Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
File: rz9wBQP0ByCoL3bvFc2mICLx-ak.mft (raw, json)
Hash identifier: f618sR2YjdntcHOkQga9v2QsXgyYYNMjecCB+ikbJ/s=
Subject key identifier: 7F:58:95:84:C5:BA:17:C6:E3:77:AE:7E:38:2C:72:EB:1E:92:43:F0
Authority key identifier: AF:3F:70:05:03:F4:07:20:A8:2F:76:EF:15:CD:A6:20:22:F1:F9:A9
Certificate issuer: /CN=af3f700503f40720a82f76ef15cda62022f1f9a9
Certificate serial: 0198801D99A500CB0525E546BCD480A871B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
Manifest number: 0CE3
Signing time: Wed 06 Aug 2025 16:01:20 +0000
Manifest this update: Wed 06 Aug 2025 16:01:20 +0000
Manifest next update: Thu 07 Aug 2025 16:01:20 +0000
Files and hashes: 1: rz9wBQP0ByCoL3bvFc2mICLx-ak.crl (hash: XaNS/KMXrLpwzU9VRt1MH4o3TcHflBv6Kl3jQzCBuIA=)
2: zHaHHwpWkvwMR4EBkRKLj2nL7g4.roa (hash: dEmOAj28ftGGpyQRnDV2quElsA9Yrv1JJIOo7l9XjEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 16:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:1d:99:a5:00:cb:05:25:e5:46:bc:d4:80:a8:71:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3f700503f40720a82f76ef15cda62022f1f9a9
Validity
Not Before: Aug 6 16:01:20 2025 GMT
Not After : Aug 7 16:01:20 2025 GMT
Subject: CN=7f589584c5ba17c6e377ae7e382c72eb1e9243f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:81:26:96:0c:89:44:c6:79:a0:d7:35:69:87:
be:64:b4:b3:fd:6d:d6:b4:f3:5e:9c:12:2e:26:f6:
2b:21:b3:48:87:96:45:c3:6c:88:2d:53:25:bf:f1:
1d:c4:78:73:20:7a:dc:0a:fa:36:d8:5d:bf:9c:ed:
26:e1:85:fb:c9:29:2b:ad:04:1f:d2:14:0c:4e:8e:
9e:e2:c5:6f:cd:bc:c5:2b:ff:86:4f:0e:78:bf:80:
71:f1:c3:c1:e5:00:db:e9:8c:15:22:a2:7a:2f:f8:
51:47:c4:0f:b8:9c:c3:89:85:15:dd:7b:ed:f3:4e:
54:c4:9b:eb:95:91:6a:68:a2:13:a7:04:b1:ee:05:
0f:be:b2:f8:37:72:44:5d:e4:71:31:1d:bd:db:aa:
d5:e4:25:84:a9:ad:5f:35:3a:c4:72:b8:9d:2a:2a:
ca:0b:84:ca:ec:15:5f:ae:0b:fb:33:a5:8c:7e:bf:
c5:6e:1b:4a:6c:7e:eb:67:83:50:f7:57:37:54:2b:
3d:af:dc:3f:40:f2:18:8f:56:bc:42:66:8e:58:6b:
19:8b:2e:fe:ec:d2:cf:bc:f6:5c:d0:3c:b1:0a:c0:
bc:23:91:8d:17:ea:88:b6:0f:6e:a0:7c:34:ac:0c:
d1:ab:53:dc:66:87:b5:2c:77:ef:50:5a:be:2a:9f:
4e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:58:95:84:C5:BA:17:C6:E3:77:AE:7E:38:2C:72:EB:1E:92:43:F0
X509v3 Authority Key Identifier:
keyid:AF:3F:70:05:03:F4:07:20:A8:2F:76:EF:15:CD:A6:20:22:F1:F9:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:09:a5:ce:d2:38:8d:6d:c5:dd:de:2c:f6:a3:fd:9d:30:16:
c0:4f:56:db:d0:fc:d3:79:c4:c6:2c:97:0a:97:27:09:7d:ee:
57:4b:9d:78:31:34:0c:d5:82:ba:53:0f:e2:cd:07:4d:38:be:
98:f4:4c:1f:a0:0d:d9:ba:0a:e7:61:38:ef:38:e4:36:3a:94:
9b:bc:e3:30:df:35:f0:95:ba:c8:07:cf:fa:31:d7:fa:ae:1e:
36:35:55:01:1e:41:7a:5b:04:83:49:cc:44:4e:8e:1d:3e:99:
0e:a8:c2:a5:67:77:dc:9c:c9:12:10:4a:f4:70:f6:bb:3a:95:
7f:bd:77:2f:d6:57:e7:f3:e7:ec:ee:02:7f:02:e5:4e:e7:fb:
18:28:0f:0c:6f:b4:58:ec:4e:70:be:d8:ac:76:64:7c:06:5a:
58:c9:a9:4f:12:93:20:5e:c3:08:9d:a5:c6:8e:bd:68:f4:e1:
ec:ef:50:fb:94:44:73:9d:63:04:ea:af:8c:ae:2b:5d:60:ea:
a7:eb:39:03:bd:ba:b9:82:54:d5:8f:a1:53:a5:95:35:59:33:
c8:ae:8b:87:33:0a:0c:15:dc:88:51:1a:ad:b7:80:a4:31:a3:
fd:d7:72:10:26:57:5f:2f:58:4e:c0:ff:ff:f7:6f:c3:1c:cc:
27:dd:21:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:57:03 2025 by rpki-client