Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
File: Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft (raw, json)
Hash identifier: shfaqajrR9s5ObF4B05MyT3S2JdUM2ksXw1rBm8xt8k=
Subject key identifier: 42:98:33:70:EC:24:95:C7:1F:18:C2:F1:1E:E2:D2:2A:B7:79:C0:40
Authority key identifier: 67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
Certificate issuer: /CN=670ec53068393d90db601ec295e42908525e10c2
Certificate serial: 01988CFDF8E974898C92D5E4033182A2B9E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
Manifest number: 0D0E
Signing time: Sat 09 Aug 2025 04:01:51 +0000
Manifest this update: Sat 09 Aug 2025 04:01:51 +0000
Manifest next update: Sun 10 Aug 2025 04:01:51 +0000
Files and hashes: 1: Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl (hash: KrmkNRamd9Pbk5XHo8CnxkPQb/bgrBKVkQcX/KGNVZ8=)
2: g-_eT5ct7bDp65zymgf5llHzTKc.roa (hash: 6qrqxL/Wtd1D30D40m2/VyQoFXL4FQNDdMtRsZ56brc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 04:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:fd:f8:e9:74:89:8c:92:d5:e4:03:31:82:a2:b9:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=670ec53068393d90db601ec295e42908525e10c2
Validity
Not Before: Aug 9 04:01:51 2025 GMT
Not After : Aug 10 04:01:51 2025 GMT
Subject: CN=42983370ec2495c71f18c2f11ee2d22ab779c040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9b:f1:f8:d4:ba:6d:48:e9:4b:8a:7a:c5:27:
9e:ba:ca:25:9b:46:05:d9:7f:b7:51:48:fd:0b:3d:
b9:b5:f1:b5:1f:9e:26:39:59:ec:00:81:d1:6a:96:
57:0e:99:98:09:71:b6:77:5f:65:01:ba:2f:c9:a1:
bd:79:44:5b:84:4c:ce:e1:2b:d2:b4:56:8e:66:88:
4e:95:6d:c8:18:77:34:5c:87:d9:2d:0e:c1:84:3a:
5f:d9:b9:45:8c:d4:e7:64:53:a2:f0:f8:b7:54:3c:
a5:be:37:e1:c4:ba:58:5b:9e:ce:04:24:0c:04:70:
75:2b:ee:9a:ee:03:54:3b:b3:0d:49:bf:f9:66:4d:
7e:b0:2f:04:5e:33:bb:18:a8:a4:3b:2b:5d:49:c3:
e5:cd:05:80:97:d4:60:3d:2d:1a:ea:07:f7:66:a8:
b0:f8:ff:69:9b:0c:12:c2:29:2b:65:c9:c9:e0:65:
6d:19:9d:7f:af:ee:3b:82:d3:9f:5a:a9:a9:02:d1:
8a:de:8f:a1:35:d1:68:1d:e1:0d:f9:f9:9e:47:a8:
f4:88:6e:38:fc:e1:6f:09:af:fb:06:9e:f6:c0:cc:
39:25:9a:d4:44:37:22:4e:08:1f:89:a0:68:57:93:
8f:da:47:47:25:a7:0f:a6:79:98:8d:3f:70:ed:29:
a4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:98:33:70:EC:24:95:C7:1F:18:C2:F1:1E:E2:D2:2A:B7:79:C0:40
X509v3 Authority Key Identifier:
keyid:67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:ee:1c:68:1d:1a:79:65:06:4e:05:db:26:e3:7d:24:c6:72:
a0:66:19:0c:53:f2:5c:04:26:b4:43:3a:c6:e3:f5:d8:ee:ab:
b6:77:b1:4d:03:d7:f8:89:8e:4f:bc:32:a9:53:39:61:00:f7:
5f:3d:fb:11:5a:8f:6c:9a:a4:90:da:e1:67:7f:cb:87:cc:f7:
b1:bc:75:39:8b:7f:ba:fd:af:9f:dd:5e:a5:ee:cd:94:1c:37:
f3:17:89:34:49:87:da:e8:fd:1c:17:74:df:ba:54:0a:a6:74:
ea:05:91:43:7b:f5:70:d1:69:1c:aa:1c:f2:e4:42:88:cb:8f:
9c:97:10:67:70:10:40:cf:6f:e6:00:d8:eb:7a:13:07:4d:cc:
75:6d:2e:61:aa:96:f3:a0:b0:dc:16:28:87:f8:e4:d7:43:17:
53:5f:73:8b:43:dd:74:f3:62:64:36:94:c5:b3:73:a3:2f:4e:
62:dc:96:4f:77:6e:62:d6:9e:46:61:a4:82:31:59:37:03:35:
ab:38:34:95:b3:ff:c6:43:80:d0:bd:ac:00:ee:9b:27:e1:a1:
f4:a8:80:fb:e9:e6:94:c2:eb:9d:2b:88:2d:67:82:a2:7c:1e:
12:95:6d:cf:61:9d:57:4b:04:d7:9c:70:b6:be:63:78:66:31:
f6:5d:c6:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:37:40 2025 by rpki-client