Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
File: Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft (raw, json)
Hash identifier: k9AxX79XxSrL3eSO+x6DMWwGT20d43GMmPTeajK3Byo=
Subject key identifier: 66:67:15:9E:43:52:B2:0D:86:9F:08:17:24:CF:03:D7:8C:5C:E0:FF
Authority key identifier: 67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
Certificate issuer: /CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Certificate serial: 01987A89107267A503368A0B4E9E08C077E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
Manifest number: 0C2F
Signing time: Tue 05 Aug 2025 14:00:59 +0000
Manifest this update: Tue 05 Aug 2025 14:00:59 +0000
Manifest next update: Wed 06 Aug 2025 14:00:59 +0000
Files and hashes: 1: IyubcYm7YNGoTHG6Zyl3Cm2IkRw.roa (hash: 4lmGSbybL+9qT7cvm7erjsIQir7v2NPime1p2riEn1k=)
2: Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl (hash: S0GulJ3WUCeLczQGUQms59nllpNy3bqHLMpCvXMazAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:89:10:72:67:a5:03:36:8a:0b:4e:9e:08:c0:77:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Validity
Not Before: Aug 5 14:00:59 2025 GMT
Not After : Aug 6 14:00:59 2025 GMT
Subject: CN=6667159e4352b20d869f081724cf03d78c5ce0ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6e:4d:f5:a3:d6:6a:e9:be:75:2b:96:34:04:
de:66:44:51:88:52:75:e9:86:90:13:9f:98:5a:15:
33:32:5f:1b:a0:90:3e:4f:46:97:b8:e7:64:24:07:
f5:0e:ab:59:ba:da:0c:80:90:5b:32:75:bc:f9:b8:
de:01:08:8c:5b:32:83:3b:67:52:3c:4b:be:49:a6:
f2:2c:c8:74:ab:7c:89:3a:a2:96:49:52:4a:6a:28:
73:05:3d:db:f3:d7:2b:90:fc:66:8f:a4:23:20:24:
c9:52:d8:08:22:eb:3c:93:bc:e4:97:75:98:34:23:
a9:29:a7:7a:bb:5d:54:57:1d:c9:67:6e:60:d9:7c:
ec:e7:ae:ad:f0:8c:da:ee:ff:a4:31:49:74:97:90:
e4:85:67:36:9d:d3:b3:32:08:51:a6:eb:3e:80:60:
f4:78:08:6a:56:e2:5d:f6:07:c2:ed:c0:ab:a8:5e:
c1:64:4a:49:e3:b9:9c:ab:50:e7:6f:9c:b9:ad:3b:
22:f5:80:11:9f:08:62:be:28:92:8c:42:1a:9f:57:
56:11:b2:d5:69:3c:13:ca:08:bc:31:d5:e4:dc:b1:
69:a8:60:b3:b2:91:e2:86:4c:b4:c8:35:ae:e6:08:
a4:e3:85:ca:51:a3:37:26:ba:9a:04:0f:54:54:c7:
36:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:67:15:9E:43:52:B2:0D:86:9F:08:17:24:CF:03:D7:8C:5C:E0:FF
X509v3 Authority Key Identifier:
keyid:67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:35:ce:ad:29:7a:8f:17:11:46:ed:41:d5:60:e9:4a:e8:43:
ea:95:92:6a:3f:ff:54:da:08:73:de:ed:87:59:8e:1a:5a:97:
b4:87:ad:42:ad:c0:a7:e9:7f:81:1c:73:7c:88:1f:4f:b5:70:
a0:7b:bf:e6:97:8b:a5:a7:fe:3d:9d:c6:09:ad:75:a2:fc:45:
ea:17:aa:c5:ab:74:ed:ce:bb:56:58:99:c5:04:9b:3c:dc:eb:
31:e5:87:61:5d:35:5a:87:e3:38:dd:19:cd:18:d2:1b:e4:ae:
7e:a0:e6:9d:f7:ed:56:95:e8:27:95:5a:ee:d6:17:9f:24:63:
04:29:cb:ec:4c:c6:15:3e:0a:f3:02:62:0b:e1:ac:85:a9:3c:
85:0c:ab:8a:36:55:22:03:e7:00:3f:d7:af:1a:eb:fd:c3:81:
b8:e4:df:f3:d6:71:c3:55:cc:78:5b:2d:fd:ae:0b:ca:06:e2:
dd:b9:cf:4c:98:8b:08:1f:f9:bb:3c:d1:0d:63:df:a4:12:b6:
a6:91:c1:cc:d5:14:eb:63:67:44:c8:8c:c6:76:25:5b:90:d6:
c3:5c:5b:39:f5:20:6e:a5:d0:78:6c:b2:b5:16:1b:8f:54:27:
1f:79:b8:d7:d2:09:7e:e6:f4:77:ca:a6:90:2c:61:df:32:1b:
98:68:5a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 20:08:22 2025 by rpki-client