Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
File: z2hDzhUimoAj2X-iejflkniyv9c.mft (raw, json)
Hash identifier: fZg/9M8zoSkC/4SZQ0h937Rv8969M86xMQpM8+Zh0ZA=
Subject key identifier: DE:27:1E:AC:1B:75:F7:3B:C1:09:71:58:9B:4E:67:7B:0B:D9:1D:9A
Authority key identifier: CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
Certificate issuer: /CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Certificate serial: 0198D5F15A638DA14E50402FA957B15B8C61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
Manifest number: 0C37
Signing time: Sat 23 Aug 2025 08:00:20 +0000
Manifest this update: Sat 23 Aug 2025 08:00:20 +0000
Manifest next update: Sun 24 Aug 2025 08:00:20 +0000
Files and hashes: 1: pZ2-rl1wvNOlZXWq6r9tiMcpCLE.roa (hash: UTgRZg+3/3Y1WSaSgU/Ax1MIkqu5a18zaZd2IsaahgY=)
2: z2hDzhUimoAj2X-iejflkniyv9c.crl (hash: Eoogn35hsMsbRslJvgFEi+4DUKpKA8OchJ0z4JrIYcQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:5a:63:8d:a1:4e:50:40:2f:a9:57:b1:5b:8c:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Validity
Not Before: Aug 23 08:00:20 2025 GMT
Not After : Aug 24 08:00:20 2025 GMT
Subject: CN=de271eac1b75f73bc10971589b4e677b0bd91d9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8a:b7:e8:94:c0:92:09:97:a6:85:19:69:37:
3c:04:2a:06:d6:1a:f5:44:bb:5b:3c:9b:e6:b0:f1:
50:8c:be:97:78:39:92:24:10:57:23:62:d4:bf:ec:
e6:56:2d:10:2a:97:3a:3b:b8:e7:7a:4b:6f:2b:34:
d5:54:50:da:74:27:ca:13:03:50:7b:fa:4f:25:56:
9d:c9:a0:46:f0:d5:ed:f8:b4:cb:11:80:52:c4:70:
ef:c9:ed:11:9d:d1:56:05:a3:70:20:19:a6:d7:28:
e3:1c:40:3f:d2:08:0e:75:fe:c0:1a:65:dd:08:52:
4d:79:c1:0a:a9:36:3f:71:20:c0:23:d5:6b:2d:45:
35:94:c2:a1:6a:17:c7:48:16:dd:64:e6:bc:93:ea:
41:63:a4:42:54:04:58:65:25:6c:64:98:c7:f4:ea:
d2:83:a2:a9:ba:69:4f:89:5a:9d:ef:2a:c8:cb:b1:
bb:8a:75:2c:70:08:91:e1:a7:b9:7f:e9:94:53:4f:
bf:65:20:af:04:53:8c:ee:4f:49:8d:58:e7:4a:b1:
75:68:68:ef:9c:eb:bf:0e:fc:a0:51:b3:ed:f7:a3:
7b:c6:ae:45:1a:15:f2:f3:d1:66:86:af:eb:2d:e4:
3f:2e:ca:d0:60:a5:46:46:f6:14:51:b3:c6:0b:9f:
15:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:27:1E:AC:1B:75:F7:3B:C1:09:71:58:9B:4E:67:7B:0B:D9:1D:9A
X509v3 Authority Key Identifier:
keyid:CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:6a:bc:ab:c3:58:06:87:2e:15:d2:38:29:b7:b9:39:af:ef:
f6:12:c0:b5:2b:fb:0b:9d:a3:51:85:f3:95:2c:f5:6b:04:de:
df:4d:67:4d:7c:38:6d:69:79:92:66:75:cb:bd:5a:33:23:08:
82:66:c6:be:c5:eb:26:32:74:63:da:f6:10:d9:41:9a:74:31:
f7:d5:71:66:f7:69:b4:46:27:d3:b9:24:ea:f9:38:63:d1:f4:
0a:2e:03:a8:45:a9:27:5c:fb:fd:16:de:75:56:66:4e:5f:b8:
b5:3c:d4:2d:10:d3:ba:f2:e0:d0:59:c4:ac:54:fa:10:db:ee:
4f:02:05:5b:63:fd:dc:dc:1b:0b:d2:85:fa:c9:49:2a:b8:6e:
a0:f4:75:6f:8c:2d:d9:a0:16:58:23:ee:ab:18:1b:ef:91:9b:
aa:ff:7d:bc:d9:77:96:0f:02:88:93:c6:5d:c2:ec:7e:8b:40:
74:d8:a6:19:22:ad:e5:a3:24:50:8b:01:29:c1:ac:fb:0a:fc:
57:b4:c1:0c:cc:5a:fa:22:69:ef:35:9a:ee:32:2a:ed:69:6b:
95:d0:71:e5:c0:12:e9:51:c9:4b:35:f7:30:02:9f:97:4c:75:
b8:64:0f:aa:d3:e5:eb:d6:ce:bc:92:54:4e:cc:04:f1:f2:52:
15:09:ef:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:27:18 2025 by rpki-client