Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
File: rzA4pxexVOHPpHEWgy2ibyiyowQ.mft (raw, json)
Hash identifier: T/F7+2M88QEZLijTb6HRevqqvU2ydjBK3C6g0xADdlQ=
Subject key identifier: 5F:05:C0:03:0D:04:14:52:FE:69:3A:EE:C0:84:6E:44:DA:86:B1:5E
Authority key identifier: AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
Certificate issuer: /CN=af3038a717b154e1cfa47116832da26f28b2a304
Certificate serial: 0197C681B7EC4DCE9F8E27F417129E8C5894
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
Manifest number: 15BC
Signing time: Tue 01 Jul 2025 15:01:19 +0000
Manifest this update: Tue 01 Jul 2025 15:01:19 +0000
Manifest next update: Wed 02 Jul 2025 15:01:19 +0000
Files and hashes: 1: 9-nqsKi4Ev5jKkuKWzG_WIBo83k.roa (hash: SHAm2ssxR7ZkFZ7Brw788jEHfHi8MZS6JxMLuTDqDJs=)
2: rzA4pxexVOHPpHEWgy2ibyiyowQ.crl (hash: KY+hTrPD8vPLQ9iz88M/7slDN/kcrKfgtePmHBsdOCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 15:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:81:b7:ec:4d:ce:9f:8e:27:f4:17:12:9e:8c:58:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3038a717b154e1cfa47116832da26f28b2a304
Validity
Not Before: Jul 1 15:01:19 2025 GMT
Not After : Jul 2 15:01:19 2025 GMT
Subject: CN=5f05c0030d041452fe693aeec0846e44da86b15e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:10:55:3d:5d:21:32:34:43:ae:c2:33:95:72:
24:8b:0f:9b:79:14:95:59:a6:47:4f:69:3f:4d:49:
8d:be:a6:2f:c2:6f:d5:a8:d6:ee:5d:12:16:80:0f:
d8:95:d3:84:ad:e0:ad:ca:74:ad:16:37:34:37:cd:
1f:06:f9:e3:39:be:21:d3:aa:21:a8:c9:17:2a:e1:
6f:b7:aa:0e:1d:ed:ea:90:99:8f:63:a2:dc:d6:72:
55:c5:4e:cd:57:d6:f9:fc:2e:aa:60:36:5f:15:9a:
5e:4d:f4:3c:2d:40:ee:6b:2e:54:76:ca:4e:e6:77:
c1:d6:ee:69:4c:30:2a:8d:d5:a5:25:e0:79:d9:1a:
1d:ec:df:64:46:42:da:e1:c7:46:c9:9b:da:d8:90:
06:2a:8a:0a:50:42:51:73:1b:5d:af:4a:f5:c2:b9:
95:95:67:08:27:88:a6:14:b3:3c:8f:1e:c1:65:48:
6f:d8:5e:34:c8:60:6d:03:7b:4e:a4:51:75:e8:b3:
f4:3d:e8:d8:b3:5e:c7:e2:db:f2:b2:54:21:72:ab:
42:d2:01:33:36:7f:9e:cd:e4:9d:c9:05:ac:a8:5c:
4d:20:04:64:b8:da:02:0b:59:b9:b9:9f:9e:df:bb:
d3:9a:ad:1e:b2:38:41:98:86:bf:89:7c:4b:33:f1:
b4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:05:C0:03:0D:04:14:52:FE:69:3A:EE:C0:84:6E:44:DA:86:B1:5E
X509v3 Authority Key Identifier:
keyid:AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:a4:a3:b7:34:d4:56:1f:05:3d:a1:cf:5e:75:6a:30:a7:ff:
cc:9d:f9:29:e7:30:db:0f:ed:db:48:f1:d1:db:fe:de:fa:66:
83:13:d1:20:28:71:8d:2c:db:93:1e:58:49:2f:56:d5:04:52:
b8:7a:58:65:c9:a2:ab:ce:e8:8e:fc:8b:bf:6f:a1:1c:6a:04:
4e:91:36:90:40:51:f0:42:14:00:cf:8b:cf:05:82:0a:6a:ba:
62:80:7d:c1:87:40:df:5d:7d:1d:28:ed:2e:1a:2b:89:2b:ea:
8f:4d:19:0c:9c:3e:22:db:96:e7:96:8c:fa:f3:0b:ce:a1:81:
3b:c7:6d:d1:23:c9:16:9e:a3:6b:a6:29:ba:0c:2d:75:9b:19:
20:d2:7a:8d:52:e8:15:81:41:2b:b7:fc:a0:77:e0:02:7f:67:
2a:23:18:a9:8a:96:3f:fd:68:46:83:57:2c:bf:65:f2:ea:54:
f0:88:65:8c:82:25:ed:44:e7:bb:1f:47:05:ba:42:84:97:ce:
71:76:53:44:03:3b:e7:f9:10:39:c8:10:86:c8:af:51:be:47:
a4:a7:bf:7d:ea:d0:05:24:11:11:52:7f:13:46:67:3e:86:42:
9b:ab:f1:06:56:4e:5a:7b:4d:17:b8:1a:00:fa:b8:ca:45:6a:
96:25:d6:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 22:16:18 2025 by rpki-client