Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
File: zCdbIX3x3piMohkqg64R3fQjpE8.mft (raw, json)
Hash identifier: Z63vlzWNwNbBTTP1GVy2q6Xk2DCFlFx1BgMYofAafQo=
Subject key identifier: A2:D8:24:92:86:4F:68:70:D4:94:AD:C6:50:3B:D3:B4:1C:77:D0:2F
Authority key identifier: CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
Certificate issuer: /CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Certificate serial: 01988AA0C2CD319DAD4690640B271378E8B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
Manifest number: 0ADA
Signing time: Fri 08 Aug 2025 17:00:48 +0000
Manifest this update: Fri 08 Aug 2025 17:00:48 +0000
Manifest next update: Sat 09 Aug 2025 17:00:48 +0000
Files and hashes: 1: Nr1R18FVhyzjXhL2YKl54Kz1CcM.roa (hash: Ka3gajN2kG5bn7od03MC2i4kFc5aTTook8osIu09I1U=)
2: zCdbIX3x3piMohkqg64R3fQjpE8.crl (hash: 8kUba2Ti+NjmY8d9RCS5ucfitbl0d0oA2Edw+ceSqMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 17:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:a0:c2:cd:31:9d:ad:46:90:64:0b:27:13:78:e8:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Validity
Not Before: Aug 8 17:00:48 2025 GMT
Not After : Aug 9 17:00:48 2025 GMT
Subject: CN=a2d82492864f6870d494adc6503bd3b41c77d02f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ea:29:9e:95:77:e9:2b:05:7d:82:51:85:0f:
bb:cc:e4:30:0d:d6:39:2f:2e:7f:d6:2b:e7:d9:b4:
fd:0f:9c:2d:54:28:fa:76:26:1f:55:7b:22:4c:46:
a5:7d:ba:f4:61:54:3d:b8:9a:fb:46:06:00:ac:03:
e0:81:8d:86:68:72:2e:87:6f:d1:7b:5a:1e:52:87:
4e:19:9c:31:08:a6:06:e9:1e:22:91:1a:a1:08:d4:
20:ee:30:2a:a1:12:58:5a:30:6e:39:e8:cf:bb:47:
ee:e9:35:61:b3:ae:81:1e:51:f6:cc:9e:a2:c4:19:
db:d2:c2:89:6c:1b:9b:24:4d:9e:c3:65:68:5e:3e:
a8:3f:7a:a5:87:5f:fe:cf:c1:94:96:a9:35:ff:17:
a1:ba:23:74:67:54:b2:71:2a:b0:2c:58:cb:5b:6b:
1e:4e:aa:b9:a5:3d:60:6e:bd:9e:95:c5:82:31:b7:
44:2d:b3:ef:80:b3:81:f2:32:8f:0f:ad:b1:3e:f2:
02:f5:1a:2e:0d:27:94:8b:7d:50:4d:72:f6:45:d0:
87:02:ca:94:66:f1:d3:6b:b2:20:b2:e4:c4:52:a8:
71:6a:cc:53:88:5f:23:ed:8c:8f:38:94:92:e6:c1:
66:89:fa:22:73:25:68:b1:16:b3:7a:52:66:ee:87:
6b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:D8:24:92:86:4F:68:70:D4:94:AD:C6:50:3B:D3:B4:1C:77:D0:2F
X509v3 Authority Key Identifier:
keyid:CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:07:1b:fe:f0:03:e7:52:5f:6d:81:35:bb:cc:61:05:d3:4e:
60:69:b2:06:53:c5:ac:ed:ec:e5:c6:e4:ab:9c:7f:b6:22:ec:
d4:76:08:80:e5:7e:ca:13:bd:14:12:b8:c2:cc:78:85:c3:41:
5c:61:6d:71:26:fd:2b:1a:ed:12:1f:92:13:82:d0:a1:84:e0:
d8:33:54:9e:50:30:d3:3d:c5:75:a2:29:6d:3f:2f:cb:49:25:
b3:99:0a:ad:8d:cd:a0:9d:6f:fe:d2:ef:40:55:b0:b5:0a:be:
51:b0:6c:6a:39:70:3b:13:04:d1:9b:ed:08:dd:49:02:ce:2e:
43:5d:ae:cb:de:81:ab:03:54:ae:6d:8d:65:a1:fa:6c:cd:12:
75:70:51:b0:63:95:06:2a:48:09:51:97:4e:b8:10:bc:d6:ae:
ef:18:55:66:40:56:f6:26:4f:81:74:61:32:5f:77:40:04:51:
ba:f5:eb:92:bb:90:ad:49:eb:ec:b6:a6:14:99:7d:8c:4b:9c:
d1:51:65:c5:55:84:e9:c3:db:17:c6:6d:e9:6b:5f:e3:bd:29:
d0:0d:0e:cc:f1:84:84:c0:42:21:29:01:ba:2a:77:78:22:10:
8b:0b:b1:21:c7:26:5f:91:52:15:cb:cb:e8:a6:fe:fd:f8:10:
ed:04:68:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:37 2025 by rpki-client