Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
File: zRQ2kCMKRApot6iqmCefL2Xf7ig.mft (raw, json)
Hash identifier: wWdrrnbEsEMNuVJJXb8zcTSldl/Epsw8q9ElNHUib0Q=
Subject key identifier: 4F:CF:4F:E1:F0:A8:D4:C0:D9:E4:C8:D2:0B:B6:CE:BE:4A:4E:D5:8A
Authority key identifier: CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
Certificate issuer: /CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Certificate serial: 0197B6A16B588630F15DE4A36E0D762C4628
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
Manifest number: 12B7
Signing time: Sat 28 Jun 2025 13:02:01 +0000
Manifest this update: Sat 28 Jun 2025 13:02:01 +0000
Manifest next update: Sun 29 Jun 2025 13:02:01 +0000
Files and hashes: 1: vHQRV0jRUXExLLAYBdY2ODpzWoo.roa (hash: 7UhAMCr3OjHllJdnfdmjdJInrKVauXU3M4e5nn0fWuA=)
2: zRQ2kCMKRApot6iqmCefL2Xf7ig.crl (hash: bOFhCnmscpXyQrqCMTFmQn2GoJUPSyysxupIwOW3MFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:6b:58:86:30:f1:5d:e4:a3:6e:0d:76:2c:46:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Validity
Not Before: Jun 28 13:02:01 2025 GMT
Not After : Jun 29 13:02:01 2025 GMT
Subject: CN=4fcf4fe1f0a8d4c0d9e4c8d20bb6cebe4a4ed58a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:66:d0:b3:6f:f4:92:24:c5:55:b0:d5:73:79:
0b:1a:3a:b0:70:19:cf:f1:05:5f:8e:21:27:10:e3:
e5:65:d9:a4:29:82:14:39:a6:38:3e:05:48:f4:b7:
9a:3a:98:a2:d8:19:96:e1:b6:b6:5a:b4:8a:d9:41:
26:45:ac:5f:87:d4:2c:88:b1:16:e2:51:4c:cd:48:
bc:7b:8a:a0:cb:bd:2e:d8:8e:88:70:06:1a:b4:6e:
fc:02:45:07:71:47:ef:1e:18:5f:e8:ed:99:5d:fa:
55:08:f7:c5:28:cd:cc:50:dc:cf:d4:60:72:a7:2d:
c6:0f:24:e6:ca:5d:09:36:81:6e:fa:93:2d:9f:00:
f7:f5:67:a1:d6:89:f7:1f:19:d3:6d:31:cc:8d:92:
74:95:df:c9:4b:94:ed:4b:ae:8c:4f:cf:45:09:11:
28:29:d7:09:d6:e3:b0:12:5b:de:01:c3:bd:b4:fc:
58:98:d9:2f:e4:d7:93:6d:af:08:1e:97:e2:97:f2:
a5:62:5c:95:de:db:4d:0e:e9:ac:fc:66:fd:a0:3c:
cc:ee:15:97:55:21:d8:59:0b:10:3d:7e:d1:d8:48:
23:5a:d7:e7:9e:eb:ea:c8:ca:f5:f7:9f:bc:9a:6a:
78:87:74:24:d6:c3:f8:6f:66:55:71:7d:b3:0f:70:
37:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:CF:4F:E1:F0:A8:D4:C0:D9:E4:C8:D2:0B:B6:CE:BE:4A:4E:D5:8A
X509v3 Authority Key Identifier:
keyid:CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:a3:f5:59:2c:e6:5a:1b:7f:7c:79:cd:c8:d8:de:d1:9c:78:
45:f5:ef:67:99:aa:6d:72:bf:fa:50:49:f1:b2:fe:9f:12:2f:
5e:d3:9f:e7:91:67:85:11:37:66:fa:ae:81:bb:ea:79:2e:b8:
dd:f3:db:10:c1:b4:c4:40:75:da:00:4e:85:6b:92:b1:56:cb:
7e:68:29:cc:e9:65:25:6a:72:ba:f9:7a:7a:a0:f1:e6:18:9d:
0d:0d:8d:52:0c:22:7c:07:4f:35:99:42:47:7e:14:07:36:37:
eb:f6:7f:ea:03:d5:5c:3c:98:af:65:6d:09:2a:54:07:93:e3:
c7:ed:71:f2:e1:6c:4c:51:de:07:3d:94:67:cf:a5:3a:e5:9b:
fa:5b:d2:c0:cc:d3:d5:7f:ee:71:30:c4:51:1b:49:14:5e:8b:
44:71:09:ba:35:38:1e:87:4b:5e:56:ad:51:38:af:02:f5:64:
25:b0:56:54:b0:bf:d8:eb:c7:be:1c:27:04:53:99:69:ff:a1:
f8:b6:0d:89:3d:ba:f3:e4:6c:84:8f:08:f8:a1:29:17:b1:a4:
7f:37:81:b0:55:ee:61:4b:27:f9:a2:46:3f:3e:b1:ac:f2:9b:
99:e2:56:71:c9:b7:b5:11:44:3e:ab:e4:ee:80:0e:2b:fa:dc:
3b:50:07:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:29:43 2025 by rpki-client