Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft
File: z431Kt_i_Oaulvb-BdFAieAkfO4.mft (raw, json)
Hash identifier: SYCqIECmiIlGL0/WdTFwxf82/pfggISzoW2WZutbk98=
Subject key identifier: F3:54:5A:F7:F4:D5:01:FD:D4:7E:30:6D:7C:51:47:6D:5C:4D:34:D0
Authority key identifier: CF:8D:F5:2A:DF:E2:FC:E6:AE:96:F6:FE:05:D1:40:89:E0:24:7C:EE
Certificate issuer: /CN=cf8df52adfe2fce6ae96f6fe05d14089e0247cee
Certificate serial: 019771F5CE384FA85FF1C6C48CEB2CDEBFC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft
Manifest number: 0D46
Signing time: Sun 15 Jun 2025 05:00:23 +0000
Manifest this update: Sun 15 Jun 2025 05:00:23 +0000
Manifest next update: Mon 16 Jun 2025 05:00:23 +0000
Files and hashes: 1: TiwKb7nlOPMc1Vnv8DcKupSD5jY.roa (hash: nQWhe0fyffCN2quQfKSQ56T2rfLrYZUxC64fwkrxixE=)
2: z431Kt_i_Oaulvb-BdFAieAkfO4.crl (hash: KndbI61NX/+LxFnasoL2VCryGBbHJgqDn59smxLzBOk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:f5:ce:38:4f:a8:5f:f1:c6:c4:8c:eb:2c:de:bf:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf8df52adfe2fce6ae96f6fe05d14089e0247cee
Validity
Not Before: Jun 15 05:00:23 2025 GMT
Not After : Jun 16 05:00:23 2025 GMT
Subject: CN=f3545af7f4d501fdd47e306d7c51476d5c4d34d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:69:29:35:3b:db:03:27:a1:51:4f:f1:05:ba:
d5:27:15:0d:ce:72:a6:74:33:fb:e9:87:47:17:20:
d3:fc:f1:9e:3d:96:f6:36:4f:d4:55:bc:fe:24:39:
b3:37:3f:e6:df:21:21:5c:07:04:ed:4d:14:2a:25:
7f:5d:a6:fb:29:a7:60:c4:aa:49:f4:97:25:93:7d:
8b:9a:d2:ab:92:ca:46:22:cb:d5:43:99:b9:6c:c7:
64:f8:e3:4c:c6:f4:f7:d6:fd:68:98:d0:b4:5a:47:
0a:95:0a:e5:ae:be:7a:cc:fe:bc:b7:a6:c1:d8:8a:
8e:9c:82:be:d9:50:18:a2:e7:d0:66:03:7c:d2:07:
6c:ee:81:a6:d6:53:11:a8:eb:f4:23:d1:d9:78:02:
d8:f4:c9:08:f3:a9:45:50:86:29:9e:09:9e:2f:5c:
cf:ed:0c:aa:06:94:24:1a:2e:e6:c8:52:ed:9d:9b:
94:cb:2c:95:2c:c9:6e:23:17:55:fb:a3:7a:97:a7:
4c:e8:c7:c5:4e:fd:00:a7:d0:93:51:15:a6:db:57:
07:82:3b:dc:c1:2c:bd:8a:2b:6a:f7:0e:87:d2:e1:
d3:7d:43:16:b8:b6:4f:29:4e:cb:bd:52:35:96:fb:
3b:e8:a8:7c:1b:87:aa:4d:88:3e:7b:50:21:35:57:
b0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:54:5A:F7:F4:D5:01:FD:D4:7E:30:6D:7C:51:47:6D:5C:4D:34:D0
X509v3 Authority Key Identifier:
keyid:CF:8D:F5:2A:DF:E2:FC:E6:AE:96:F6:FE:05:D1:40:89:E0:24:7C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:86:61:fa:c6:15:fb:f4:7b:74:8a:7d:bf:11:b6:09:c0:54:
12:b8:8d:22:7d:92:de:d5:40:ef:7d:49:ee:a1:05:59:a7:17:
1e:a7:a0:04:16:8f:6a:f1:fe:83:ac:fb:1a:e5:88:ce:6c:e6:
ab:ae:f2:11:9a:12:2d:e7:ac:ac:10:15:f8:29:1a:a6:c7:ab:
19:d0:5d:ee:89:a5:7f:49:cc:2b:cc:1e:13:19:34:e4:d1:bb:
fd:e9:b7:d2:83:32:f5:92:26:70:77:f4:26:a3:32:63:10:c1:
b7:d1:62:ae:0d:53:30:9b:68:e9:7f:31:5b:e2:17:f6:27:9e:
45:a2:33:19:6b:df:3c:02:a3:69:5e:ca:d8:b7:26:7f:2a:60:
f9:e0:6b:92:4a:eb:a0:b2:3b:15:3f:a1:22:98:35:55:b1:b8:
39:15:0f:e3:63:c7:21:e1:fb:61:48:e9:d2:ec:ea:e0:55:6c:
db:87:00:7c:dd:16:7c:de:88:c6:77:01:34:24:f8:5a:f0:2b:
2b:76:e8:7d:08:f0:4b:a9:14:89:18:57:49:82:cc:cc:3d:d7:
80:ac:4b:4e:f0:4d:3f:15:cd:18:43:3e:7d:ac:3a:02:14:fa:
e3:93:cd:a3:53:5f:89:b5:c6:2a:2a:0c:81:b6:f9:dc:be:8f:
bd:24:bb:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 12:55:55 2025 by rpki-client