Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft
File: z431Kt_i_Oaulvb-BdFAieAkfO4.mft (raw, json)
Hash identifier: HdfmIgsYyjX2veEhUSv0/8ighK27IUS/CsHXQbLEdAs=
Subject key identifier: 2D:9E:F4:71:5F:F7:C6:15:E8:DB:F9:B6:0F:97:C2:CD:3C:E6:AD:0D
Authority key identifier: CF:8D:F5:2A:DF:E2:FC:E6:AE:96:F6:FE:05:D1:40:89:E0:24:7C:EE
Certificate issuer: /CN=cf8df52adfe2fce6ae96f6fe05d14089e0247cee
Certificate serial: 01988243322B3EC56BB742E93F84EDA99DA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft
Manifest number: 0DD3
Signing time: Thu 07 Aug 2025 02:01:38 +0000
Manifest this update: Thu 07 Aug 2025 02:01:38 +0000
Manifest next update: Fri 08 Aug 2025 02:01:38 +0000
Files and hashes: 1: TiwKb7nlOPMc1Vnv8DcKupSD5jY.roa (hash: nQWhe0fyffCN2quQfKSQ56T2rfLrYZUxC64fwkrxixE=)
2: z431Kt_i_Oaulvb-BdFAieAkfO4.crl (hash: xBubi/y/OtOiWOYyB4NrxZO/xJTyPecqQCVPbOBQFQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:43:32:2b:3e:c5:6b:b7:42:e9:3f:84:ed:a9:9d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf8df52adfe2fce6ae96f6fe05d14089e0247cee
Validity
Not Before: Aug 7 02:01:38 2025 GMT
Not After : Aug 8 02:01:38 2025 GMT
Subject: CN=2d9ef4715ff7c615e8dbf9b60f97c2cd3ce6ad0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:31:ab:2a:21:87:e3:8e:d3:99:8e:58:cc:eb:
9f:88:c9:dd:22:b2:8c:f9:0c:c5:f7:76:70:a4:36:
7d:38:94:32:ef:1d:bc:af:be:1c:e4:fd:47:ed:32:
56:6b:8a:ed:4e:56:41:41:53:eb:79:97:21:06:64:
16:52:44:1b:a7:3a:8d:69:f2:22:0a:f5:fa:b9:53:
5e:07:a9:61:31:d0:bf:3c:53:db:30:bf:a6:4b:01:
d9:e0:c2:e5:6d:d4:2d:c7:c5:b0:d4:26:e7:82:38:
23:02:f6:74:fb:3d:df:4a:e8:ae:65:bf:8b:b0:74:
9b:c3:3d:00:c8:3c:01:27:7b:9a:ef:4c:7b:2f:1b:
12:97:31:4a:3f:76:68:ef:5b:89:ce:a1:f7:83:0c:
c9:6a:28:2a:62:93:cc:45:93:e6:2a:a3:fe:fd:ae:
8e:ad:66:73:9e:c2:13:af:16:75:6a:59:07:cc:2d:
9c:79:bd:d7:da:8e:ba:5a:2d:23:3f:6a:54:34:67:
d3:a3:df:6f:f1:60:f6:53:ce:dc:88:09:bc:c8:a5:
85:e1:89:2e:a6:ea:3b:86:92:ad:11:10:77:6a:2d:
1e:d2:d9:78:87:c7:2d:4c:6f:d8:8d:a4:06:f4:0a:
9e:dc:d0:68:67:84:35:48:88:dc:3a:b3:28:3d:6e:
36:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:9E:F4:71:5F:F7:C6:15:E8:DB:F9:B6:0F:97:C2:CD:3C:E6:AD:0D
X509v3 Authority Key Identifier:
keyid:CF:8D:F5:2A:DF:E2:FC:E6:AE:96:F6:FE:05:D1:40:89:E0:24:7C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:e0:30:4d:c4:f6:71:63:28:36:fd:b1:87:f3:47:cf:ce:74:
e9:48:78:5d:4c:74:d5:ad:ba:9a:0a:a9:e1:a1:1c:ef:75:53:
18:9e:ee:a1:c0:bd:ab:20:e0:70:7e:f1:7b:ac:ab:43:88:06:
9a:5e:f9:c7:08:c6:61:f8:3d:3e:5b:b9:97:41:9d:95:da:6b:
ce:5c:94:41:f6:61:ac:47:30:3c:2b:34:a3:31:e2:94:d2:34:
30:a9:79:9d:c3:70:c1:7d:d7:f1:aa:20:0d:e4:a8:79:46:23:
64:33:91:07:e8:de:01:6b:3c:dd:f8:f4:c2:fa:9f:a8:f1:3f:
dc:62:aa:73:62:ba:6b:d2:f7:0e:b4:75:e3:d7:68:60:1f:65:
02:98:ca:c7:f0:02:81:07:a6:51:a5:16:d6:8e:e2:59:92:1b:
0b:89:b7:3d:bb:a0:01:80:7d:ba:cc:da:6b:5a:b5:39:a8:f7:
8e:5a:91:e6:b1:fb:1a:7a:1b:b5:66:ce:5b:c4:e1:37:38:70:
cb:e8:27:41:6c:47:e9:e9:f8:aa:a5:32:10:22:63:1d:64:a0:
8d:8c:e7:e4:ea:04:e8:03:97:3f:23:c9:8e:1c:01:6c:b9:bf:
35:4f:06:9d:d3:f1:72:26:b5:83:a1:37:9b:cc:1e:4b:3c:68:
b0:b4:1a:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:24:13 2025 by rpki-client