Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: s9MNOGjvu5CIUwD+0TO8RTkjPu4Oq8WMYQkvv3knZJg=
Subject key identifier: BC:ED:5E:47:2B:3C:1D:D7:C9:71:50:59:CC:DE:8F:23:30:5B:67:32
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 0197B77C8C7F00A997930F08EE1EF7EF5DAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 05DE
Signing time: Sat 28 Jun 2025 17:01:22 +0000
Manifest this update: Sat 28 Jun 2025 17:01:22 +0000
Manifest next update: Sun 29 Jun 2025 17:01:22 +0000
Files and hashes: 1: 69EZo_UvSYLCIwLzPyqCblCyZzI.roa (hash: 2naW8CuEgpZKAi+BoeweFMMKRLa2fsvkiMt8udbwEtM=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: vvxUZ3raxV7k0gu/kAE5kd49LlPLEAqsXZ3+xQxlFK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:8c:7f:00:a9:97:93:0f:08:ee:1e:f7:ef:5d:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Jun 28 17:01:22 2025 GMT
Not After : Jun 29 17:01:22 2025 GMT
Subject: CN=bced5e472b3c1dd7c9715059ccde8f23305b6732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c4:37:df:75:8a:83:4c:f7:68:77:3f:65:6f:
8b:46:39:5a:75:2e:e7:bf:be:ad:fe:8e:a7:b7:a3:
21:23:fa:58:c6:9b:7d:ef:8f:ca:81:38:44:3c:f2:
30:b4:21:aa:3e:a9:b5:bb:12:68:01:51:a4:68:70:
4b:41:52:41:70:54:b6:71:15:14:5e:cc:59:f4:f5:
f1:44:39:36:09:ac:fc:ca:a7:2a:fe:2b:9b:93:15:
f7:e4:4d:2d:b7:0c:dc:78:63:13:df:2c:9c:12:4b:
c0:42:4f:e6:2a:56:0f:d7:1e:28:f0:10:bf:eb:4a:
88:ff:bf:1a:a0:fc:a7:0b:f8:5e:2e:27:71:29:03:
b0:74:2c:5a:96:d5:b7:2b:b1:dc:89:5e:dc:9e:28:
f3:c2:b4:37:c5:c6:0e:13:44:fa:42:64:fa:b1:e9:
a7:94:4b:31:18:f6:f4:ac:24:c2:b3:62:73:0d:f5:
c2:23:fb:ca:d4:b6:24:97:ba:c2:5e:36:64:25:86:
4f:f4:b1:c5:54:7a:12:c2:2a:95:70:1e:62:fc:ea:
63:89:d8:80:13:eb:2c:04:99:58:68:57:41:6c:55:
59:77:d5:9f:9b:42:76:69:55:5d:b4:d8:04:e7:97:
45:e4:34:45:f0:00:83:f5:41:13:b5:2e:5e:fe:b2:
3c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:ED:5E:47:2B:3C:1D:D7:C9:71:50:59:CC:DE:8F:23:30:5B:67:32
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:80:36:44:c8:a6:db:79:93:5c:de:f4:93:a4:13:c1:12:8f:
69:4a:e3:03:04:b3:87:3c:54:54:45:5d:04:d3:7d:3e:bb:a8:
0c:be:a6:f1:01:c7:48:2d:08:42:26:64:92:ca:78:35:da:a7:
68:10:73:c0:1f:3a:b0:be:db:52:19:9d:90:44:e7:6b:81:78:
df:32:64:07:93:de:71:6f:b7:2f:4e:f8:43:87:c4:3b:33:86:
c6:57:05:49:4e:43:9b:35:b4:6a:67:7a:43:39:1b:76:4e:39:
01:fd:58:e9:5d:f8:24:fc:ea:bf:9e:71:c5:8e:32:f9:0c:2b:
b1:c5:f9:7a:7b:00:5b:6d:04:94:37:84:97:f9:28:ed:54:d1:
d4:b0:7a:39:2b:95:16:28:8c:6a:c1:cb:01:24:69:b6:da:ed:
02:bf:ea:af:1f:c5:69:7d:d1:5f:88:ec:39:49:2a:ee:d4:e1:
f5:6e:ea:d5:a8:68:16:39:57:3a:cd:ff:c8:97:4c:f5:96:93:
49:08:dc:54:99:a3:78:ac:76:05:7f:06:a6:5f:7f:7f:f0:fa:
f7:8c:c5:96:5a:f8:4a:34:1b:cd:d7:c5:14:e9:30:30:52:e1:
da:bb:84:f1:60:dc:e3:d1:a2:c6:fa:b4:3f:3a:25:d8:9f:4d:
3e:a8:bf:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:15:19 2025 by rpki-client