Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/39e0d9-52a2-437c-895f-4c582c28fba3/1/z6XOwUOirx7RwtmWlvHxaH9Fhkk.mft
File: z6XOwUOirx7RwtmWlvHxaH9Fhkk.mft (raw, json)
Hash identifier: Rvhjb8RmIY9yAIg0E8t7Uvz3gR5DnIGwOVMLADQo200=
Subject key identifier: DE:18:02:4C:59:50:D9:90:05:BF:5D:00:A2:F6:D0:67:D5:2C:7E:D4
Authority key identifier: CF:A5:CE:C1:43:A2:AF:1E:D1:C2:D9:96:96:F1:F1:68:7F:45:86:49
Certificate issuer: /CN=cfa5cec143a2af1ed1c2d99696f1f1687f458649
Certificate serial: 0197B89023BF9467A1E2A47386C8B6BED519
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z6XOwUOirx7RwtmWlvHxaH9Fhkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/39e0d9-52a2-437c-895f-4c582c28fba3/1/z6XOwUOirx7RwtmWlvHxaH9Fhkk.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 22:02:23 +0000
Manifest this update: Sat 28 Jun 2025 22:02:23 +0000
Manifest next update: Sun 29 Jun 2025 22:02:23 +0000
Files and hashes: 1: z6XOwUOirx7RwtmWlvHxaH9Fhkk.crl (hash: 5M9FHZ8TwgFfaIjwj0GXEUVtLHSe3yOCba1wASTJITg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/39e0d9-52a2-437c-895f-4c582c28fba3/1/z6XOwUOirx7RwtmWlvHxaH9Fhkk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/39e0d9-52a2-437c-895f-4c582c28fba3/1/z6XOwUOirx7RwtmWlvHxaH9Fhkk.mft
rsync://rpki.ripe.net/repository/DEFAULT/z6XOwUOirx7RwtmWlvHxaH9Fhkk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:23:bf:94:67:a1:e2:a4:73:86:c8:b6:be:d5:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfa5cec143a2af1ed1c2d99696f1f1687f458649
Validity
Not Before: Jun 28 22:02:23 2025 GMT
Not After : Jun 29 22:02:23 2025 GMT
Subject: CN=de18024c5950d99005bf5d00a2f6d067d52c7ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:18:00:ff:07:31:d6:65:84:0e:4c:e8:6e:a0:
cb:e7:9f:2f:c5:f2:de:c5:22:3f:66:21:67:d1:db:
19:a8:0c:65:cc:ea:af:a3:25:9a:7a:3e:25:fa:55:
b0:d8:1b:d2:1c:58:55:ca:9a:c1:65:c6:12:20:17:
26:5f:db:a0:87:04:28:96:09:e8:9b:c2:1a:13:43:
6d:5a:8c:a4:35:d2:57:81:0e:c5:c5:08:55:9a:cf:
46:2f:6c:9d:ec:8a:9b:38:cf:0b:79:9b:b9:9b:57:
ee:78:53:30:59:23:12:24:6f:cb:14:db:7f:02:67:
1e:06:75:00:a6:b6:d8:04:1c:73:7d:66:29:d6:8d:
d2:ad:e0:17:55:5c:02:eb:f0:05:ab:e1:6d:49:36:
cb:f2:2b:b8:af:69:99:03:0f:d9:6e:ab:4d:af:d5:
7a:45:39:22:c1:15:da:3f:c1:84:2e:57:56:19:d6:
c9:98:c2:8f:72:8f:91:4d:88:a4:8f:da:fb:b6:ef:
aa:e9:53:ea:f4:7d:bf:bd:03:48:55:bf:58:f2:8b:
22:ba:fb:fa:26:0c:e3:2c:d0:d6:ea:3d:ef:b1:02:
50:5d:12:ba:f5:37:e9:d3:01:b5:2b:33:fb:88:d9:
8f:31:3a:f3:3c:e8:4a:dc:d8:1d:54:48:f8:d1:5d:
9e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:18:02:4C:59:50:D9:90:05:BF:5D:00:A2:F6:D0:67:D5:2C:7E:D4
X509v3 Authority Key Identifier:
keyid:CF:A5:CE:C1:43:A2:AF:1E:D1:C2:D9:96:96:F1:F1:68:7F:45:86:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z6XOwUOirx7RwtmWlvHxaH9Fhkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/39e0d9-52a2-437c-895f-4c582c28fba3/1/z6XOwUOirx7RwtmWlvHxaH9Fhkk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/39e0d9-52a2-437c-895f-4c582c28fba3/1/z6XOwUOirx7RwtmWlvHxaH9Fhkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:bc:2c:4f:20:db:2d:02:d9:14:fe:cd:36:4c:c6:be:3e:ee:
99:33:a2:e6:f8:2e:d5:43:63:7d:68:69:57:2c:1b:9d:3a:2e:
40:e4:b9:93:38:de:6f:a4:c6:d8:0c:72:58:84:f3:ed:ec:6a:
be:7d:f6:88:15:26:69:cb:c8:12:39:b2:a6:fe:5c:17:1c:ae:
aa:12:36:6d:27:40:02:eb:65:c2:dd:26:d9:71:71:48:b8:5b:
52:96:07:d9:4f:82:4f:03:92:a4:ed:6f:3a:86:97:9e:cf:5f:
85:2c:18:fe:ac:b7:11:65:16:59:b2:f2:95:08:98:ec:c8:cf:
5d:6a:e6:30:ea:07:f4:2f:2f:cc:56:bc:89:fa:d3:50:a7:5b:
b0:6c:e6:e7:cd:a1:f9:70:71:9b:ca:44:21:96:26:9a:1d:bc:
2f:f4:8c:63:09:80:09:43:da:77:52:03:1a:dc:03:a0:0d:be:
39:78:81:1e:ee:36:0e:ec:44:27:3f:18:59:81:a7:44:4a:17:
5a:2f:e5:4a:15:69:64:53:8a:73:e6:27:5f:a2:fb:5c:37:05:
6b:9c:6d:dd:69:4c:a7:40:c1:a7:e9:d3:0b:28:23:01:5f:cb:
b2:2a:a0:9e:4c:de:79:f1:cd:e5:a9:72:ba:99:b4:a1:32:83:
4a:a3:d3:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:34:31 2025 by rpki-client