Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json)
Hash identifier: olQda7BK1d9tXGeLXgLwEMs4EOhrTYjjzpJUBwql+Ng=
Subject key identifier: 94:A8:F0:1C:AB:7F:D7:E5:4A:31:C5:45:C7:E3:C8:68:AA:A7:FC:B0
Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189
Certificate serial: 01987B9C6C2FDB6A9D5CAFF921CB2E3D3CDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
Manifest number: 15AC
Signing time: Tue 05 Aug 2025 19:01:45 +0000
Manifest this update: Tue 05 Aug 2025 19:01:45 +0000
Manifest next update: Wed 06 Aug 2025 19:01:45 +0000
Files and hashes: 1: PF8Dfwpieuc3szZWNlM6zxbOCaw.roa (hash: eEI5JJg+vshmiZesKoh8QcSvz/GrsPF5AtTzxYWQZk4=)
2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: 5PXRxhbQKZnkTJD5VNmfUKohyKKschn6YkSH5ACfTUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 17:44:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:9c:6c:2f:db:6a:9d:5c:af:f9:21:cb:2e:3d:3c:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189
Validity
Not Before: Aug 5 19:01:45 2025 GMT
Not After : Aug 6 19:01:45 2025 GMT
Subject: CN=94a8f01cab7fd7e54a31c545c7e3c868aaa7fcb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fe:d0:ed:95:79:4f:c5:9c:74:4e:86:64:48:
5d:61:7e:87:b0:6a:c1:cb:85:be:42:a9:f6:b3:6b:
a0:cd:f6:7c:c4:24:9d:fc:34:a7:5c:3d:b4:77:bb:
22:66:4e:86:d8:c5:be:50:72:7a:2b:82:6f:b8:1c:
77:b3:33:41:82:27:af:8c:a9:3c:bd:b1:2b:e9:1b:
01:8c:82:1a:a7:5a:2e:62:88:e5:a6:df:1b:ee:16:
21:2b:fc:0b:af:d0:af:1c:9b:0f:1c:c6:61:ff:54:
9e:3f:0a:85:34:6e:ff:75:a4:99:8e:47:6b:3f:37:
3a:60:22:5b:a6:8c:3a:35:ed:a8:75:d5:dc:18:b2:
c7:4c:a9:e0:e7:f3:a4:07:bc:cd:21:2c:fa:19:5f:
26:53:c5:09:1e:84:52:6c:a9:25:9f:b3:4d:d4:9c:
c2:44:6c:27:00:a7:a0:a0:47:c7:95:e0:24:67:d1:
5d:b7:12:95:9f:16:06:1c:ad:3f:12:d7:d9:89:c1:
c4:42:44:8d:12:7e:c2:94:3e:b1:29:e9:e0:15:20:
6c:af:56:3b:22:b2:32:ac:4f:56:00:b9:1a:ec:12:
14:25:97:3f:f9:73:11:ed:d5:06:58:ff:2f:54:53:
18:8e:67:8b:4b:1a:6f:e5:67:26:f5:23:8d:0d:a5:
f2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:A8:F0:1C:AB:7F:D7:E5:4A:31:C5:45:C7:E3:C8:68:AA:A7:FC:B0
X509v3 Authority Key Identifier:
keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:95:df:82:46:88:94:cb:f1:93:a2:f6:4c:22:bc:0c:ae:4e:
b2:31:4e:53:75:31:9d:f7:39:e1:92:a2:6c:56:dd:27:30:1d:
54:34:9d:44:56:3c:0e:3e:5f:8a:10:a7:c5:c4:23:b6:8f:b9:
4d:6c:39:43:26:4a:3e:f0:7e:2f:5a:bf:2e:ca:4f:99:62:9b:
84:0d:83:e8:65:38:8e:59:b1:5f:81:70:dd:61:07:7e:86:3d:
b9:49:23:a3:f1:ad:06:01:68:a7:d1:78:e9:03:79:97:30:20:
7c:2b:97:03:bd:88:08:4e:ab:cf:fb:9f:db:80:9b:77:f4:60:
81:6a:9d:82:a9:46:7b:d9:4a:f5:30:99:20:aa:a3:b6:f4:01:
e4:32:7d:12:b8:11:51:d7:40:55:bf:1c:1e:17:ab:39:15:d0:
93:cc:f1:62:ab:c5:72:29:0c:11:20:00:3d:15:57:a9:36:73:
31:82:84:d7:9e:49:35:db:3f:e1:7b:32:c1:99:98:97:ff:53:
b6:8a:ec:ce:9c:eb:b2:77:3f:cd:e9:71:2e:1a:5b:48:a5:1e:
17:ff:ef:cb:d2:0d:8f:a9:3d:21:56:56:c4:25:90:c5:1d:6b:
c0:2b:db:b6:fd:96:23:14:eb:3f:be:72:15:99:d0:92:06:04:
66:4d:e9:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:53:36 2025 by rpki-client