Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7ac50f-4491-44a5-90bf-a7ef1dcfd5f1/1/zfQLRgtIuPNm_sXKObMcOAxkWjI.mft
File: zfQLRgtIuPNm_sXKObMcOAxkWjI.mft (raw, json)
Hash identifier: aaG+JypYo8grp2h5vNTahLrFMll0vHxESVm7quPeG5E=
Subject key identifier: FC:9B:48:EE:BD:A6:4A:B1:9E:C7:DF:6D:67:6B:E6:D9:D2:56:8D:B8
Authority key identifier: CD:F4:0B:46:0B:48:B8:F3:66:FE:C5:CA:39:B3:1C:38:0C:64:5A:32
Certificate issuer: /CN=cdf40b460b48b8f366fec5ca39b31c380c645a32
Certificate serial: 0198D583E77733BC3BAA682CAE9834549E49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zfQLRgtIuPNm_sXKObMcOAxkWjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7ac50f-4491-44a5-90bf-a7ef1dcfd5f1/1/zfQLRgtIuPNm_sXKObMcOAxkWjI.mft
Manifest number: 0110
Signing time: Sat 23 Aug 2025 06:00:48 +0000
Manifest this update: Sat 23 Aug 2025 06:00:48 +0000
Manifest next update: Sun 24 Aug 2025 06:00:48 +0000
Files and hashes: 1: zfQLRgtIuPNm_sXKObMcOAxkWjI.crl (hash: EcGFL/I9O4YCrbsylMDFx0Ckmz5Mlli3/UNWAD1abNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/7ac50f-4491-44a5-90bf-a7ef1dcfd5f1/1/zfQLRgtIuPNm_sXKObMcOAxkWjI.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/7ac50f-4491-44a5-90bf-a7ef1dcfd5f1/1/zfQLRgtIuPNm_sXKObMcOAxkWjI.mft
rsync://rpki.ripe.net/repository/DEFAULT/zfQLRgtIuPNm_sXKObMcOAxkWjI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:e7:77:33:bc:3b:aa:68:2c:ae:98:34:54:9e:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdf40b460b48b8f366fec5ca39b31c380c645a32
Validity
Not Before: Aug 23 06:00:48 2025 GMT
Not After : Aug 24 06:00:48 2025 GMT
Subject: CN=fc9b48eebda64ab19ec7df6d676be6d9d2568db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d0:0b:a8:4f:3e:6a:9a:49:58:66:a4:74:98:
ed:9f:fc:19:37:ce:d7:68:6c:ca:a5:16:0b:5e:c7:
b8:58:eb:c5:b3:95:01:d0:31:11:39:b8:c9:67:d9:
fe:e7:7e:37:32:4b:ad:e0:35:5b:52:88:04:cc:c8:
fa:cc:50:4e:7f:56:c2:97:ab:7f:31:fb:b0:de:d4:
0a:80:3b:7c:df:d4:79:ef:3a:4f:20:5c:84:43:89:
67:ca:4a:08:2e:98:53:9d:df:13:27:a7:d2:2e:24:
d4:15:61:b2:aa:a1:fb:ee:a5:6c:40:c6:91:22:26:
2e:45:3f:38:29:ea:f1:bd:18:44:b2:94:bd:91:ef:
0a:d9:ce:90:b3:6c:d2:72:9a:ed:1d:50:14:7b:e1:
be:19:9d:ee:8b:b6:c5:9d:6a:f9:90:2c:1f:15:e3:
be:2f:61:9b:92:c3:29:ab:89:05:0e:3e:14:68:8f:
b9:87:59:61:19:42:f1:54:e7:c0:6a:6b:e1:b1:6b:
7c:90:7b:81:e3:7b:dd:b4:70:b3:b4:0a:59:90:1d:
2d:b8:1a:5c:d3:09:a7:6e:eb:17:8c:f9:5a:8c:4c:
67:1e:9c:a6:28:ce:41:ff:02:1f:74:7e:21:36:04:
7d:2f:e1:eb:83:11:99:56:cc:f2:54:1d:a0:5e:d2:
65:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:9B:48:EE:BD:A6:4A:B1:9E:C7:DF:6D:67:6B:E6:D9:D2:56:8D:B8
X509v3 Authority Key Identifier:
keyid:CD:F4:0B:46:0B:48:B8:F3:66:FE:C5:CA:39:B3:1C:38:0C:64:5A:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zfQLRgtIuPNm_sXKObMcOAxkWjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7ac50f-4491-44a5-90bf-a7ef1dcfd5f1/1/zfQLRgtIuPNm_sXKObMcOAxkWjI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7ac50f-4491-44a5-90bf-a7ef1dcfd5f1/1/zfQLRgtIuPNm_sXKObMcOAxkWjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:cf:e1:29:94:d6:77:74:0b:53:c1:36:08:56:3b:b1:db:1c:
bc:f4:cf:af:58:b2:e5:4d:12:59:7f:d9:d1:e6:20:40:ad:13:
57:4f:a5:38:f7:c3:04:f9:46:6b:7e:1f:e7:f4:18:a5:15:0c:
1b:dc:dc:44:b9:0e:3d:a8:9c:26:b0:70:c9:92:87:c6:11:db:
11:7d:b2:75:ee:13:bd:66:d4:e3:e5:64:df:0c:9b:59:03:8d:
af:d6:bd:46:23:33:af:f6:69:12:0f:ef:b1:bb:ef:39:4d:18:
3e:db:4a:61:2e:25:e0:75:db:24:19:62:b0:42:7f:08:e3:68:
c5:65:ce:09:f8:3e:70:4d:c1:c4:8f:54:3d:10:fa:1c:43:97:
d3:0b:7d:91:5d:3e:ca:ec:77:8d:d2:4c:89:f6:1e:49:fb:29:
15:5b:2a:1b:96:01:20:21:bb:69:6c:55:00:6b:8e:5d:74:0d:
a0:ae:47:5e:0d:6f:c9:5e:08:14:fc:1b:aa:c0:b0:61:a1:8f:
c4:a0:08:51:ff:b9:97:4f:95:ea:79:4e:4f:43:ad:92:de:98:
b1:7c:46:3a:81:12:3b:14:5c:20:82:0b:30:4d:fc:96:a2:b8:
1c:0d:80:77:d6:f7:eb:c7:a8:a4:be:3e:09:48:0e:92:ee:62:
bc:6a:75:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:34:09 2025 by rpki-client