Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
File: zT5kktRzFSDB7tvNopZ5UArAg6s.mft (raw, json)
Hash identifier: tjpTlp6Ou2pR2D4JlsoTkfWijAeyzslNZHg0NeOv1pc=
Subject key identifier: 1C:D6:C2:70:5E:69:6E:5F:1B:20:E2:76:D8:CD:BC:06:D1:35:43:DF
Authority key identifier: CD:3E:64:92:D4:73:15:20:C1:EE:DB:CD:A2:96:79:50:0A:C0:83:AB
Certificate issuer: /CN=cd3e6492d4731520c1eedbcda29679500ac083ab
Certificate serial: 019893DAF18098EA58F0E12B33891ED284EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
Manifest number: 04F5
Signing time: Sun 10 Aug 2025 12:00:56 +0000
Manifest this update: Sun 10 Aug 2025 12:00:56 +0000
Manifest next update: Mon 11 Aug 2025 12:00:56 +0000
Files and hashes: 1: COOSirhVHTLVRSIt4NAQH8L8vr4.roa (hash: tu1lQ0uqkhi4vcEmV6leM3hmh+odZkH5lyLz+npAcNE=)
2: zT5kktRzFSDB7tvNopZ5UArAg6s.crl (hash: W2SlwCZHQJUmBUbQkVrkg4j8Yv/ZdBBdZi5d7ScJLtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 12:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:da:f1:80:98:ea:58:f0:e1:2b:33:89:1e:d2:84:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3e6492d4731520c1eedbcda29679500ac083ab
Validity
Not Before: Aug 10 12:00:56 2025 GMT
Not After : Aug 11 12:00:56 2025 GMT
Subject: CN=1cd6c2705e696e5f1b20e276d8cdbc06d13543df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:86:8a:a6:0a:0e:64:f4:82:2d:7d:89:37:e8:
be:f3:fd:fb:72:76:14:05:62:04:95:e0:04:aa:04:
2f:62:85:38:a6:69:f4:3c:ed:d7:68:aa:31:80:51:
f0:6a:a3:cc:62:93:66:6c:ab:cc:5d:0a:35:65:e2:
a2:7a:72:03:d8:71:4f:05:98:90:c1:c0:f1:be:57:
83:96:bc:a0:d9:ce:7b:8d:63:96:6b:62:51:4e:e2:
64:21:59:51:36:f0:63:57:4b:91:62:af:45:6b:2c:
b8:26:33:7d:82:af:18:21:8f:b7:ec:5d:b6:9a:64:
f2:97:5b:9c:11:cd:a0:23:b9:8d:55:4d:f8:b5:51:
2f:d1:a3:ff:66:09:8a:95:4a:0d:83:f3:92:8e:f9:
37:f7:e0:0b:08:8d:ad:b2:73:9d:29:91:ca:cb:b3:
2d:51:a2:3d:c7:de:3e:e4:6d:df:88:2a:1c:02:84:
15:58:8e:f9:88:1b:e5:6a:95:7f:41:69:ce:c0:4e:
9d:ac:ae:a4:70:5e:4a:9d:b5:c4:7f:b8:49:13:ff:
3a:63:fb:e0:14:0c:a2:1a:73:4e:bb:1d:6e:64:1b:
0e:1e:ae:52:e6:76:46:e5:eb:03:7a:8f:df:42:d2:
2e:74:49:ec:ab:4b:46:4b:d2:ba:af:3e:9f:39:fd:
2b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D6:C2:70:5E:69:6E:5F:1B:20:E2:76:D8:CD:BC:06:D1:35:43:DF
X509v3 Authority Key Identifier:
keyid:CD:3E:64:92:D4:73:15:20:C1:EE:DB:CD:A2:96:79:50:0A:C0:83:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:ec:0a:d0:e4:c1:92:39:0c:1e:1f:38:6d:02:75:b3:2f:cf:
26:f0:45:29:6b:01:b7:53:46:d9:14:12:66:64:d0:2a:d6:6a:
ce:ce:37:44:94:d0:51:df:a7:90:ec:af:d1:bd:90:ab:fa:b3:
00:2f:be:bc:78:90:fc:23:e4:5e:af:57:b9:4e:3f:a7:4c:06:
16:8b:90:45:12:13:7f:b2:e5:c9:94:5c:8a:f0:b8:d6:3a:7b:
c8:44:f2:2f:52:d1:71:5c:1a:cb:9e:a5:19:85:40:a4:3a:a8:
63:53:b7:90:ae:20:ac:3c:2b:92:5c:71:2e:e1:56:86:37:4c:
da:0e:43:bf:bc:94:59:b4:ec:0b:37:cd:c4:26:c0:15:71:03:
26:f8:68:46:6c:7a:8c:91:d0:2c:14:7c:95:97:cb:7f:db:61:
d5:42:27:05:06:b7:d3:6e:65:e9:f3:64:68:ce:12:71:aa:37:
a4:a5:39:3a:ee:9d:08:b0:87:35:83:5d:fc:5c:4d:3d:aa:56:
cd:d2:8d:be:c1:9b:62:d2:b0:03:3a:e4:60:f4:b1:5d:47:42:
51:fd:cf:6a:ac:80:87:51:48:1d:4f:6f:30:84:09:77:b8:1e:
77:8b:51:7b:02:23:db:f0:0a:1d:d3:ef:dd:01:22:ea:e1:c5:
99:69:4c:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 18:16:20 2025 by rpki-client