Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
File: 0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft (raw, json)
Hash identifier: xHQiVS84/wNXakeYY4TYIrPiHsAvHuaOxvy1u2ncSx0=
Subject key identifier: B4:DD:F3:6C:89:90:F7:8F:33:1D:9A:2C:DA:91:4E:3F:8E:B3:F3:71
Authority key identifier: D1:99:3F:78:CA:E4:45:9A:9B:9E:26:89:AD:30:F0:BC:44:CC:67:24
Certificate issuer: /CN=d1993f78cae4459a9b9e2689ad30f0bc44cc6724
Certificate serial: 0198D661237C64A4177216167A4D13EAB52F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
Manifest number: 039E
Signing time: Sat 23 Aug 2025 10:02:26 +0000
Manifest this update: Sat 23 Aug 2025 10:02:26 +0000
Manifest next update: Sun 24 Aug 2025 10:02:26 +0000
Files and hashes: 1: 0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl (hash: E/BQyfXzTnac3sOeUPttQAw/5rb3hoVPPkc+bEboy9M=)
2: 5KVSG33DPZC1TKz5q9NlgQSJY8U.roa (hash: GwSKpHIjNmK499qIKezXAfYrejsXUCWzE4VXptKGrTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:23:7c:64:a4:17:72:16:16:7a:4d:13:ea:b5:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1993f78cae4459a9b9e2689ad30f0bc44cc6724
Validity
Not Before: Aug 23 10:02:26 2025 GMT
Not After : Aug 24 10:02:26 2025 GMT
Subject: CN=b4ddf36c8990f78f331d9a2cda914e3f8eb3f371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:26:22:89:7c:98:7b:f3:3b:17:84:fb:85:21:
c1:4c:e3:4a:79:80:96:c5:0e:7d:62:5d:a5:b5:89:
b8:f1:78:b2:54:a9:e0:65:01:fe:6a:86:06:af:f4:
4d:3e:cd:c7:eb:db:9e:8d:72:98:d7:34:5a:f6:83:
a5:a4:23:06:b0:1b:0d:37:1b:e5:a6:a1:b5:5c:e3:
1b:df:cd:09:1a:6f:d7:4d:96:11:e8:7b:d6:00:6a:
dc:4c:ca:54:4c:82:6f:f3:99:59:56:cf:57:2d:41:
ee:3e:8f:a1:ed:6c:08:cf:6f:dc:7e:15:84:87:54:
8c:5d:dc:4d:15:6c:34:6b:82:b9:54:90:b9:df:ed:
38:ed:3c:fb:40:19:a4:58:47:ea:53:af:ae:2f:da:
c5:f1:dd:b9:af:47:b8:1f:72:0c:a6:f4:1a:16:2d:
a2:8e:37:2e:10:49:da:bb:dc:07:fb:b0:77:56:06:
03:d6:59:9b:f6:cf:a0:63:88:1e:95:0f:81:09:ea:
41:7d:47:d1:ae:71:c3:5b:dc:9e:f2:a1:94:b9:bc:
fd:ea:5d:db:ad:92:01:dc:6e:56:b3:eb:93:0a:40:
b0:80:b8:20:a8:f6:7a:4a:fd:d5:a9:d2:01:8a:70:
69:c0:4d:4f:47:2c:b0:7a:8b:9f:c4:3b:8c:52:9b:
5b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:DD:F3:6C:89:90:F7:8F:33:1D:9A:2C:DA:91:4E:3F:8E:B3:F3:71
X509v3 Authority Key Identifier:
keyid:D1:99:3F:78:CA:E4:45:9A:9B:9E:26:89:AD:30:F0:BC:44:CC:67:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:e3:04:d7:29:6b:cd:1c:e3:f4:e8:41:94:be:4b:b5:47:d6:
73:1b:3f:20:65:8d:b4:a0:31:f0:66:fd:47:ce:a5:e9:8e:9e:
f0:74:46:17:a6:f6:d9:b6:40:69:76:f7:4a:f5:1f:20:af:88:
ad:3d:32:1b:07:aa:9e:fe:bd:d0:9f:16:5c:a2:d5:02:0f:66:
69:43:0b:44:4f:2b:37:63:a1:0a:54:7a:d5:6c:4d:f4:be:e4:
90:a8:0d:9a:2b:09:ea:97:86:dd:13:cc:a2:f0:a2:15:8c:d3:
6d:22:0a:a1:c6:33:f7:07:27:f8:fe:d7:c7:3c:00:a2:52:35:
4d:be:b9:cf:d7:21:dc:f8:f7:b8:75:f6:f7:1d:db:d9:2f:0d:
80:11:9e:17:68:6d:26:4f:bc:21:fe:01:64:20:84:ba:69:44:
2d:e8:71:39:d1:72:5d:83:de:c8:fe:2c:25:57:20:ae:12:18:
38:d9:62:81:78:dc:2c:c0:04:21:0e:81:65:19:a1:75:67:2f:
aa:e5:45:9d:8b:0f:38:59:ad:b1:03:08:4c:51:cc:30:ee:e6:
cb:ce:fc:43:12:27:39:b4:06:13:c2:7f:56:cd:7e:e0:d6:52:
ed:c8:ad:b7:7b:d9:51:eb:6b:07:96:6c:81:05:6a:0e:b3:c2:
66:33:a4:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:23:50 2025 by rpki-client