
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
File: zf9bPNry6tG8MwlBG_lJLNmHr7o.mft (raw, json)
Hash identifier: n/PlrQaQmftPuSMbTgvoDWeban1dOgJFWqCsIR1abU0=
Subject key identifier: 4E:57:2C:DF:F7:8B:74:5F:B0:2A:B2:B5:A9:92:2F:9D:D0:90:D0:93
Authority key identifier: CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
Certificate issuer: /CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Certificate serial: 01987AF7300C6BFB0FA72D5E428279E1170F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
Manifest number: 0475
Signing time: Tue 05 Aug 2025 16:01:16 +0000
Manifest this update: Tue 05 Aug 2025 16:01:16 +0000
Manifest next update: Wed 06 Aug 2025 16:01:16 +0000
Files and hashes: 1: k3TRYEDrQBrO6eEJRbpRNKXsKDY.roa (hash: 4LCjfvPAnVknZ+aHhkSXzNTjWeSMT085uGaEj2C566Q=)
2: zf9bPNry6tG8MwlBG_lJLNmHr7o.crl (hash: Ao1VUn5evk/OqcJ8FJT8flNKgN5jn6B8IHQU6WWKvEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:f7:30:0c:6b:fb:0f:a7:2d:5e:42:82:79:e1:17:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Validity
Not Before: Aug 5 16:01:16 2025 GMT
Not After : Aug 6 16:01:16 2025 GMT
Subject: CN=4e572cdff78b745fb02ab2b5a9922f9dd090d093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5b:fe:4d:d1:1d:d7:e9:35:78:b2:d7:a9:dd:
a8:f6:1a:2e:94:33:26:40:64:2a:97:66:1b:36:d0:
3d:66:31:f1:2f:ac:18:e7:0a:59:9f:ea:9e:6b:47:
0c:d5:69:90:81:24:78:a3:be:a2:3f:69:e6:0b:ab:
f6:ae:a9:ab:4d:24:35:02:ef:f6:6a:16:fa:72:4a:
88:1e:f1:69:59:f3:30:ce:9b:c1:b6:21:de:e9:e5:
f5:f9:4f:e8:b3:0f:c1:74:98:0e:68:85:49:31:ce:
31:5e:26:54:db:58:69:ac:3e:e9:1b:1d:fe:6c:3e:
41:07:a0:b2:67:76:74:ed:86:56:37:1a:dc:d3:dc:
01:4b:1d:9f:78:2a:b2:61:d2:4e:c2:75:57:9a:b0:
65:4c:1b:81:d7:de:66:a0:3c:e7:81:6f:1d:4f:f0:
2f:b6:aa:a1:4b:12:dc:0a:95:e5:75:c0:37:c2:21:
29:d6:29:34:9a:27:95:19:78:91:2d:f3:d9:4a:cb:
0a:4e:be:a4:ce:f8:b4:3a:46:83:da:39:b3:0a:ec:
99:f4:0b:f7:84:13:de:70:cc:84:0e:7a:e9:31:a2:
c6:1e:8a:bc:47:46:22:28:62:3f:80:01:67:b1:cf:
3a:1b:a2:6c:26:1d:fe:c4:c2:b8:c6:d8:1b:be:45:
3c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:57:2C:DF:F7:8B:74:5F:B0:2A:B2:B5:A9:92:2F:9D:D0:90:D0:93
X509v3 Authority Key Identifier:
keyid:CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:ea:04:95:65:e9:52:25:73:da:68:6f:d1:a0:76:c9:b3:65:
4e:bd:f0:29:3b:00:85:42:ea:43:93:3b:a4:17:d8:52:5e:ce:
af:0e:7f:f7:cb:aa:9b:40:cb:94:e0:1e:b4:9e:5d:7b:cc:4d:
d6:98:4d:ce:b9:c0:45:97:dd:95:cd:ac:97:0c:a4:13:33:c3:
d9:df:4f:60:b0:9b:6f:99:4f:f1:c7:40:f3:9e:5a:01:08:bb:
e2:dc:96:18:be:c5:39:05:f9:f6:ed:32:f5:79:ac:dd:5e:3b:
a4:7f:85:ae:fd:30:92:12:27:78:e7:fe:27:ca:8f:4a:ad:1c:
af:cf:71:d8:4d:98:2f:9a:e5:39:f9:03:c1:96:80:11:25:cc:
ce:f7:09:af:25:8d:a3:46:a3:7d:ee:3e:be:45:35:fa:20:3a:
91:21:b9:2c:9c:e1:9c:a6:ea:74:b4:4f:0e:e8:25:cc:d8:82:
b0:86:69:c9:a4:da:67:6a:72:45:32:8b:a4:f9:ed:58:c4:da:
e1:d4:9e:ce:fe:5e:e5:a5:df:ad:4b:1e:01:17:f9:4b:3f:21:
66:9f:0e:3d:59:df:42:1c:a5:4b:44:66:31:81:36:d3:1c:9b:
a9:59:c7:4b:7e:e8:77:26:24:29:a3:ec:24:ee:5f:ac:c6:05:
81:de:d5:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 20:20:33 2025 by rpki-client