Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
File: z9rC7BEEwkXZyrqOthY46drxADk.mft (raw, json)
Hash identifier: VOUtCIbju362HHlMvrdD5X6A55JQDkQOBc32iKfInug=
Subject key identifier: 4E:A1:F0:20:B6:16:9F:7B:32:61:B3:15:AB:94:08:3A:7E:8B:00:62
Authority key identifier: CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39
Certificate issuer: /CN=cfdac2ec1104c245d9caba8eb61638e9daf10039
Certificate serial: 0197B6A20A9987BD6DF6E6DE531321094896
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
Manifest number: 10F2
Signing time: Sat 28 Jun 2025 13:02:42 +0000
Manifest this update: Sat 28 Jun 2025 13:02:42 +0000
Manifest next update: Sun 29 Jun 2025 13:02:42 +0000
Files and hashes: 1: z9rC7BEEwkXZyrqOthY46drxADk.crl (hash: c8x2KVFWWy+ExGUuYm63insO7waDrKsq/IB1iJEAjIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:0a:99:87:bd:6d:f6:e6:de:53:13:21:09:48:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfdac2ec1104c245d9caba8eb61638e9daf10039
Validity
Not Before: Jun 28 13:02:42 2025 GMT
Not After : Jun 29 13:02:42 2025 GMT
Subject: CN=4ea1f020b6169f7b3261b315ab94083a7e8b0062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:02:29:7b:75:7a:52:85:8c:6e:45:9e:b6:2c:
52:8c:7f:66:86:c2:51:d4:a7:22:b5:a8:1e:86:46:
36:7e:90:27:96:8e:61:7f:83:13:44:b2:07:92:11:
0e:67:bd:82:70:29:ed:39:45:23:0e:9e:fe:5b:10:
57:bf:0a:38:50:fb:dc:db:c9:b1:a8:9f:86:cd:22:
b2:e2:67:0d:8a:a6:ad:2d:2f:8c:ca:d7:45:7e:f7:
b4:6c:0b:a0:32:d0:e0:da:cc:3a:78:7a:8c:7d:67:
80:c3:3c:5e:eb:3d:ce:92:0c:1c:74:79:1f:96:dc:
92:d4:20:d2:db:d3:5e:2a:6f:2b:f2:c3:30:4e:0c:
7d:6b:43:34:a9:a6:3c:32:04:4e:2c:fb:6e:35:78:
ac:ee:93:90:b1:57:00:bd:88:0b:1c:82:45:c7:94:
93:09:ac:a9:6d:f0:8e:77:0a:06:48:10:da:99:88:
22:0b:2e:0d:73:dd:10:2a:eb:72:b2:48:8b:50:9d:
f0:fc:1d:08:b0:b5:ee:d3:cb:9b:c2:06:bc:2f:14:
c3:1c:8c:ac:bd:da:10:93:fd:07:33:87:19:f6:38:
49:08:52:76:9d:9c:01:b3:81:4e:3e:7f:ff:a4:2e:
8a:b0:95:3e:b7:17:58:86:89:50:47:f9:9d:b7:c0:
35:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:A1:F0:20:B6:16:9F:7B:32:61:B3:15:AB:94:08:3A:7E:8B:00:62
X509v3 Authority Key Identifier:
keyid:CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
df:4d:a1:d0:26:0b:a9:a1:bf:46:9a:98:b6:b5:cf:0d:a5:0c:
ab:76:8c:30:52:47:c1:7a:d7:77:c5:72:30:c6:d2:b3:66:a5:
20:58:ab:ef:db:5d:d3:34:c2:39:41:bc:62:73:d2:0b:91:0f:
04:eb:c2:b9:3a:e2:05:3e:fa:4f:fb:10:cf:92:22:93:87:9c:
2d:2f:6d:50:49:c6:41:c8:c1:e2:ed:04:af:09:10:ef:f1:b9:
e5:c2:e1:b9:d4:7f:91:e0:35:0c:60:f1:1a:92:d4:af:8c:6c:
fb:ae:61:6d:e4:bd:06:cf:ba:2c:fc:6f:fd:ef:00:e8:eb:00:
df:87:94:9d:30:86:24:52:5e:34:09:db:c3:1e:8b:3d:98:fb:
79:4f:e3:1b:4b:c2:61:32:6f:25:92:60:13:ee:77:42:99:da:
81:c1:11:7f:92:98:6f:ee:2d:87:0e:ba:22:d8:31:19:f1:07:
d1:4e:fa:ce:f5:81:7d:de:7c:b9:c6:dd:85:e6:78:50:ca:04:
e8:ac:06:f1:07:3b:50:a6:72:92:b5:18:7d:a9:4e:a3:1a:9c:
ca:a7:73:c7:64:40:cf:45:92:37:85:6f:63:13:65:74:ad:13:
9d:1b:a0:4e:35:a6:de:ad:4b:cb:5a:2d:9a:9c:72:d2:c0:77:
2b:9b:90:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:42:22 2025 by rpki-client