41:fd:3c:b7:17:e2:cc:62:9d:19:e8:94:54:3d:d2:1c:e6:
a0:eb:e4:32:11:17:e1:89:f7:47:05:5f:86:6f:05:32:a4:73:
6b:ae:b8:80:8a:4d:c4:68:76:68:e3:96:7a:8c:fc:ff:a8:b4:
d3:3b:90:ad:c9:06:2a:d9:a8:cc:e3:a2:04:d0:2e:bf:d5:60:
84:79:95:98:90:31:54:0c:3b:f4:f9:54:82:e7:83:f5:8a:e4:
09:36:22:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:34:25 2025 by rpki-client