Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9602a9-74b6-4992-b71d-bab247fe7d7c/1/_ZTgRMvlw1KV-rxEWALakFgTtzI.mft
File: _ZTgRMvlw1KV-rxEWALakFgTtzI.mft (raw, json)
Hash identifier: We6dsCV9IoKlBiSPTNkx3KGC5eIt3y7RIPd8h0tApw0=
Subject key identifier: 5B:9B:8C:83:CA:2A:14:D7:6B:10:8B:0A:93:F6:2D:C3:CE:9B:FF:C8
Authority key identifier: FD:94:E0:44:CB:E5:C3:52:95:FA:BC:44:58:02:DA:90:58:13:B7:32
Certificate issuer: /CN=fd94e044cbe5c35295fabc445802da905813b732
Certificate serial: 0198D5159341EFF69E438EF3EE92138D0962
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ZTgRMvlw1KV-rxEWALakFgTtzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/9602a9-74b6-4992-b71d-bab247fe7d7c/1/_ZTgRMvlw1KV-rxEWALakFgTtzI.mft
Manifest number: 02A7
Signing time: Sat 23 Aug 2025 04:00:17 +0000
Manifest this update: Sat 23 Aug 2025 04:00:17 +0000
Manifest next update: Sun 24 Aug 2025 04:00:17 +0000
Files and hashes: 1: _ZTgRMvlw1KV-rxEWALakFgTtzI.crl (hash: dLZAKGdHcYUybpCH0spSIb+btxDZnQKGgAISWtmP+B4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/9602a9-74b6-4992-b71d-bab247fe7d7c/1/_ZTgRMvlw1KV-rxEWALakFgTtzI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/9602a9-74b6-4992-b71d-bab247fe7d7c/1/_ZTgRMvlw1KV-rxEWALakFgTtzI.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ZTgRMvlw1KV-rxEWALakFgTtzI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:93:41:ef:f6:9e:43:8e:f3:ee:92:13:8d:09:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd94e044cbe5c35295fabc445802da905813b732
Validity
Not Before: Aug 23 04:00:17 2025 GMT
Not After : Aug 24 04:00:17 2025 GMT
Subject: CN=5b9b8c83ca2a14d76b108b0a93f62dc3ce9bffc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:72:c8:13:78:49:08:30:f5:f7:5b:11:ba:00:
e5:f1:9e:8f:75:92:fc:f2:25:11:98:f4:e1:54:0a:
3e:f1:27:54:79:0a:b5:b0:1c:93:a6:b6:66:5c:72:
f7:2a:d8:ab:0f:5b:67:5a:1b:01:1b:d9:c9:40:35:
d6:92:9e:bf:9a:31:62:a5:ef:1b:75:08:16:bb:fa:
64:4d:f5:e8:10:03:70:ef:26:f2:e1:1a:ab:b1:9d:
da:1c:e7:00:69:0c:ca:11:3d:3c:b3:d1:57:28:0e:
14:04:53:67:71:05:ed:a0:41:2b:2c:d1:9c:c6:ca:
fd:12:78:6f:4d:f5:f4:07:01:e4:b7:a9:3d:bb:40:
90:3c:fd:d2:42:d2:23:e6:2e:59:81:f4:56:92:4e:
65:c4:98:de:37:06:d9:c1:0c:ce:e7:63:c4:4a:7b:
bd:b9:43:6c:a5:29:90:2f:dc:61:7c:60:0d:18:8f:
4e:75:37:4e:8c:59:ef:28:aa:e0:91:12:7a:35:a0:
20:2e:10:e0:31:fc:64:3c:ae:2e:90:3e:ae:a3:de:
07:d4:5a:c8:c8:2b:02:c4:7e:88:0b:4d:01:1a:64:
c4:bd:35:22:3f:fb:94:1b:18:01:08:d7:fb:53:ba:
35:7c:4f:cc:8a:86:1a:42:b3:65:f8:b6:89:78:0f:
d5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:9B:8C:83:CA:2A:14:D7:6B:10:8B:0A:93:F6:2D:C3:CE:9B:FF:C8
X509v3 Authority Key Identifier:
keyid:FD:94:E0:44:CB:E5:C3:52:95:FA:BC:44:58:02:DA:90:58:13:B7:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ZTgRMvlw1KV-rxEWALakFgTtzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9602a9-74b6-4992-b71d-bab247fe7d7c/1/_ZTgRMvlw1KV-rxEWALakFgTtzI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9602a9-74b6-4992-b71d-bab247fe7d7c/1/_ZTgRMvlw1KV-rxEWALakFgTtzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:d9:43:80:98:78:d0:15:52:46:7a:e5:f5:05:60:34:c5:f0:
90:4c:86:c9:3b:5f:eb:4a:1b:57:28:08:db:37:e7:76:51:4b:
24:33:88:c0:f4:f9:87:91:c9:e7:0b:d1:39:b1:c9:0e:75:a5:
0a:22:c4:fb:a3:0e:b4:f7:a4:97:75:5d:c3:20:c7:15:5f:94:
8d:7b:a1:d4:77:aa:02:5e:7a:ff:90:4f:79:72:49:88:77:d4:
5f:f2:09:fa:d2:d8:b7:1b:2c:ea:81:49:fa:5b:6c:f6:33:9b:
e6:cb:b7:c9:fa:58:ba:f7:9a:99:e2:9d:af:b0:94:d3:e7:7a:
50:68:bc:4c:9b:86:5e:e2:e7:ed:8f:6d:d3:87:89:8c:72:85:
2d:f5:7e:fa:4a:59:7e:6e:18:16:47:46:1c:07:c5:71:40:b3:
db:40:e4:33:19:2e:fe:4c:24:62:8d:32:68:4e:f9:af:fd:74:
2b:c4:f5:01:ff:bd:80:c9:bc:29:f1:b2:2c:8a:1e:df:a0:f0:
b5:c6:7c:65:76:94:7a:98:a0:b5:9e:b4:00:1f:e0:eb:a2:0e:
fe:ce:24:d2:33:49:9c:5b:7d:2c:1c:7c:49:50:78:51:ef:51:
cd:5f:8c:38:b2:5a:5f:21:ef:2e:e9:49:ca:f7:10:60:d8:6b:
e4:31:92:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:22 2025 by rpki-client