Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
File: zl1FYESPeKTc3LeRoH2tIWOgjN8.mft (raw, json)
Hash identifier: /Twsp+MViLcY5jV4zHVhNrKsErM9Fxn5Xewwxjko4kA=
Subject key identifier: 4B:6A:07:7D:9E:AB:46:39:62:DB:ED:BC:EF:57:9C:41:A4:CA:94:C2
Authority key identifier: CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
Certificate issuer: /CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Certificate serial: 019885441F17C5C4F4A1664B08546E79DB29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
Manifest number: 15B3
Signing time: Thu 07 Aug 2025 16:01:30 +0000
Manifest this update: Thu 07 Aug 2025 16:01:30 +0000
Manifest next update: Fri 08 Aug 2025 16:01:30 +0000
Files and hashes: 1: DnVFEpYRkYdsvx6fTEjYM0mnXYg.roa (hash: Q/XnpIbexx4X2BOItVZgFWxgUIF3KGLUNsRlADlMLPI=)
2: zl1FYESPeKTc3LeRoH2tIWOgjN8.crl (hash: 0LEXZ+snmnu5z4B1SYyWnD8edNVcsSudd/JJoudfW6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:85:44:1f:17:c5:c4:f4:a1:66:4b:08:54:6e:79:db:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Validity
Not Before: Aug 7 16:01:30 2025 GMT
Not After : Aug 8 16:01:30 2025 GMT
Subject: CN=4b6a077d9eab463962dbedbcef579c41a4ca94c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:18:41:a0:c8:1c:34:17:84:37:8d:1f:51:24:
6b:e1:6d:e8:9c:04:92:ba:55:dc:e7:73:6c:b4:15:
2b:a0:d7:eb:67:50:b8:ea:4c:56:14:3c:93:8e:65:
6e:a8:a5:b0:03:e6:9b:c5:aa:d1:fc:00:b0:67:aa:
c9:0f:ae:32:b5:d0:31:49:18:6c:ea:1b:2e:d1:2b:
7d:5e:6a:fe:00:1c:7f:cf:e8:9e:84:11:a4:92:c8:
03:6b:16:45:d5:4e:a8:66:c2:b1:a3:63:32:d1:dc:
91:2a:96:11:c1:37:c2:99:7d:56:ca:3b:ce:5d:85:
58:cf:ea:a5:34:94:94:62:30:da:0e:ee:df:df:7f:
66:84:4a:79:b8:0d:09:6f:f6:45:3e:f4:66:95:9a:
c7:43:4d:03:77:49:a4:e8:e0:75:42:e9:b7:70:3c:
86:dc:47:43:ca:34:eb:a3:40:54:62:d1:ea:62:eb:
32:90:a5:1d:64:f4:09:9b:04:98:aa:40:cc:20:8f:
ac:08:50:36:24:68:6c:a5:e0:a0:03:ba:4e:e9:a2:
ac:0c:43:f7:58:84:a0:40:71:40:ac:be:19:e7:2f:
1a:38:85:e0:49:2d:60:73:92:48:30:d4:03:93:79:
8f:59:cd:da:b8:7b:3b:ab:59:f3:4c:c1:a0:27:f5:
c4:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:6A:07:7D:9E:AB:46:39:62:DB:ED:BC:EF:57:9C:41:A4:CA:94:C2
X509v3 Authority Key Identifier:
keyid:CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:9a:55:3d:5d:03:7b:8b:8e:0a:d4:96:9f:62:dd:d3:1b:09:
36:91:8f:30:af:36:31:88:e4:71:63:b5:dd:81:d6:a3:c9:34:
dc:94:c4:74:10:d1:5e:c4:59:04:76:eb:1a:d6:5d:dc:7d:d3:
ff:ad:44:18:90:0e:13:61:50:dc:35:6c:06:a9:54:f7:6e:74:
75:a2:da:b3:db:dc:52:a5:7f:47:36:e2:08:de:5a:50:27:37:
9e:58:7f:d9:33:63:64:ac:1a:90:45:05:5d:f6:2c:ae:c1:26:
a6:cd:b7:25:c6:b2:59:e4:14:3c:aa:cc:93:82:21:76:ea:a5:
99:5f:02:d3:1c:52:0c:fa:0d:92:c4:1a:70:40:b6:fd:d2:b1:
37:85:c0:72:cd:14:4a:67:00:85:48:90:a6:23:0b:94:35:b2:
6a:08:d6:f5:63:89:ba:09:6b:c3:6c:a0:1a:99:ce:0a:03:92:
f0:e8:e4:1b:c5:dd:eb:b6:bb:4a:84:7c:40:9d:40:23:54:6d:
df:a2:01:9b:92:b9:59:bc:3b:5d:24:87:ed:96:5b:bf:ad:b8:
13:00:7b:a2:53:0f:92:6f:a0:cf:33:c7:62:74:06:c2:a2:f4:
af:2c:0b:20:9e:fe:8d:d2:b2:c9:b4:5e:ea:a7:7c:de:37:92:
de:7f:76:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 00:42:13 2025 by rpki-client