Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
File: zUNP2FkiOudujXhkipNylejs15o.mft (raw, json)
Hash identifier: MRq6R1CO6uryCukHtEi0VP5yOS0Tiw8BascwKi+faYo=
Subject key identifier: 8C:E0:DD:24:0D:A7:27:DD:3A:AB:39:CF:65:6D:A8:95:DD:B7:83:F8
Authority key identifier: CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
Certificate issuer: /CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Certificate serial: 0198D6601D4704067ABE59326E2049B70A3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
Manifest number: 05F7
Signing time: Sat 23 Aug 2025 10:01:19 +0000
Manifest this update: Sat 23 Aug 2025 10:01:19 +0000
Manifest next update: Sun 24 Aug 2025 10:01:19 +0000
Files and hashes: 1: R9FIW-YXitjJpX1Q3jcy6-oEIFI.roa (hash: UPbldeCj6tFYKOIutM8BR+cGGez6vIB0/3ZKKmpjUZo=)
2: zUNP2FkiOudujXhkipNylejs15o.crl (hash: zYu3yLrNW1PyeSn736um5GK/yOVseXkR95lzL9Im4TM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:1d:47:04:06:7a:be:59:32:6e:20:49:b7:0a:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Validity
Not Before: Aug 23 10:01:19 2025 GMT
Not After : Aug 24 10:01:19 2025 GMT
Subject: CN=8ce0dd240da727dd3aab39cf656da895ddb783f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e9:e5:02:28:ad:df:9e:c8:ef:56:b6:5d:c9:
8f:a4:d3:98:11:4d:f9:ab:0b:69:3e:63:21:fc:36:
94:3d:d5:20:52:3a:a4:12:fb:40:d6:c7:18:96:aa:
3b:58:24:11:e4:39:5e:2f:0d:78:4b:95:05:48:77:
67:e5:83:c5:5a:4a:c5:22:fb:3e:40:5e:6d:d4:d1:
04:8d:82:96:0b:f6:18:84:58:8f:d6:be:09:06:c1:
38:52:64:89:01:84:6f:31:88:8c:a6:02:8f:63:46:
59:82:76:42:40:3f:d7:7c:16:f1:51:ef:d6:d8:05:
53:4f:31:4b:c0:cd:09:bb:87:e7:00:ca:4c:56:bc:
0a:fc:97:79:f4:98:ae:ed:1b:c4:c1:87:1d:cd:49:
2a:e4:d8:c4:38:94:22:ae:56:2d:e6:3c:bf:e1:ec:
e3:89:76:1b:23:08:3d:c7:cb:cb:04:e5:82:3d:ef:
e5:a0:d3:91:8c:14:79:7f:98:bc:c3:bc:11:63:e5:
25:f0:40:d1:61:e8:fc:a2:9b:e2:0c:05:87:c0:71:
e7:54:b7:77:24:70:6d:ae:81:6e:1d:2d:3c:4d:0c:
5a:b0:9b:d9:e5:6b:5f:34:19:cd:fc:d7:89:9e:dd:
6f:84:2e:80:a5:a6:68:91:86:de:3c:65:97:26:cc:
d6:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:E0:DD:24:0D:A7:27:DD:3A:AB:39:CF:65:6D:A8:95:DD:B7:83:F8
X509v3 Authority Key Identifier:
keyid:CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:6e:52:7d:14:7a:c7:46:af:66:14:30:94:c7:96:a8:da:59:
e2:4c:07:6d:99:15:5d:d2:c0:9d:34:1c:1f:45:ba:9f:eb:4e:
ba:ee:a6:f4:8a:a1:0a:11:0c:da:83:1c:36:73:e4:29:8b:93:
90:d0:23:40:78:40:d3:65:39:78:e3:d5:ff:68:e9:75:2f:00:
7f:0d:b6:5f:e1:2c:ab:10:8e:2f:6d:4b:e4:10:f0:44:79:c1:
4d:31:3a:be:8d:8d:47:8c:cc:e4:21:68:97:ad:ae:3e:8f:45:
23:de:46:7e:6e:13:db:08:f8:85:67:cc:7f:1c:1f:ed:44:39:
ec:42:be:f5:b2:1c:40:10:4b:e5:3c:f9:7b:14:4f:42:92:bc:
4b:d7:72:a1:03:e7:85:af:97:07:1e:e3:ac:c0:b0:5c:92:5e:
42:04:01:52:64:9e:84:c2:80:83:94:c9:da:e9:60:64:f9:9b:
d6:63:b1:4f:a9:52:d7:41:30:d2:4d:87:01:c8:a3:ed:f6:a1:
eb:b1:8e:ae:ca:46:f6:b3:42:ec:2d:5e:2a:2b:c0:d6:be:26:
e3:18:82:65:7d:6f:6a:77:94:a0:0c:c0:d8:57:db:22:39:8f:
dc:76:a8:e5:f0:7f:e0:d1:7e:1c:6d:39:59:80:85:9f:4b:ee:
3a:fe:ea:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:35:26 2025 by rpki-client