Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
File: pZDvI7RWydsg0wdCkysBf8VyTlY.mft (raw, json)
Hash identifier: vABA7X/rkyHiOUfftZ/MYcV4sPnG3r2E3A285VBdSiM=
Subject key identifier: 9F:3C:12:D9:27:3F:5C:92:FB:F7:31:42:90:30:E4:47:B1:09:4D:EF
Authority key identifier: A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
Certificate issuer: /CN=a590ef23b456c9db20d30742932b017fc5724e56
Certificate serial: 0198D4A7EA0A56918FAD574B32FEEFC77A43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
Manifest number: 0DFE
Signing time: Sat 23 Aug 2025 02:00:30 +0000
Manifest this update: Sat 23 Aug 2025 02:00:30 +0000
Manifest next update: Sun 24 Aug 2025 02:00:30 +0000
Files and hashes: 1: pZDvI7RWydsg0wdCkysBf8VyTlY.crl (hash: dCOk/nqfjIwSpLs42LiQJRCTsLL0Z8lncTpGw1xLlyQ=)
2: qkuFYPmd6yVSJeAUkr6iVxoW6uI.roa (hash: 6R5f5Psj0EmX1v5BkourUurygRB3rOnwEBUagdishKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:ea:0a:56:91:8f:ad:57:4b:32:fe:ef:c7:7a:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a590ef23b456c9db20d30742932b017fc5724e56
Validity
Not Before: Aug 23 02:00:30 2025 GMT
Not After : Aug 24 02:00:30 2025 GMT
Subject: CN=9f3c12d9273f5c92fbf731429030e447b1094def
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:26:ed:f4:c8:4e:40:97:74:44:6b:b8:42:93:
92:79:4b:57:65:1c:a8:12:b4:c8:8c:17:e4:7c:ae:
bb:76:c6:d6:6e:ed:1c:57:f7:de:01:89:90:3f:e9:
c8:07:74:44:d3:cd:5a:2c:8f:78:73:0f:c7:28:e9:
02:48:5a:a4:ea:2a:9b:b6:b6:73:58:92:03:d3:ac:
6e:43:bd:82:83:c1:bf:42:ba:5e:8f:ea:dc:1c:52:
2a:fc:5f:13:88:01:7e:21:3a:05:59:8b:7f:dd:13:
08:c3:20:ca:2c:4c:30:4f:a8:ab:2d:8e:28:d5:db:
8a:e4:02:e5:4c:da:12:d4:36:e5:23:90:da:fc:ba:
e0:d8:36:01:0e:2c:75:e3:50:f1:83:f5:21:59:a7:
20:e7:e1:b6:62:c2:19:a5:50:3a:04:71:27:ad:f2:
cf:5f:43:67:67:db:08:aa:99:07:4d:26:c2:80:8c:
b1:2c:19:7d:d1:71:a0:e8:ba:74:9b:25:bd:26:f8:
e6:d8:c0:87:ba:30:31:66:ab:ce:a0:69:19:49:b4:
ac:2d:2b:db:6c:24:d0:47:f7:5b:cf:03:bf:13:c9:
bc:1f:aa:b6:bf:00:ec:59:8d:1b:be:8f:39:cd:32:
8c:ac:bb:cb:9e:a4:9b:de:f7:fe:59:76:26:5c:bb:
f7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:3C:12:D9:27:3F:5C:92:FB:F7:31:42:90:30:E4:47:B1:09:4D:EF
X509v3 Authority Key Identifier:
keyid:A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:16:a8:16:1d:51:86:15:3c:fa:41:0c:1f:92:a7:60:8a:63:
34:0c:4e:22:29:cb:3b:19:fe:d2:c8:e0:61:45:c3:27:b9:27:
ec:fe:02:3b:09:5e:a1:12:84:67:9d:88:84:ee:08:3b:4c:a4:
c3:06:2b:8c:52:62:14:42:ea:3f:61:6f:7b:f2:47:6f:84:68:
4b:61:ee:4a:c3:ab:5b:31:c2:21:89:dc:4c:17:01:ca:fb:f3:
4c:47:0e:5e:38:d8:21:d6:73:c6:ea:e4:05:d7:b3:a9:ad:c4:
a0:ce:0c:34:4d:52:6b:b0:d8:f8:9d:4b:49:a1:87:d7:b8:cc:
cd:0f:38:a2:d3:0c:b8:21:5d:56:3b:a4:24:d4:85:1e:85:71:
d1:c9:eb:e4:91:79:db:ad:45:ac:2e:c0:45:ff:8c:19:cc:63:
7e:ed:06:9b:11:6b:eb:6b:67:1f:54:26:f2:80:a8:0a:ec:12:
1c:4f:8c:97:06:81:26:ac:0c:91:19:7e:62:aa:ab:b7:a6:68:
a2:4b:04:e3:aa:45:09:df:29:5b:cf:94:48:c4:b9:66:ca:a1:
f5:3d:d1:0f:36:7b:a4:38:28:3b:d5:e3:8d:29:a7:24:29:51:
99:15:26:98:66:fa:e6:9a:87:a1:01:58:3d:f2:46:86:40:08:
94:a1:72:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:25 2025 by rpki-client