Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json)
Hash identifier: mcyKJnE6grUtdBec7FbFJPt5wqHkZ1OvCuK+mnPTSzU=
Subject key identifier: 74:26:83:04:85:74:E8:FF:E9:29:E6:64:B5:AE:A7:99:8E:FB:5F:CC
Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189
Certificate serial: 0198D65F020B442681B8ECF39E6A9444A6E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
Manifest number: 15DB
Signing time: Sat 23 Aug 2025 10:00:07 +0000
Manifest this update: Sat 23 Aug 2025 10:00:07 +0000
Manifest next update: Sun 24 Aug 2025 10:00:07 +0000
Files and hashes: 1: PF8Dfwpieuc3szZWNlM6zxbOCaw.roa (hash: eEI5JJg+vshmiZesKoh8QcSvz/GrsPF5AtTzxYWQZk4=)
2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: 9KxyqBSDSyi1S4JzYPdgcoWpNrkJP8FAlbobUhAS6JE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:02:0b:44:26:81:b8:ec:f3:9e:6a:94:44:a6:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189
Validity
Not Before: Aug 23 10:00:07 2025 GMT
Not After : Aug 24 10:00:07 2025 GMT
Subject: CN=742683048574e8ffe929e664b5aea7998efb5fcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9e:a5:23:4b:ee:c1:2b:30:71:3a:a9:fe:b0:
36:2f:38:86:43:a0:99:d5:9f:4e:da:b3:cb:68:1c:
de:af:b0:e3:6a:8d:88:15:3d:ad:b8:15:e2:62:da:
2a:85:5d:c6:91:3b:f4:aa:07:18:d8:5b:b9:6a:cd:
de:bb:6e:74:7d:b0:df:97:33:ef:ee:64:4d:6d:0d:
1a:29:c0:40:3d:88:4b:13:e5:c0:9a:49:8d:b0:ff:
fa:94:38:99:28:7c:84:69:a0:56:38:d6:ca:6f:09:
8f:42:34:00:cd:4b:68:89:59:b6:f2:f7:11:71:43:
72:89:48:e3:aa:96:ec:f8:12:e7:b6:5b:3b:bb:4a:
c3:d9:0d:d3:80:95:fb:04:d4:38:be:4b:38:41:a2:
83:b9:aa:80:4f:90:7c:3e:e5:4c:d3:2e:3a:2a:e3:
99:f1:7f:cc:d3:fd:84:be:58:5c:3f:b1:97:4d:c9:
f1:6f:dd:f7:2b:89:2f:f3:cd:d1:62:3a:05:82:e3:
16:0e:15:9b:63:d4:11:80:09:16:7b:30:82:7e:f6:
ac:72:a6:32:4d:2e:d0:44:cb:ba:4b:20:fb:0f:81:
1a:f7:0a:75:62:31:40:6c:29:51:4b:e0:17:69:f9:
c9:8d:80:f6:d3:6a:d1:13:03:c7:24:d4:d5:aa:86:
fd:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:26:83:04:85:74:E8:FF:E9:29:E6:64:B5:AE:A7:99:8E:FB:5F:CC
X509v3 Authority Key Identifier:
keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:98:0b:3f:5f:60:87:36:34:75:0c:42:1d:3b:58:de:2e:2a:
d5:dd:d0:1f:0f:47:69:0d:d0:20:0c:f4:bf:fc:34:84:60:24:
80:a9:7b:ec:cb:b1:1d:e9:56:29:28:8a:8d:c6:ff:33:9e:1b:
d1:43:30:94:26:43:ad:e1:2f:39:87:af:73:f9:21:9a:ca:ce:
f3:ee:ba:45:8f:0c:b7:6b:76:59:69:10:df:44:f1:4f:9f:8a:
b7:2e:34:60:29:d3:53:8b:98:2e:64:be:85:45:ff:05:e6:76:
c9:a7:52:cb:72:6b:d0:39:da:9c:80:da:06:7f:ff:1e:0a:a8:
58:e2:5d:96:1d:88:d2:ce:6e:36:e1:56:8b:89:e5:f7:ac:28:
6d:a7:a9:13:7a:70:85:e3:e5:1a:73:03:10:59:08:5f:f7:a5:
5e:6e:ac:cb:5d:d0:1d:d9:fa:12:2b:02:a6:8f:6f:43:83:d8:
2f:58:a7:2e:b8:85:32:a5:84:4f:12:89:6d:1b:28:13:21:36:
63:59:9b:7f:89:b5:b0:df:07:6c:c1:bb:2f:70:78:65:95:4c:
e3:a5:26:aa:fd:d4:72:2c:ca:58:4c:47:c8:1a:51:d0:82:4d:
0d:c9:c4:90:0d:7c:c3:22:c1:5e:e2:2e:df:ad:13:0f:5f:3f:
d4:1d:bc:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:13:50 2025 by rpki-client