Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
File: zUBlln3sCStfyQFS5KlTObodIok.mft (raw, json)
Hash identifier: D5gt5JmlFK3kUzFEq1nVSSmM7uk4esbR4imHhfuMg8M=
Subject key identifier: 34:35:D3:CB:EC:24:11:E5:90:28:0D:CB:CA:3E:5A:41:93:2B:EB:C0
Authority key identifier: CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89
Certificate issuer: /CN=cd4065967dec092b5fc90152e4a95339ba1d2289
Certificate serial: 0198D54E0911155392A1F2CF4AE6FE820B62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
Manifest number: 0C9F
Signing time: Sat 23 Aug 2025 05:01:57 +0000
Manifest this update: Sat 23 Aug 2025 05:01:57 +0000
Manifest next update: Sun 24 Aug 2025 05:01:57 +0000
Files and hashes: 1: O_Eyba2hWiJ1G1yko5jMVf-Hi74.roa (hash: 6Ep9rh8riGcgqLK1eN8d8mtWbuCz5+WFjzg4sxJvKMw=)
2: zUBlln3sCStfyQFS5KlTObodIok.crl (hash: nej4DNYqy6LJCxUtopNqq8R93KN6VKrlYuAqNpo9fr0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:09:11:15:53:92:a1:f2:cf:4a:e6:fe:82:0b:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd4065967dec092b5fc90152e4a95339ba1d2289
Validity
Not Before: Aug 23 05:01:57 2025 GMT
Not After : Aug 24 05:01:57 2025 GMT
Subject: CN=3435d3cbec2411e590280dcbca3e5a41932bebc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:17:23:ce:5b:dd:60:74:7b:34:a3:5c:59:bd:
d5:f8:b7:84:20:26:12:dc:60:66:25:7f:36:e7:95:
ff:4d:74:bc:97:8d:4e:3d:db:43:1d:3f:97:07:ed:
55:52:32:71:58:21:57:3d:8b:4c:4f:9f:c8:a1:7e:
94:0d:cf:ad:a1:03:d1:18:fe:0e:31:95:16:3b:53:
e0:e6:11:ba:75:59:01:04:65:f1:a5:7c:51:da:4d:
a1:4f:79:48:b7:bc:0e:a6:20:70:1c:ad:6e:58:63:
0c:35:e7:94:a7:41:22:13:e7:c3:04:0c:ca:15:29:
64:64:03:c2:df:77:b9:40:05:34:a0:1f:ce:8c:dc:
bc:eb:90:d3:71:74:81:ec:db:17:b3:ae:a3:e1:1a:
ec:73:c3:be:72:f6:74:52:f3:01:41:3d:05:20:4c:
ce:00:7c:9f:67:a2:4a:f5:14:cf:8d:f3:97:86:e6:
6a:71:d4:16:a5:aa:da:0e:85:3d:b9:1a:d7:af:18:
e9:16:5c:77:65:b4:ae:72:92:f7:0e:7d:a5:b6:85:
45:91:fd:60:b2:1c:90:60:74:21:4d:cb:2b:df:5e:
50:01:b6:9f:cf:c7:5e:ce:18:76:7e:82:58:b5:34:
ee:52:22:c3:8f:84:89:07:67:c8:ee:86:2c:7f:4f:
e8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:35:D3:CB:EC:24:11:E5:90:28:0D:CB:CA:3E:5A:41:93:2B:EB:C0
X509v3 Authority Key Identifier:
keyid:CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:40:40:5f:bd:68:3e:23:79:13:fb:41:2b:47:31:1f:d0:9c:
45:e9:b3:4b:61:19:3c:86:55:43:20:31:59:6b:d4:64:66:05:
64:de:c5:10:a9:c5:00:b9:71:01:41:71:9c:b1:57:ad:55:b0:
a1:e9:da:b9:18:a6:0b:7a:ae:b7:11:94:db:26:23:50:7b:ea:
fa:b3:7e:17:02:9e:9b:9a:31:f9:aa:22:b4:24:2c:03:4d:3b:
cb:37:f2:d3:00:e8:81:3d:a4:97:b9:64:f8:32:fa:43:1d:6d:
90:18:f6:c2:93:b0:ac:2f:21:ea:1a:54:ce:47:30:64:c4:79:
ab:85:ad:d2:35:0f:24:cb:cf:19:b2:02:a1:96:0e:28:80:dc:
77:18:7e:78:85:b4:78:5f:e1:e9:14:78:bd:b3:40:bd:6f:3c:
78:00:26:aa:23:7f:4c:be:6c:36:99:79:f3:d2:4e:24:f1:1f:
3b:f6:eb:4a:d4:8a:e6:f6:88:79:8f:43:cd:5f:87:93:b2:c7:
aa:2d:a7:e9:1c:9c:2b:34:0e:6c:33:86:4f:f5:6c:20:8c:da:
02:f1:13:58:ca:82:8e:aa:7f:f9:dc:ad:18:3a:9c:f8:a8:a7:
c8:49:96:71:c3:c6:36:c2:30:4b:0f:7f:f8:7f:a3:8e:84:ed:
1c:2c:c9:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:18:22 2025 by rpki-client