Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
File: z2hDzhUimoAj2X-iejflkniyv9c.mft (raw, json)
Hash identifier: j9zXETfSkfnkgPC4IR3ACCzeJPZsUbB1Kfyz3iw80us=
Subject key identifier: FE:7F:EE:7B:D3:A7:CE:2C:A2:1D:FD:0F:25:04:11:55:FE:24:5E:BF
Authority key identifier: CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
Certificate issuer: /CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Certificate serial: 019873742953ED0C093F0C1912C1F532C1CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
Manifest number: 0C04
Signing time: Mon 04 Aug 2025 05:00:49 +0000
Manifest this update: Mon 04 Aug 2025 05:00:49 +0000
Manifest next update: Tue 05 Aug 2025 05:00:49 +0000
Files and hashes: 1: pZ2-rl1wvNOlZXWq6r9tiMcpCLE.roa (hash: UTgRZg+3/3Y1WSaSgU/Ax1MIkqu5a18zaZd2IsaahgY=)
2: z2hDzhUimoAj2X-iejflkniyv9c.crl (hash: thQ6hoyw80orxJmwtlqWLHW5gvk0RuCqkv1XzRLndg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:29:53:ed:0c:09:3f:0c:19:12:c1:f5:32:c1:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Validity
Not Before: Aug 4 05:00:49 2025 GMT
Not After : Aug 5 05:00:49 2025 GMT
Subject: CN=fe7fee7bd3a7ce2ca21dfd0f25041155fe245ebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7a:c9:67:11:a0:bb:48:a8:5b:fb:29:25:9b:
48:49:8d:52:d3:61:3f:a5:6a:34:10:fc:4e:b4:3c:
b1:04:4d:79:98:ca:4a:0e:33:aa:76:f3:ac:e4:21:
ac:d0:7c:86:82:0a:48:c9:7b:d1:41:47:3d:fd:03:
5f:a2:8b:11:42:36:0b:83:49:90:f9:d0:62:9a:05:
29:0f:8b:c4:b7:60:83:6d:ff:6f:13:9f:04:c3:6b:
5b:c9:ec:18:f7:6c:32:dc:4f:43:a9:09:50:89:24:
28:70:a3:24:ed:59:22:e2:70:dc:27:2d:dd:fc:72:
f3:44:14:91:68:ba:38:d7:6c:44:0a:16:b8:e2:ec:
ce:31:d9:f8:ab:2c:38:19:eb:be:dd:62:ac:a9:7a:
57:df:b4:43:23:4f:32:f8:4a:71:18:68:34:fa:cc:
f8:01:0c:2f:de:34:e7:8b:7e:8d:84:06:4a:39:f1:
ef:ba:53:d7:28:8b:5b:ec:a1:04:58:f9:95:23:3d:
4c:21:22:f7:d3:7a:50:66:35:1b:37:6c:7b:ca:e2:
87:3d:31:aa:f0:fa:eb:4d:9c:4f:87:d5:2e:47:01:
e5:af:b7:bc:45:42:55:bf:bf:53:89:61:28:3f:42:
2f:c1:4d:6e:f5:57:09:8a:8c:cc:cf:79:e5:e3:a9:
99:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:7F:EE:7B:D3:A7:CE:2C:A2:1D:FD:0F:25:04:11:55:FE:24:5E:BF
X509v3 Authority Key Identifier:
keyid:CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:3c:b4:ac:c3:0a:0a:9b:ba:21:f5:38:6a:2a:59:01:61:72:
aa:7b:15:b8:ce:eb:f5:bf:4a:11:3c:6c:80:1a:48:34:75:b9:
ed:d6:02:da:eb:60:73:9b:b0:f2:de:a1:22:ec:90:a3:72:ee:
35:31:d1:e9:82:d4:8e:08:8f:5b:83:0f:69:04:21:60:57:e2:
67:57:c0:38:97:8b:b5:da:fe:8d:2f:8b:1f:97:84:eb:3e:55:
b9:37:4e:a0:fa:b3:21:7f:65:f0:45:a1:4b:2b:99:fc:ec:cc:
1d:c0:48:44:6a:61:e0:32:e6:8b:e1:32:25:a7:ea:3c:07:7e:
58:e3:88:e3:0d:c5:c5:c9:a5:93:db:6e:2e:c3:63:42:38:40:
7a:ef:84:76:86:34:83:9f:82:66:25:0f:5a:1b:c4:95:a0:4b:
e6:67:05:d9:31:bb:12:8f:8c:8a:8a:4e:79:c8:ff:2b:bc:ba:
cb:6f:0e:71:aa:df:16:79:0b:6a:5c:0d:dc:1c:ae:31:33:25:
00:dd:89:70:1c:05:d3:c8:f4:0d:cf:75:e9:09:8c:17:a0:4d:
4e:38:41:c6:dc:1d:ab:7f:9b:b1:ec:96:4c:a4:b9:e3:55:a3:
fd:e3:0c:df:00:07:eb:2d:86:70:db:67:db:39:1e:c1:87:7f:
b4:e1:f8:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:01:33 2025 by rpki-client