
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.mft
File: zfy95jLRBvqtmMLBiVqHfKYBUho.mft (raw, json)
Hash identifier: Ew+2dl7OCZW7k6i5PKlKyAancMBBwZS5YUMH0TmE5I4=
Subject key identifier: 5B:5E:72:B8:0D:46:79:CD:F3:E5:FA:9C:A1:B4:0F:B4:E2:C4:35:06
Authority key identifier: CD:FC:BD:E6:32:D1:06:FA:AD:98:C2:C1:89:5A:87:7C:A6:01:52:1A
Certificate issuer: /CN=cdfcbde632d106faad98c2c1895a877ca601521a
Certificate serial: 01987ED41DC370A66781A52E97E8A63899D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zfy95jLRBvqtmMLBiVqHfKYBUho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.mft
Manifest number: 15B0
Signing time: Wed 06 Aug 2025 10:01:27 +0000
Manifest this update: Wed 06 Aug 2025 10:01:27 +0000
Manifest next update: Thu 07 Aug 2025 10:01:27 +0000
Files and hashes: 1: 3OCzpqqGOlJ3RRPa9qcY9JxjkUo.roa (hash: InQFvxlV7A4HcZ9T6xcxQF/B13Yg7udCj77rsg046YE=)
2: zfy95jLRBvqtmMLBiVqHfKYBUho.crl (hash: PHg+XYCsqBy7J8XP1BmoOVfyucF51aIHs3G8AGN3k4M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.mft
rsync://rpki.ripe.net/repository/DEFAULT/zfy95jLRBvqtmMLBiVqHfKYBUho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:d4:1d:c3:70:a6:67:81:a5:2e:97:e8:a6:38:99:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdfcbde632d106faad98c2c1895a877ca601521a
Validity
Not Before: Aug 6 10:01:27 2025 GMT
Not After : Aug 7 10:01:27 2025 GMT
Subject: CN=5b5e72b80d4679cdf3e5fa9ca1b40fb4e2c43506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:41:92:0c:e5:f0:f1:56:83:15:4b:c1:f5:c5:
75:a4:0c:b7:14:1d:f0:a3:35:8d:2a:e8:cc:af:0d:
9d:9b:aa:8b:1d:35:f3:57:0f:7c:70:63:91:86:8c:
28:6b:6f:49:a8:9a:60:dd:1e:07:e2:f4:cc:17:c9:
ff:3b:f6:87:6a:4c:94:2d:b5:da:6a:bc:43:58:00:
df:fb:c4:e1:de:fc:38:dd:ab:e0:59:a8:2a:cd:4b:
8f:10:0f:3c:f0:1c:37:c2:51:00:19:05:83:de:09:
fd:77:b0:57:f0:b2:e1:75:39:9b:92:4e:0e:71:90:
68:fb:11:1f:d4:12:93:bc:df:9d:ff:de:5d:b7:e6:
c5:18:e8:e9:e1:10:dd:f0:51:f4:6c:4c:b1:14:57:
60:06:24:32:ac:60:bb:25:3a:27:7f:46:ff:09:2d:
6d:aa:23:67:3e:94:b1:61:59:78:64:f7:2f:be:d5:
98:27:e2:30:92:b1:0f:d0:93:3d:85:51:fb:ee:7f:
1c:50:61:2d:94:79:d5:db:06:b7:40:ec:fe:55:82:
58:3b:67:59:1a:27:99:13:42:cf:9e:82:73:22:dc:
06:fe:d2:e3:34:a8:ad:e8:cf:b4:a2:03:5c:05:6c:
6b:1f:da:25:de:af:f3:e0:ec:99:01:34:3d:4f:33:
71:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:5E:72:B8:0D:46:79:CD:F3:E5:FA:9C:A1:B4:0F:B4:E2:C4:35:06
X509v3 Authority Key Identifier:
keyid:CD:FC:BD:E6:32:D1:06:FA:AD:98:C2:C1:89:5A:87:7C:A6:01:52:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zfy95jLRBvqtmMLBiVqHfKYBUho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:14:e7:27:08:6d:4a:ba:e2:38:fb:8c:c6:66:70:ab:e5:1d:
ef:1c:72:32:ba:c6:4f:a7:40:eb:7f:0a:f2:16:c7:af:0e:f4:
98:38:75:02:d5:5f:6d:9e:cb:ed:3f:75:ad:69:a8:da:b6:50:
ca:91:c7:87:f7:f3:8d:67:b1:75:0c:26:32:2b:74:2e:f9:9b:
e5:9f:3b:28:8f:26:a7:f9:91:53:75:b1:47:7f:a7:e3:48:7d:
31:ef:3f:9d:5d:40:34:14:40:99:ce:df:a0:71:03:d3:da:9e:
02:0c:5d:71:58:8b:dd:c9:87:8c:cd:be:16:d5:bf:e1:42:33:
f5:a6:9d:d7:97:84:a6:26:a8:de:6b:d5:bb:82:c3:07:fb:b6:
d1:5e:35:f5:22:90:5b:51:80:a4:1a:ef:4a:cd:4a:51:0d:d4:
43:55:36:f9:f6:e0:97:a4:74:6a:36:d7:0d:08:cd:40:bd:c0:
9d:1e:38:6a:c5:b5:97:91:8c:69:58:59:83:e5:2c:ee:d0:8a:
6d:3e:f4:4f:17:e0:54:04:93:2d:33:10:1d:88:60:f6:db:e3:
61:d2:c1:e1:41:25:3b:69:d5:38:98:7e:28:ca:c8:0c:2d:f6:
01:ea:25:e9:95:8f:27:da:83:92:ec:e5:ef:4f:96:97:e9:0d:
84:22:07:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:22:55 2025 by rpki-client