Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
File: z173qHDUsUjrHU9P5mbtUFSt6uw.mft (raw, json)
Hash identifier: MSDJSjTvg2zCgSoCgSmYnnLcfs9niDLohPaP3NwS+V8=
Subject key identifier: 13:DF:BE:2E:2E:AD:4C:CB:B3:8F:7E:34:B0:4F:D7:29:3F:2A:91:C6
Authority key identifier: CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC
Certificate issuer: /CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec
Certificate serial: 0197C49320109C03F3F2AD2798E5277C75B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
Manifest number: 0D32
Signing time: Tue 01 Jul 2025 06:01:05 +0000
Manifest this update: Tue 01 Jul 2025 06:01:05 +0000
Manifest next update: Wed 02 Jul 2025 06:01:05 +0000
Files and hashes: 1: IG4gE3aIFq9mnBnmOmJWzHSGMI8.roa (hash: NFuQufrafEIV/iOKny+LtVRYLA0EJDhZvV8121UO+Jg=)
2: eR5EevbZ-cAP0rVdhXMRAu6R2DU.roa (hash: MFuL2PsX4eqPDfqD1XxiSAvnb9qnnDDl40Z3XSXhTPs=)
3: z173qHDUsUjrHU9P5mbtUFSt6uw.crl (hash: 4+cLdgVNIFvuuQw1BpW+YavuT1yOsp6GZ7ImnOgfluo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 06:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c4:93:20:10:9c:03:f3:f2:ad:27:98:e5:27:7c:75:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec
Validity
Not Before: Jul 1 06:01:05 2025 GMT
Not After : Jul 2 06:01:05 2025 GMT
Subject: CN=13dfbe2e2ead4ccbb38f7e34b04fd7293f2a91c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a9:c9:09:06:02:9d:63:88:84:69:1a:71:e1:
d4:99:f5:18:fa:b9:71:61:ef:2f:f3:33:5f:8f:4b:
01:70:c6:97:3c:16:b9:31:0a:d8:59:3b:5b:94:8a:
c4:47:6c:6e:85:21:ca:3d:7c:17:06:51:5d:05:5b:
6b:28:8a:06:3a:79:d6:10:a2:43:b2:76:c4:4e:3a:
5c:f0:97:ad:39:ea:bf:a1:56:f0:5b:4e:be:24:61:
8b:76:69:1e:54:f6:bd:36:11:9a:f9:cf:42:13:87:
d2:02:0f:c0:99:03:82:ed:af:1d:c5:d1:cb:c4:bc:
c6:0f:e1:b1:3e:b5:9c:d9:d4:20:a0:17:07:e6:67:
4a:b3:66:0a:8b:6a:1f:f0:87:e7:a6:ef:62:e7:70:
fe:94:26:47:ec:03:3c:bc:fc:83:ed:80:ba:aa:7e:
5c:62:62:36:de:45:f5:08:ff:8e:da:c1:5a:3c:b4:
47:8d:97:82:4d:05:d0:16:db:18:6c:ff:d3:75:1f:
c9:68:5e:89:97:a4:9c:08:47:4a:04:92:96:f6:69:
36:6e:b3:76:fd:f7:e7:b4:cf:47:12:0c:61:70:0b:
aa:98:ac:3b:90:8c:01:08:18:47:fa:62:e2:22:b5:
f9:0c:f4:bc:e9:da:d8:e1:f9:2d:54:7d:a0:c5:ab:
00:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:DF:BE:2E:2E:AD:4C:CB:B3:8F:7E:34:B0:4F:D7:29:3F:2A:91:C6
X509v3 Authority Key Identifier:
keyid:CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:9e:b9:f9:3a:6a:f5:73:73:e0:d8:fb:5d:84:e1:84:6d:fe:
eb:f4:59:a2:20:12:16:ba:d3:bd:db:75:9d:bb:ca:05:ec:07:
0d:75:05:ea:87:df:e8:ae:a7:8d:5d:05:f4:7a:6b:ab:56:aa:
cb:df:bc:32:95:1b:52:92:ee:01:b5:5c:e4:2c:2a:30:2d:1b:
49:95:d7:93:20:cb:0f:e8:1d:34:ca:41:e9:d0:1e:c0:52:f2:
80:8d:e1:b6:66:74:09:8f:eb:ad:23:63:77:19:36:71:f5:6f:
39:c5:b1:cd:cd:3c:68:8a:a5:cd:75:9e:aa:b2:6a:34:32:dd:
db:f5:cf:8f:62:c3:72:f9:85:21:1e:c3:d1:ec:8e:cf:97:6c:
0a:bd:04:7b:3e:a9:de:2c:7c:1d:b1:b4:4a:1b:59:9c:c2:72:
f6:f1:27:5b:48:df:0e:27:05:d6:44:ca:9f:00:24:1e:54:ba:
a4:5d:56:9e:15:a1:ea:04:18:02:79:95:38:ae:64:84:15:fb:
0b:ef:15:b0:dd:d2:51:9b:2e:ff:ed:03:5a:82:a8:a2:56:bb:
72:99:b2:ff:de:e1:1f:c3:9e:ec:b2:e3:b1:c3:f8:ed:f1:bb:
1f:af:55:bd:cb:56:88:db:ba:c9:2e:24:28:f1:51:f7:73:5e:
87:27:52:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 10:25:10 2025 by rpki-client