Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
File: zUBlln3sCStfyQFS5KlTObodIok.mft (raw, json)
Hash identifier: e7+/svdC+N8/2h+joXPZlIeGpSiUeHdXQwzDneZjIRA=
Subject key identifier: BD:F3:87:7F:5D:CF:E3:83:5A:A0:05:9E:EA:16:2E:F4:87:7F:28:39
Authority key identifier: CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89
Certificate issuer: /CN=cd4065967dec092b5fc90152e4a95339ba1d2289
Certificate serial: 0197B77C918ACC8A0F114E93E849A39AE3FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
Manifest number: 0C0B
Signing time: Sat 28 Jun 2025 17:01:23 +0000
Manifest this update: Sat 28 Jun 2025 17:01:23 +0000
Manifest next update: Sun 29 Jun 2025 17:01:23 +0000
Files and hashes: 1: O_Eyba2hWiJ1G1yko5jMVf-Hi74.roa (hash: 6Ep9rh8riGcgqLK1eN8d8mtWbuCz5+WFjzg4sxJvKMw=)
2: zUBlln3sCStfyQFS5KlTObodIok.crl (hash: jqEonTKYEJ4aNzhxZtRga6tSccMmSGxGPwTK0LtbSA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:91:8a:cc:8a:0f:11:4e:93:e8:49:a3:9a:e3:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd4065967dec092b5fc90152e4a95339ba1d2289
Validity
Not Before: Jun 28 17:01:23 2025 GMT
Not After : Jun 29 17:01:23 2025 GMT
Subject: CN=bdf3877f5dcfe3835aa0059eea162ef4877f2839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8b:10:3b:b4:0c:5c:e1:5d:d8:fe:15:7a:c4:
70:86:ce:42:0a:5f:b9:cb:e6:6d:3a:bf:41:a9:39:
5b:66:66:19:ac:be:8a:ec:ea:9f:1c:e0:83:4e:f8:
03:b5:34:a3:b1:de:34:38:1a:8d:b6:7f:74:3b:92:
14:6c:90:02:54:1c:24:a4:67:ab:15:53:6e:c9:9e:
f7:24:62:83:b8:08:36:93:d8:b0:d9:87:98:f7:e4:
f2:16:20:8f:03:ea:6d:0c:25:74:d8:b9:16:aa:36:
5d:57:db:97:1a:f2:e5:28:97:c4:3c:eb:4d:57:00:
e3:53:c9:c7:df:d7:9f:d7:73:cb:32:b0:1b:99:3d:
cf:65:1f:f0:12:74:3d:06:86:b8:ea:f1:ee:4a:b6:
cf:4a:88:f8:16:1f:fa:ff:f4:59:89:1d:5d:ed:98:
67:5f:95:66:9f:51:fa:71:d2:bf:27:2d:0a:d0:ad:
1d:af:0f:f5:7c:1c:ee:68:d4:8b:16:d8:3c:16:6e:
76:36:65:c2:24:69:98:da:f2:51:2b:c0:7e:2f:db:
d3:85:00:d6:1a:ae:3c:a1:1c:8f:b1:4b:01:97:54:
a5:cd:c3:d8:43:ad:d6:c3:9d:66:03:26:c0:08:c0:
40:ea:ea:9c:8b:68:09:41:eb:9b:a1:1d:04:1d:37:
4f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F3:87:7F:5D:CF:E3:83:5A:A0:05:9E:EA:16:2E:F4:87:7F:28:39
X509v3 Authority Key Identifier:
keyid:CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:18:fd:e2:62:ff:7e:6b:4b:32:f7:fc:de:4f:1b:65:db:0d:
7e:29:52:df:9d:e2:39:1e:11:0d:76:32:ff:98:de:a3:d9:a6:
b6:23:43:e6:32:3f:4b:60:4d:59:3a:71:9a:82:41:84:2a:0e:
9e:62:cb:0f:df:d0:cf:c6:82:b0:42:5b:c1:ca:45:0a:55:13:
ea:33:cb:dd:42:f4:90:92:ae:b3:65:64:1b:13:a4:18:10:23:
c8:57:8b:c4:5f:70:20:ba:8a:56:68:f2:fd:4b:72:88:fe:cd:
f3:d7:50:da:68:83:23:39:ea:01:96:6f:28:2a:bb:69:ea:00:
18:e5:6d:57:57:56:1a:e7:d7:5f:08:9e:02:82:e5:1b:8d:37:
bd:84:a2:04:b5:57:1b:0e:3a:96:b0:e7:bb:83:bd:ea:66:8c:
84:3e:61:0d:86:3f:df:42:58:b7:3b:52:ea:a2:7e:b3:94:44:
5e:6d:9b:c3:fd:e8:20:ab:bd:e3:8f:10:83:21:c7:2f:45:79:
53:8c:f3:a8:4a:2f:d0:e9:08:6b:95:66:25:49:cd:16:43:b9:
3e:ac:eb:f2:6b:cc:d6:74:28:ed:d1:eb:0a:ed:94:71:63:7e:
63:bf:2b:f7:a6:51:5f:4d:3a:67:a0:ab:05:cc:1d:84:67:61:
18:48:10:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:32:11 2025 by rpki-client