Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
File: zRQ2kCMKRApot6iqmCefL2Xf7ig.mft (raw, json)
Hash identifier: hClOWLb7lAGS3N5VVcdzYCY2QfVleiVsUf04UhR/kJE=
Subject key identifier: 2A:F1:8C:2D:E4:60:0A:2B:14:B3:46:7C:E6:51:E8:14:68:73:1E:B5
Authority key identifier: CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
Certificate issuer: /CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Certificate serial: 0198D65FF52F09181AB313C3D049DCAD7E3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
Manifest number: 134C
Signing time: Sat 23 Aug 2025 10:01:09 +0000
Manifest this update: Sat 23 Aug 2025 10:01:09 +0000
Manifest next update: Sun 24 Aug 2025 10:01:09 +0000
Files and hashes: 1: vHQRV0jRUXExLLAYBdY2ODpzWoo.roa (hash: 7UhAMCr3OjHllJdnfdmjdJInrKVauXU3M4e5nn0fWuA=)
2: zRQ2kCMKRApot6iqmCefL2Xf7ig.crl (hash: H3k0552MzjEchD4dBqUYGrYx9mSGIvc2ji9JRjCfuhg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:f5:2f:09:18:1a:b3:13:c3:d0:49:dc:ad:7e:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Validity
Not Before: Aug 23 10:01:09 2025 GMT
Not After : Aug 24 10:01:09 2025 GMT
Subject: CN=2af18c2de4600a2b14b3467ce651e81468731eb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6f:dd:41:1a:3e:2c:1c:6c:cb:dc:1f:6c:d2:
0f:65:26:ac:c2:c2:6c:36:fc:66:2b:cc:51:62:50:
a4:bc:0c:0b:17:90:04:58:fe:dd:9d:de:e7:27:d9:
75:63:0b:dd:b5:30:a0:d0:10:69:d7:a9:6d:b1:a3:
50:80:72:de:b9:e0:a2:8f:a5:af:b2:d8:4c:7d:e0:
a7:61:3c:06:49:ed:10:39:a4:20:cc:be:e7:4c:92:
fc:b9:eb:b4:8d:6c:8e:b6:3a:1b:98:a9:cc:b1:ae:
01:fe:08:a9:c3:1d:b8:d8:00:d5:af:62:51:af:01:
ab:a2:2b:3b:2e:d2:18:5b:8a:b7:f4:0c:b9:d7:e7:
77:11:4a:22:07:20:ff:2a:d3:b0:7a:99:59:fa:52:
e4:9e:90:fc:b6:6b:ce:d7:7f:5b:e5:fd:40:54:ce:
bd:68:66:2f:91:66:74:0a:e5:82:17:5a:ba:a8:7e:
6d:d7:b0:f6:85:36:85:27:8f:04:91:ee:2e:5e:82:
db:a8:f1:59:02:5f:58:95:1f:fc:3e:d5:ab:d2:8f:
34:8a:aa:32:4a:a5:dd:35:27:72:5d:43:b5:25:ae:
6f:e4:31:b1:3c:f5:7d:81:c7:49:98:ed:f3:12:de:
2b:68:40:69:4d:ba:7c:8d:7c:47:2e:7b:6a:aa:e6:
98:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F1:8C:2D:E4:60:0A:2B:14:B3:46:7C:E6:51:E8:14:68:73:1E:B5
X509v3 Authority Key Identifier:
keyid:CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:6e:e5:b1:20:5c:f4:00:35:3c:ed:c4:04:fb:be:a7:17:fd:
54:e5:c7:b6:bd:37:8d:03:47:f3:2d:c1:41:38:26:1b:fa:3c:
ce:fc:eb:24:7f:f1:92:85:ec:d3:2f:b6:ba:89:68:f8:98:f6:
fa:2b:7d:b3:37:d3:3a:36:65:fb:32:d3:e2:69:d4:15:2d:50:
4d:07:ee:65:ad:9f:7d:29:62:78:d6:e1:19:bf:23:61:8e:a9:
e1:f0:19:1a:8f:43:93:ff:8c:21:d1:c5:c9:02:b3:58:54:52:
17:5a:9a:ce:e0:54:74:a3:e0:39:13:1b:01:a4:bd:07:8b:58:
b9:b4:61:82:07:a0:fd:23:aa:de:d1:b7:89:32:8f:1b:34:f4:
05:5c:11:43:df:2b:a7:0c:a2:4b:dc:8f:e1:08:23:aa:d6:80:
4e:c7:c7:57:27:60:6f:0b:31:27:60:9f:c0:62:17:fa:83:1b:
24:66:3c:88:5b:3c:39:0c:37:2a:6d:17:6d:19:4a:3b:44:b1:
52:e6:78:5c:1e:4c:2e:d2:26:9f:d2:75:5c:a5:73:c3:c1:6f:
61:28:d9:d1:4b:b4:53:61:fb:cd:ca:fb:90:d4:b6:8d:4e:c2:
74:4a:bb:eb:77:c8:ee:7a:6a:5d:e4:2e:88:7e:c9:6a:6a:6d:
18:21:97:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:27:34 2025 by rpki-client