Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/e2f4e1-a70a-4ca1-921c-594c69fb0711/1/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.mft
File: sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.mft (raw, json)
Hash identifier: 685rSigQY1NToFlg2cBa2LAN5x2HlgS8ArUpppy5md0=
Subject key identifier: 1F:7E:2D:0A:DB:1B:AA:06:A5:0C:1D:8F:24:54:E3:D1:AE:88:42:04
Authority key identifier: B1:9D:46:A6:A3:36:35:3A:90:F1:74:FA:99:0F:C2:24:12:01:EB:1C
Certificate issuer: /CN=b19d46a6a336353a90f174fa990fc2241201eb1c
Certificate serial: 01988C214294287D6D39C80DC86FA01C9867
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/e2f4e1-a70a-4ca1-921c-594c69fb0711/1/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.mft
Manifest number: 05AA
Signing time: Sat 09 Aug 2025 00:00:46 +0000
Manifest this update: Sat 09 Aug 2025 00:00:46 +0000
Manifest next update: Sun 10 Aug 2025 00:00:46 +0000
Files and hashes: 1: sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.crl (hash: w1Dfjunu08fWazJTfuQMuzvkYeYwcy54mWfg0H6ZJfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/e2f4e1-a70a-4ca1-921c-594c69fb0711/1/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/e2f4e1-a70a-4ca1-921c-594c69fb0711/1/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:21:42:94:28:7d:6d:39:c8:0d:c8:6f:a0:1c:98:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b19d46a6a336353a90f174fa990fc2241201eb1c
Validity
Not Before: Aug 9 00:00:46 2025 GMT
Not After : Aug 10 00:00:46 2025 GMT
Subject: CN=1f7e2d0adb1baa06a50c1d8f2454e3d1ae884204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:14:89:70:97:ff:a8:a8:90:43:1d:32:a5:5e:
cd:27:40:a1:87:4f:af:48:08:c6:7a:13:a1:85:a8:
25:f5:ea:c3:15:32:87:43:e4:11:11:fb:d6:ba:91:
7c:11:5c:c2:d2:ad:6b:8c:06:af:c1:a4:da:18:8f:
a4:76:8f:92:24:ad:4f:44:a1:9a:a0:15:be:01:1a:
6c:d9:84:5f:8d:25:0c:17:93:f7:83:1f:65:9f:61:
06:ce:a0:96:21:9a:a1:ba:cf:af:51:3d:78:55:89:
43:b9:2e:7f:f1:d1:f1:7e:d1:b0:28:ad:5c:d1:66:
d9:4c:ec:5d:ae:22:10:16:fa:90:76:89:a3:5b:d1:
ae:0d:08:36:a2:28:23:f8:cb:d9:a0:21:f7:73:e6:
76:bf:21:eb:4a:8a:dd:ca:4e:de:74:9b:71:1f:88:
e9:46:be:cc:90:f8:f1:04:ab:aa:11:f8:ab:b3:1f:
82:79:59:59:82:3d:4d:53:31:ff:77:98:30:c1:29:
82:0c:16:fb:c0:66:67:a7:e7:13:d7:e0:60:17:01:
21:48:1d:89:8b:6e:8d:34:4b:b5:c4:cd:6d:71:17:
df:f0:d2:1b:dd:79:a2:ce:c3:7d:78:2c:a8:bd:33:
77:e9:79:c1:36:13:b6:66:e5:04:42:41:3b:ac:95:
3a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:7E:2D:0A:DB:1B:AA:06:A5:0C:1D:8F:24:54:E3:D1:AE:88:42:04
X509v3 Authority Key Identifier:
keyid:B1:9D:46:A6:A3:36:35:3A:90:F1:74:FA:99:0F:C2:24:12:01:EB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/e2f4e1-a70a-4ca1-921c-594c69fb0711/1/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/e2f4e1-a70a-4ca1-921c-594c69fb0711/1/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:fa:e1:84:c9:65:bc:1d:24:42:27:5b:c9:a4:ab:22:49:96:
eb:ce:a3:14:bf:57:14:3d:58:bc:c7:f2:83:cf:56:47:62:c2:
c4:c4:78:ea:17:d7:6c:bb:8b:34:af:55:d9:9d:18:95:fb:49:
8f:79:b0:b2:6d:4b:d1:a0:fc:ed:f2:26:4c:57:01:50:fc:b0:
83:45:4d:ed:f2:81:b5:d6:89:5b:66:11:66:52:4c:9f:e5:2b:
61:37:cf:2a:f0:00:a0:5b:bf:93:0a:1f:79:94:36:eb:48:1c:
dd:00:b7:fd:e7:39:4c:cb:b9:7a:aa:01:69:67:a5:aa:78:37:
56:fa:71:a3:41:d2:04:15:71:b5:05:40:ae:20:e9:7f:1e:b9:
59:91:36:2d:c0:40:78:bd:d2:5e:e9:3b:9b:5d:ee:4d:ab:74:
ff:05:ac:9b:c6:53:27:bf:16:26:4e:37:cf:33:25:72:ef:6a:
db:92:37:90:0a:6c:43:0b:06:3d:70:88:74:ca:4a:4a:de:45:
5c:ce:94:f9:0f:eb:14:c6:49:31:ce:aa:63:84:d3:e3:bc:52:
c4:0d:5c:fa:22:20:04:85:52:f0:99:f3:f9:35:ab:5f:ba:5c:
05:2e:cd:b0:24:d1:b1:36:3d:77:4f:59:6a:40:36:c6:ed:f8:
42:cf:2e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:34:28 2025 by rpki-client