Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
File: z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft (raw, json)
Hash identifier: xObkWytVCDGE+kPf3nn3qgjGcKfffWOpsx6djFsKvrw=
Subject key identifier: 4F:29:54:8A:66:94:28:94:A5:B3:52:3B:C8:B2:9E:04:77:D0:E0:DD
Authority key identifier: CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
Certificate issuer: /CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Certificate serial: 0197B96ACF162EA601339D6C8AD0B40EB5B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
Manifest number: 15B7
Signing time: Sun 29 Jun 2025 02:01:14 +0000
Manifest this update: Sun 29 Jun 2025 02:01:14 +0000
Manifest next update: Mon 30 Jun 2025 02:01:14 +0000
Files and hashes: 1: hPBXvKQdaqlVU4nQ-2Te7vaa8Bo.roa (hash: c9xr2QPdOJHBS76dYaN+BTyMMmlA60SbcteFKaCmJMA=)
2: z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl (hash: O5O2kq/czhkae3kqthhamhjfa+UNXtj7Hfmn8+n+FbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:6a:cf:16:2e:a6:01:33:9d:6c:8a:d0:b4:0e:b5:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Validity
Not Before: Jun 29 02:01:14 2025 GMT
Not After : Jun 30 02:01:14 2025 GMT
Subject: CN=4f29548a66942894a5b3523bc8b29e0477d0e0dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:94:06:57:b3:ed:25:a5:48:20:4c:39:d7:69:
4d:f9:d5:2c:10:0f:b9:fa:07:33:24:d6:4f:ae:71:
5a:80:c8:35:60:4c:5f:ca:35:1e:20:fc:54:e1:8d:
19:be:a9:82:54:dc:84:02:30:59:36:35:1a:6b:29:
1e:80:b1:30:09:40:15:1f:c1:30:4d:79:08:c3:ca:
b5:17:ba:c1:15:8b:38:0e:e6:3b:99:10:7e:45:a5:
51:f3:c7:01:0f:4c:d2:1d:4c:a9:f8:81:ac:4d:a2:
6c:54:98:e2:d8:71:00:4a:a8:5b:7f:b1:0e:8c:c9:
4b:0e:69:6e:98:81:d7:46:de:01:c7:f0:ce:09:98:
eb:30:a0:68:03:bc:70:44:7b:c1:86:69:1b:d1:14:
45:53:a2:79:a3:e2:6a:1b:88:a9:6b:75:57:5d:3e:
47:6f:d0:64:8d:f5:e0:1d:3d:e8:26:13:65:1f:e2:
c0:7e:6e:49:27:90:5f:15:9c:5d:79:ac:6e:f9:00:
e2:b3:a0:1b:a1:72:03:4f:da:94:2d:39:08:05:0d:
51:28:dd:58:c6:fc:49:14:03:7e:a7:c2:30:82:6c:
d5:52:eb:1f:0e:fd:97:ba:be:3d:62:85:fb:13:33:
15:ce:91:8e:c9:fd:f8:dc:06:06:f9:22:cb:e4:1c:
9a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:29:54:8A:66:94:28:94:A5:B3:52:3B:C8:B2:9E:04:77:D0:E0:DD
X509v3 Authority Key Identifier:
keyid:CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:9b:b5:ec:9a:86:bd:92:25:ca:c0:da:ff:39:91:06:83:cb:
c4:a5:c5:a9:e7:a9:fe:f6:9c:ab:51:bc:dd:04:8b:82:c8:21:
5f:15:3a:13:fb:fe:aa:e3:3e:54:04:54:01:bb:12:a5:13:ac:
43:0a:85:18:8b:4f:15:e6:0b:23:47:c3:ef:d2:1c:a9:cc:1e:
54:45:be:1b:7d:18:94:1d:26:81:0d:65:d9:5a:4b:34:04:c5:
15:82:5d:9c:5d:88:50:3c:49:0a:56:b2:c4:ed:21:ec:96:39:
c9:06:e0:de:a5:13:fd:51:8d:42:ae:2d:11:15:b4:fe:2a:12:
b7:d7:e7:7d:13:ce:ae:dd:df:26:e4:28:f0:3f:94:58:34:06:
ca:33:f0:dc:fa:0c:d6:af:7a:08:d9:8c:cc:31:b1:74:bb:e3:
42:4e:a3:71:d1:af:15:24:68:5a:fa:de:52:8c:7b:4b:ac:be:
30:5f:37:28:f8:95:69:e7:c3:b0:37:d4:53:d5:c0:6f:75:59:
51:e8:16:df:f5:b5:92:62:7a:b5:98:1d:72:7f:98:3c:bd:34:
66:32:84:ae:12:2e:d0:d5:0e:fc:71:a0:27:7d:42:9b:55:71:
55:97:da:be:70:37:52:de:55:76:8b:d5:b3:4f:6c:b9:ff:99:
eb:8e:ba:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:08:35 2025 by rpki-client