Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
File: z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft (raw, json)
Hash identifier: 8orHM7L+iX665vfFmuZr1ZkVKjx6yEHUEkqth/2cu7I=
Subject key identifier: C9:F0:89:2A:CD:84:D5:AE:2C:BF:69:C1:69:61:F8:D0:55:05:FE:2A
Authority key identifier: CF:C7:00:8C:6F:91:72:2D:C3:B1:27:52:75:58:EB:DA:BC:68:0C:E6
Certificate issuer: /CN=cfc7008c6f91722dc3b127527558ebdabc680ce6
Certificate serial: 0197B6A112BCA54DB85AC2C41560B163DE4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
Manifest number: 0F15
Signing time: Sat 28 Jun 2025 13:01:38 +0000
Manifest this update: Sat 28 Jun 2025 13:01:38 +0000
Manifest next update: Sun 29 Jun 2025 13:01:38 +0000
Files and hashes: 1: z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl (hash: rfRytZpXhe4Z9/y9VdyhpWFA6/wIJxLBdSGxw5zJLpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:12:bc:a5:4d:b8:5a:c2:c4:15:60:b1:63:de:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfc7008c6f91722dc3b127527558ebdabc680ce6
Validity
Not Before: Jun 28 13:01:38 2025 GMT
Not After : Jun 29 13:01:38 2025 GMT
Subject: CN=c9f0892acd84d5ae2cbf69c16961f8d05505fe2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ae:35:88:fa:b9:d9:99:1a:37:bb:d9:77:f7:
d1:f7:9a:00:b1:90:f0:ac:1c:24:15:6d:13:4b:76:
00:cb:1e:e2:aa:5b:17:0e:cb:76:86:93:e2:82:81:
db:1f:25:ba:b2:6b:1b:72:94:16:fa:32:f8:d3:82:
d7:2d:9b:2f:ba:ba:c5:6b:74:fb:39:42:d1:3c:fd:
ba:66:79:33:e0:c5:9d:1f:0b:0d:00:a4:2d:33:31:
19:68:a2:42:e7:34:c4:bd:f3:a3:13:64:24:d4:f8:
fa:ec:0d:60:39:09:a3:c2:82:46:8b:e5:2d:ba:01:
72:47:2e:16:6f:26:bd:0c:49:00:9c:01:c8:6e:2e:
55:28:8c:8e:66:5c:45:7f:26:8a:cc:3a:9f:bb:c6:
76:cb:1c:df:6e:53:4e:e0:cf:07:d3:ae:66:06:92:
9c:70:66:25:93:f2:ae:f7:b5:68:de:02:e5:3f:d7:
ce:6d:e4:5f:fa:ba:e2:11:9b:40:6d:3e:da:d0:5a:
f6:75:09:12:9e:9e:0a:bd:f8:2f:ed:b5:1d:38:e3:
1d:e8:24:aa:e0:a5:9d:f7:ac:e2:0b:72:c9:a8:83:
06:3b:f5:c6:bd:22:e3:c7:c4:7f:d6:4a:13:6a:03:
36:5b:dc:e0:10:00:df:e5:27:47:3b:54:56:1b:86:
ed:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F0:89:2A:CD:84:D5:AE:2C:BF:69:C1:69:61:F8:D0:55:05:FE:2A
X509v3 Authority Key Identifier:
keyid:CF:C7:00:8C:6F:91:72:2D:C3:B1:27:52:75:58:EB:DA:BC:68:0C:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:9b:6f:7e:c9:27:a7:ba:01:25:b8:a4:a7:6f:12:12:18:10:
ab:53:22:f8:6b:55:f4:ed:1d:67:9e:6c:16:68:d5:8d:94:c2:
eb:91:0d:a9:8e:ef:29:5b:0e:30:db:98:27:a5:9e:c3:5f:fd:
0e:5c:ce:de:99:6d:70:f3:0c:39:ef:59:f5:47:00:9d:9c:75:
b7:bd:dc:34:fb:74:dc:7d:5c:5f:d4:1a:67:68:8c:7a:3e:35:
13:04:10:fb:f2:b5:28:c4:7a:fc:ed:f9:f3:ef:9a:2f:1b:b7:
88:d1:0c:9a:03:b0:b4:ea:33:80:50:18:4c:f0:bd:82:2c:a1:
25:2b:f5:c0:e7:8c:a8:10:f3:ad:48:74:12:38:46:b4:08:05:
bb:20:e4:76:b7:30:ac:35:4b:e2:c6:16:5b:c0:fc:8d:93:1b:
dd:fd:1f:91:a6:a4:16:e1:81:49:1c:34:10:97:a9:21:57:76:
71:e3:e0:42:a1:c7:b8:56:35:b0:bc:d9:de:73:86:98:47:ec:
b1:57:eb:6e:4d:51:cd:fd:ea:c9:b8:44:d3:64:d6:eb:72:9b:
ca:0a:21:47:17:c6:09:f6:9c:76:0e:a8:3b:7d:09:e5:a0:78:
b5:8b:26:fc:39:8e:1c:41:ea:77:f2:2d:69:d0:17:f9:ea:ae:
27:f5:04:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:04:38 2025 by rpki-client