Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft
File: rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft (raw, json)
Hash identifier: gGLaHmrNcamuUpLCjykkRmhJ07HJ3ZZWO1cTeBW7AXU=
Subject key identifier: 2F:87:7F:A8:6A:CB:84:D9:56:8D:65:84:1C:BF:8F:E6:53:51:F9:E8
Authority key identifier: AD:94:79:AF:E3:A9:A1:8E:1C:37:4F:CA:02:2D:1F:F2:A2:55:B1:AF
Certificate issuer: /CN=ad9479afe3a9a18e1c374fca022d1ff2a255b1af
Certificate serial: 0198D5F16D4D14049B267115B72CA5FD135F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZR5r-OpoY4cN0_KAi0f8qJVsa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft
Manifest number: FF
Signing time: Sat 23 Aug 2025 08:00:25 +0000
Manifest this update: Sat 23 Aug 2025 08:00:25 +0000
Manifest next update: Sun 24 Aug 2025 08:00:25 +0000
Files and hashes: 1: rZR5r-OpoY4cN0_KAi0f8qJVsa8.crl (hash: chgO8oPgSeBl8YL8LRIpHMPUWsktZe7/e4LOXRalMco=)
2: y_jzZWxrMh2AT3qjdH5sDFcbnso.roa (hash: UBOvdV+QBpMo/gPKyJWNtGffNnN28PAA/OvI521Vudc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rZR5r-OpoY4cN0_KAi0f8qJVsa8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:6d:4d:14:04:9b:26:71:15:b7:2c:a5:fd:13:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9479afe3a9a18e1c374fca022d1ff2a255b1af
Validity
Not Before: Aug 23 08:00:25 2025 GMT
Not After : Aug 24 08:00:25 2025 GMT
Subject: CN=2f877fa86acb84d9568d65841cbf8fe65351f9e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:09:68:40:33:0b:34:e4:5d:a2:22:b7:2f:de:
81:79:88:89:07:8e:cc:53:74:42:31:d0:c0:c3:51:
f5:7a:17:01:bd:3b:b5:db:13:fa:ee:81:61:99:02:
b0:8f:cc:40:c0:70:83:26:fb:5b:79:2d:13:ab:a0:
b6:da:b5:25:5b:15:c2:8c:1e:82:36:9a:5e:66:46:
f8:fe:1f:d1:38:f8:14:67:d0:63:b0:d4:5f:64:77:
03:7e:c0:cb:4c:e5:dd:0b:02:2c:d5:ed:25:95:00:
0e:a3:09:a7:b8:4f:71:ea:79:ff:9b:6b:eb:a3:b6:
3c:2d:21:d2:6e:8f:3c:35:66:f9:de:06:b1:81:cc:
be:99:ae:dd:23:25:7c:dd:3d:8c:eb:8c:74:b7:ed:
ef:e2:24:6a:68:ef:c3:9c:59:58:f1:09:75:d0:98:
9d:43:d6:95:a5:85:15:51:54:64:28:0b:5b:2a:7f:
27:3c:ab:18:4e:ce:7e:0d:06:67:2e:c9:8e:e0:3b:
b1:0e:94:8d:99:6d:b4:4d:4b:b9:e5:7e:48:77:d1:
31:00:50:57:b3:33:18:ea:8f:28:69:a0:c6:36:1f:
1a:4a:e1:bf:59:46:6a:8f:3f:91:28:6d:27:b4:ec:
cc:31:ea:08:82:c1:24:c0:9c:43:4f:d7:d6:2d:1d:
97:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:87:7F:A8:6A:CB:84:D9:56:8D:65:84:1C:BF:8F:E6:53:51:F9:E8
X509v3 Authority Key Identifier:
keyid:AD:94:79:AF:E3:A9:A1:8E:1C:37:4F:CA:02:2D:1F:F2:A2:55:B1:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZR5r-OpoY4cN0_KAi0f8qJVsa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:d9:78:93:66:2c:f8:60:06:74:20:72:59:db:ac:55:92:99:
be:b4:7e:b4:3b:a7:f8:77:26:20:84:06:a8:d2:06:25:4b:66:
84:4b:b0:2e:d6:1c:d1:f6:ea:b6:14:82:9a:18:ca:59:52:a9:
60:81:60:a4:f0:f1:c5:8a:47:f1:ea:5b:be:7f:87:02:d9:4d:
5d:5f:2f:30:b6:0a:53:91:bd:b5:14:34:27:34:55:ed:40:bf:
3f:02:5b:cc:07:c4:75:36:4c:03:e7:aa:79:60:9b:e5:3d:fa:
7a:8e:e0:8c:69:98:f4:86:8b:18:3a:fd:98:51:b7:ac:ef:39:
fc:d7:68:6e:7a:4f:d1:89:df:75:f2:27:67:0a:51:24:f6:a5:
df:87:bc:f7:a4:29:28:a0:23:1c:62:ec:0d:32:ff:4b:26:3f:
25:ea:a7:fa:df:f6:27:82:22:a9:8f:a1:73:8d:47:d2:79:e0:
7a:d0:48:9a:44:24:5c:42:0e:b9:9c:4a:2a:74:ea:38:7f:0b:
b6:41:18:f6:02:0d:82:1c:6e:e5:d1:24:d8:3d:44:f9:ee:ca:
c1:fc:45:9f:fe:6d:2f:93:b6:d8:39:79:98:75:47:cb:7b:d5:
aa:55:37:2e:7c:17:72:9c:bd:e2:01:9f:a7:be:d5:27:51:e2:
66:e5:ac:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:06:06 2025 by rpki-client