Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
File: rzA4pxexVOHPpHEWgy2ibyiyowQ.mft (raw, json)
Hash identifier: JUH3AL8NsVYKFRmlPT/9OFXiyRgdd/w9neKKyk4VkdA=
Subject key identifier: 37:09:90:D8:ED:9E:BF:61:64:13:34:95:EE:D9:F2:5F:E1:71:81:26
Authority key identifier: AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
Certificate issuer: /CN=af3038a717b154e1cfa47116832da26f28b2a304
Certificate serial: 0198D6CCF252A91D810B65981CB3649FBC3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 12:00:12 +0000
Manifest this update: Sat 23 Aug 2025 12:00:12 +0000
Manifest next update: Sun 24 Aug 2025 12:00:12 +0000
Files and hashes: 1: 9-nqsKi4Ev5jKkuKWzG_WIBo83k.roa (hash: SHAm2ssxR7ZkFZ7Brw788jEHfHi8MZS6JxMLuTDqDJs=)
2: rzA4pxexVOHPpHEWgy2ibyiyowQ.crl (hash: 6wm1dRbtkXfLM2LvHyv7jEKTPFqBuL6QYvGVW87jPQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cc:f2:52:a9:1d:81:0b:65:98:1c:b3:64:9f:bc:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3038a717b154e1cfa47116832da26f28b2a304
Validity
Not Before: Aug 23 12:00:12 2025 GMT
Not After : Aug 24 12:00:12 2025 GMT
Subject: CN=370990d8ed9ebf6164133495eed9f25fe1718126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:54:36:0b:a2:ed:03:14:c3:ed:29:f3:b5:ac:
c8:be:22:35:f8:16:58:84:40:09:f8:c6:e8:04:f3:
56:dc:31:7a:d9:34:68:53:39:cc:24:09:00:7d:e8:
f0:f1:5b:b9:ca:74:35:e1:bc:6a:61:9f:22:94:dc:
50:a0:3a:3d:48:7c:b2:86:46:c4:d1:b9:32:c1:d1:
bc:e8:eb:82:05:9d:d1:f0:0a:8e:df:8f:7e:a5:08:
dc:c2:66:2e:fd:a4:e6:2b:25:75:57:ef:d1:25:d7:
d5:5e:66:27:c6:88:14:57:d9:0a:08:c4:41:39:a6:
0b:35:5e:c2:12:28:ca:46:c9:45:90:db:c3:32:1b:
3b:30:e8:aa:4c:c3:b8:7c:69:6d:90:a2:aa:cd:22:
0f:7b:49:04:29:da:a7:27:c0:28:b6:0b:1a:aa:17:
5a:b8:a3:d7:47:26:b7:6c:4b:69:72:c2:a9:ab:cb:
93:90:f1:fa:46:30:71:1d:b3:64:85:42:5b:7a:47:
e3:82:ea:90:6c:c2:5b:2b:07:a7:a2:ca:a6:5e:71:
fc:57:13:fb:ef:cb:36:58:f0:a9:5b:01:6c:a7:74:
1a:e2:2c:79:7c:14:ed:00:d2:33:68:69:0b:15:41:
e4:22:30:51:e9:dc:58:35:4c:c8:7e:4d:f7:7b:4f:
c7:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:09:90:D8:ED:9E:BF:61:64:13:34:95:EE:D9:F2:5F:E1:71:81:26
X509v3 Authority Key Identifier:
keyid:AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:7d:f8:b2:da:f1:09:98:e4:07:38:a2:88:d4:64:c7:7b:54:
2f:d8:7f:72:eb:87:e1:c8:0f:19:66:e6:e5:43:d9:12:29:64:
02:00:4e:b6:20:dd:59:5c:a1:83:fe:81:de:0b:21:6a:5d:ce:
55:36:e4:5a:e1:d5:63:02:b0:3f:f3:4e:12:1b:32:72:3c:30:
f0:e5:08:c1:8f:20:40:15:31:35:fb:c3:50:5d:0e:52:f5:ea:
62:c1:aa:f4:31:a5:fd:d2:f6:27:5a:ae:75:74:a3:9c:27:4e:
82:9e:0e:fe:10:cc:a3:d6:ec:26:22:67:ff:59:16:97:c6:08:
89:dc:8d:72:81:ca:56:50:67:f0:fd:00:a5:47:04:4c:4e:f0:
5c:ac:9b:cc:cd:4f:0f:48:69:64:44:5e:3a:b1:64:ea:ab:fe:
ad:69:52:8d:f4:bf:0f:d1:39:08:19:4b:77:12:0b:69:61:ba:
93:7b:e5:49:21:4e:1b:70:77:c4:7c:4b:2f:64:0d:97:f6:2f:
86:c8:1f:c0:06:fc:d7:bf:56:55:9f:c1:57:7d:f9:26:f6:57:
af:28:48:9a:eb:51:3f:8b:38:11:ff:c8:1b:59:b5:ee:ec:f4:
c7:86:55:2e:48:ea:52:e0:f3:9d:47:33:c1:12:2e:63:4a:d7:
d5:70:b2:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:12:53 2025 by rpki-client