Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
File: z173qHDUsUjrHU9P5mbtUFSt6uw.mft (raw, json)
Hash identifier: UanXf0L0Gb2a0JxVcaUpGrs6KyMzKIKQTTSgk4FGIVU=
Subject key identifier: E7:03:AC:2D:09:21:A7:13:F2:06:BC:70:5C:A6:C1:68:E0:1A:60:0D
Authority key identifier: CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC
Certificate issuer: /CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec
Certificate serial: 0198D4E031423A0AC9419769BA994CCF5E48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
Manifest number: 0DBF
Signing time: Sat 23 Aug 2025 03:01:59 +0000
Manifest this update: Sat 23 Aug 2025 03:01:59 +0000
Manifest next update: Sun 24 Aug 2025 03:01:59 +0000
Files and hashes: 1: IG4gE3aIFq9mnBnmOmJWzHSGMI8.roa (hash: NFuQufrafEIV/iOKny+LtVRYLA0EJDhZvV8121UO+Jg=)
2: eR5EevbZ-cAP0rVdhXMRAu6R2DU.roa (hash: MFuL2PsX4eqPDfqD1XxiSAvnb9qnnDDl40Z3XSXhTPs=)
3: z173qHDUsUjrHU9P5mbtUFSt6uw.crl (hash: U0Pd+/FVme6guePRxb2hBHRfq/2GyyGtXK+rUoBh/pA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:31:42:3a:0a:c9:41:97:69:ba:99:4c:cf:5e:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec
Validity
Not Before: Aug 23 03:01:59 2025 GMT
Not After : Aug 24 03:01:59 2025 GMT
Subject: CN=e703ac2d0921a713f206bc705ca6c168e01a600d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:78:05:bd:8c:87:8f:1a:fc:1f:3f:e9:ea:f8:
ad:d6:b8:c9:9d:a7:25:16:f6:eb:ba:f0:63:36:11:
d3:a7:91:a2:ee:1c:ac:4d:60:1a:8e:f3:c7:3a:d1:
d1:3e:dd:99:a3:2c:2e:25:c5:ca:d8:7c:10:83:32:
f0:2b:5b:55:b5:d0:6b:15:62:a4:b4:2d:aa:54:15:
38:74:86:63:3e:d8:7a:d0:c2:bd:c9:8e:36:74:3e:
64:da:29:07:c5:bf:64:f3:53:01:20:27:bc:70:68:
75:d8:52:be:7f:ad:dc:c9:ea:81:e5:e1:c5:2f:a3:
27:d4:fc:86:e5:f0:b6:1b:78:d1:a8:e6:f3:f0:53:
3b:ac:6f:59:4e:90:78:f1:9c:86:ed:fd:0e:a3:32:
47:dc:c6:f0:fc:0b:f7:85:d4:9c:98:6d:9a:f8:f1:
ee:4d:53:a4:0d:7f:e6:4d:dd:44:8e:06:c0:a5:23:
2a:f3:32:59:12:b8:72:b9:18:56:40:28:6b:4e:6e:
9c:5f:1a:f3:55:9b:31:d4:c8:52:da:95:eb:b7:42:
d8:b5:b3:c7:0e:90:8e:d4:2d:b9:00:2a:74:15:3e:
d0:88:36:46:c8:21:2c:44:a0:73:2e:cd:d6:7c:ad:
7f:a5:5f:0a:eb:ff:ff:7a:ca:8e:29:39:4c:ea:f9:
8a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:03:AC:2D:09:21:A7:13:F2:06:BC:70:5C:A6:C1:68:E0:1A:60:0D
X509v3 Authority Key Identifier:
keyid:CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:3d:a9:c9:13:5a:d0:3d:cd:b0:52:fb:65:ae:53:02:13:af:
b3:d8:b5:04:da:8f:9c:85:2c:33:8a:14:32:b9:6d:e6:f1:6f:
77:e3:d2:41:a7:86:ca:b9:63:63:be:08:ff:c6:12:d5:7a:90:
42:0a:0c:9b:47:67:03:c1:01:f9:41:d6:3a:86:32:dd:c0:c2:
a9:10:27:5c:d7:de:7c:13:94:ce:75:7c:d2:a4:df:46:a4:d3:
56:99:73:13:01:c5:fe:8a:5b:ab:df:be:83:09:c6:5e:e7:f9:
2c:5c:53:ee:03:06:ef:a0:c9:e9:e9:f3:a5:73:5d:a5:25:59:
f6:d5:4b:b9:d8:14:d6:8e:db:f6:23:84:c2:29:a8:c2:cc:a3:
24:5e:46:5a:7a:a7:77:2f:16:28:29:ff:2d:c4:bf:9e:45:e1:
55:f4:89:8f:f1:33:ed:ab:9b:f7:9d:e6:81:1d:c1:6a:56:d0:
cd:f6:ea:7b:1d:87:de:b4:11:4c:33:6a:9c:4f:e0:9f:ff:e0:
c5:a1:1e:00:b9:f7:c7:98:b6:fa:8f:79:c9:70:60:7b:b7:43:
4b:bb:8e:93:c5:84:53:4e:93:20:89:b9:6c:a3:b3:b6:62:26:
d0:8f:55:37:33:5e:aa:8b:e8:5b:5c:5f:f9:82:48:3c:52:93:
2c:b5:d3:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:28:16 2025 by rpki-client