Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/8ca655-1e8c-4243-88df-47febb0ac259/1/Z3NwPrTqs2ernekaKsQe4yAUAw8.mft
File: Z3NwPrTqs2ernekaKsQe4yAUAw8.mft (raw, json)
Hash identifier: q0Ay2tWpiV4tAvBEJQplyXDmuerv/A4Rr0PSN1wLFjE=
Subject key identifier: E1:71:EB:88:38:86:BF:8E:83:0D:D1:D7:A7:E0:DF:44:B2:7E:C4:75
Authority key identifier: 67:73:70:3E:B4:EA:B3:67:AB:9D:E9:1A:2A:C4:1E:E3:20:14:03:0F
Certificate issuer: /CN=6773703eb4eab367ab9de91a2ac41ee32014030f
Certificate serial: 019875D23249B19F84C363C36AA967AF4BF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z3NwPrTqs2ernekaKsQe4yAUAw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/8ca655-1e8c-4243-88df-47febb0ac259/1/Z3NwPrTqs2ernekaKsQe4yAUAw8.mft
Manifest number: 08E0
Signing time: Mon 04 Aug 2025 16:02:46 +0000
Manifest this update: Mon 04 Aug 2025 16:02:46 +0000
Manifest next update: Tue 05 Aug 2025 16:02:46 +0000
Files and hashes: 1: Z3NwPrTqs2ernekaKsQe4yAUAw8.crl (hash: BQa/fCGMS78ATULV7HNEcqWcA/QVlPa7SeRZuM5enKI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/8ca655-1e8c-4243-88df-47febb0ac259/1/Z3NwPrTqs2ernekaKsQe4yAUAw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/8ca655-1e8c-4243-88df-47febb0ac259/1/Z3NwPrTqs2ernekaKsQe4yAUAw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z3NwPrTqs2ernekaKsQe4yAUAw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:d2:32:49:b1:9f:84:c3:63:c3:6a:a9:67:af:4b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6773703eb4eab367ab9de91a2ac41ee32014030f
Validity
Not Before: Aug 4 16:02:46 2025 GMT
Not After : Aug 5 16:02:46 2025 GMT
Subject: CN=e171eb883886bf8e830dd1d7a7e0df44b27ec475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:41:62:dd:00:cb:3f:cc:de:bb:f4:ad:15:54:
20:ba:09:9c:b4:b4:3f:e5:48:97:36:5e:b6:69:8e:
99:17:92:2d:42:d9:6b:26:37:5c:29:01:10:cb:9b:
3d:63:fa:9b:be:eb:ee:4a:3f:56:0c:a8:61:d3:d6:
d1:2b:15:de:e3:90:41:84:c2:a7:75:dd:9c:61:29:
12:df:9a:35:13:4a:ca:05:fb:2e:22:09:20:7c:7c:
bc:88:06:6a:81:fa:12:ed:4d:91:0d:3b:b0:a5:7b:
28:4e:c0:77:9b:62:9f:a1:0d:3a:b4:9a:cf:da:2f:
34:c6:34:8b:8e:98:0a:86:ee:c0:5f:92:6e:6e:3f:
bb:fc:af:12:ba:5f:eb:9b:29:17:72:d7:cd:01:f3:
60:b5:d4:84:31:b3:62:79:af:19:c0:c0:13:9f:be:
dc:35:77:b3:a0:6a:96:c7:15:73:d8:dc:a1:01:81:
f9:bf:9f:49:f4:32:90:43:14:f0:b9:d6:c7:71:18:
26:59:d7:95:c2:c3:75:f6:2d:f8:81:ab:d4:86:7d:
54:1f:02:c4:9d:1b:eb:f1:92:dd:11:d6:97:9a:18:
91:08:d4:6d:a3:ef:0e:f3:85:23:71:05:d3:9b:be:
fb:d0:4c:70:e3:07:00:e1:58:1b:dd:1c:6e:61:f8:
c3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:71:EB:88:38:86:BF:8E:83:0D:D1:D7:A7:E0:DF:44:B2:7E:C4:75
X509v3 Authority Key Identifier:
keyid:67:73:70:3E:B4:EA:B3:67:AB:9D:E9:1A:2A:C4:1E:E3:20:14:03:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z3NwPrTqs2ernekaKsQe4yAUAw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/8ca655-1e8c-4243-88df-47febb0ac259/1/Z3NwPrTqs2ernekaKsQe4yAUAw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/8ca655-1e8c-4243-88df-47febb0ac259/1/Z3NwPrTqs2ernekaKsQe4yAUAw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:7c:c1:9d:7e:21:60:89:4a:27:79:95:e7:c6:b7:28:8a:a2:
e2:be:24:db:bf:09:0f:58:7e:09:7a:d8:10:cc:01:00:6f:eb:
b4:bb:52:d5:7c:0a:60:ad:ef:8b:d4:b5:6d:66:57:e3:83:b4:
d7:01:1d:8d:40:21:f5:8e:8c:58:56:ef:cb:b4:06:88:35:30:
48:08:d7:27:f4:e4:2e:63:c0:3c:af:9e:59:34:a2:a5:71:6a:
ef:79:f0:e7:4a:f4:9b:68:af:0c:d8:be:d5:0b:06:fc:ca:c5:
b8:e0:e3:fc:b9:05:a9:13:a3:af:92:cf:7c:2f:09:d5:91:80:
20:26:75:94:0c:7c:8e:03:4f:e1:4c:ad:da:67:b7:ef:83:8e:
1b:a7:b3:ce:64:c5:56:6f:1b:04:1b:ee:12:88:2c:f3:28:3e:
2a:17:12:de:2e:63:5a:5e:d3:ea:c5:48:cc:cd:3d:ff:54:d3:
ad:66:47:34:ce:bc:0f:74:fc:60:e0:0d:22:11:ca:17:03:84:
d1:cf:3b:f8:36:f3:ff:cb:83:1b:3a:cf:fb:c6:60:4a:f1:1f:
63:3c:0d:23:06:91:d9:12:c4:6f:9a:65:30:46:2c:77:86:ab:
05:c1:a2:24:e1:c4:46:98:28:6a:d8:78:5d:09:5c:92:7c:c5:
64:c5:c4:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:10:13 2025 by rpki-client