Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
File: z9rC7BEEwkXZyrqOthY46drxADk.mft (raw, json)
Hash identifier: 36BBsF0BZyBrAAgdqo+bi236iG4lymQsVWatv4scKws=
Subject key identifier: A9:8E:99:9C:26:2C:E9:28:BB:30:1A:18:F2:FD:23:10:2F:A6:6A:81
Authority key identifier: CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39
Certificate issuer: /CN=cfdac2ec1104c245d9caba8eb61638e9daf10039
Certificate serial: 0198D4729883341AF7AC3302F6C5B00985B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
Manifest number: 1186
Signing time: Sat 23 Aug 2025 01:02:16 +0000
Manifest this update: Sat 23 Aug 2025 01:02:16 +0000
Manifest next update: Sun 24 Aug 2025 01:02:16 +0000
Files and hashes: 1: z9rC7BEEwkXZyrqOthY46drxADk.crl (hash: OiA7eBoNq8I61Tvxs7N1W1Kxeu6aC/Yw82QlKZ9zReU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:98:83:34:1a:f7:ac:33:02:f6:c5:b0:09:85:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfdac2ec1104c245d9caba8eb61638e9daf10039
Validity
Not Before: Aug 23 01:02:16 2025 GMT
Not After : Aug 24 01:02:16 2025 GMT
Subject: CN=a98e999c262ce928bb301a18f2fd23102fa66a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:11:31:a9:11:d0:c0:56:0d:1e:03:00:81:63:
89:1a:3e:38:5e:5f:7f:48:8b:68:50:11:4c:5b:f3:
eb:63:0d:28:23:bd:ad:83:8d:24:28:77:f5:e3:50:
e7:96:52:33:52:64:18:63:08:08:9c:02:10:d7:77:
3d:6d:13:3c:9e:52:93:7c:a6:c8:f3:22:67:42:75:
6c:fa:c9:7f:2b:87:48:93:70:49:fb:62:42:ae:09:
9b:e5:a6:12:b5:54:af:78:ed:1e:dc:1b:ef:18:49:
a9:77:06:eb:ff:c0:a4:87:f4:b6:6e:a7:d7:42:b5:
5b:15:35:78:3e:97:f9:25:df:0e:41:df:f6:60:fb:
52:b2:7f:89:12:57:13:f4:55:7b:19:2f:45:1d:3a:
b5:ff:c0:d7:49:d1:80:29:1e:ee:68:09:3f:70:47:
f2:6a:6f:c1:9b:83:d8:6a:3e:1e:f5:eb:72:ab:7d:
f3:6f:3d:17:78:40:02:dd:03:44:ab:e1:4f:7e:5b:
49:7e:43:b1:78:d7:b8:e3:c1:26:70:c5:45:19:f0:
d7:96:92:91:a4:bc:66:a3:95:fe:a4:f7:07:c2:1a:
f5:b5:7b:30:56:20:06:a2:8d:55:75:46:b7:a3:40:
c7:43:b1:2b:27:fd:06:11:7b:f3:b6:f5:30:b1:8a:
86:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:8E:99:9C:26:2C:E9:28:BB:30:1A:18:F2:FD:23:10:2F:A6:6A:81
X509v3 Authority Key Identifier:
keyid:CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:79:92:1b:ab:b2:60:9a:08:b2:ee:e8:57:55:ee:ff:35:a4:
5d:fe:b5:09:4a:6e:18:59:fa:6d:5d:86:a0:12:ab:5f:db:30:
7d:e8:78:05:1a:d4:df:5a:99:c6:7e:f3:fd:3f:ef:b1:af:7e:
42:76:2c:18:dc:7f:e5:e2:7b:e6:cb:f8:9d:3e:aa:f7:8f:5e:
20:6b:2a:64:48:5f:99:05:09:70:2d:5c:e8:ae:4d:2d:68:27:
b8:40:d2:b0:35:9b:ca:18:0b:48:2d:88:d9:92:6a:97:af:6a:
5e:71:0d:3b:44:33:21:33:71:26:0a:c5:50:0d:0d:62:37:1e:
f5:ae:05:dd:01:a1:c8:c0:02:20:d9:74:47:00:3b:28:20:2e:
61:b6:63:50:a9:49:36:53:f9:cd:15:cc:1e:4e:7a:9b:d9:af:
1a:16:b4:c6:28:f6:4d:1f:97:e0:1e:67:c2:03:0f:d8:c6:47:
e7:5e:de:69:c7:05:58:90:1f:c0:e7:7a:c2:e9:f8:5b:97:14:
17:55:07:86:d3:65:00:7a:01:dd:26:bf:94:d2:e9:8c:32:ec:
54:ab:c1:9c:b8:14:1c:a4:a5:bb:13:19:21:c0:cf:dc:9f:c2:
aa:7d:fc:18:72:6c:52:bf:e5:78:2b:61:b5:4f:0e:ef:78:65:
5c:09:0e:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:29 2025 by rpki-client