Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
File: cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft (raw, json)
Hash identifier: DTmDfnJsVoSKkhArZ3bBh4qt7Rg+nXdbyTWy8/e8z5c=
Subject key identifier: 22:C6:00:87:FD:2A:2E:B8:60:47:4E:E4:50:E9:55:85:B2:57:20:5B
Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Certificate serial: 0198816788164373E3979EF5E1B33118E50E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
Manifest number: 1491
Signing time: Wed 06 Aug 2025 22:01:42 +0000
Manifest this update: Wed 06 Aug 2025 22:01:42 +0000
Manifest next update: Thu 07 Aug 2025 22:01:42 +0000
Files and hashes: 1: 0uVokjA0n-IKYM4dLwrHfcYoXtI.roa (hash: h5xCuikP/FGyLSLux1dmHiJam1SLoPwDAncSRikSHHc=)
2: cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl (hash: U08lT2+Fg1nfVnXopRXNxgG1KT0dfGF45erFJe1h6MA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:67:88:16:43:73:e3:97:9e:f5:e1:b3:31:18:e5:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Validity
Not Before: Aug 6 22:01:42 2025 GMT
Not After : Aug 7 22:01:42 2025 GMT
Subject: CN=22c60087fd2a2eb860474ee450e95585b257205b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d2:dc:4e:c2:3b:41:42:3a:34:23:95:eb:cd:
93:2b:ca:47:af:26:da:df:f6:e1:94:01:d0:ca:9f:
a1:42:6f:47:11:9e:4d:9c:4f:1f:36:da:12:a8:6b:
57:ec:27:a4:61:51:fe:39:65:18:28:26:31:a5:34:
54:ca:80:bb:29:c4:f7:51:1f:3c:e6:cd:dc:c8:fe:
e9:6e:73:6c:ef:10:dc:95:ce:38:6f:97:5a:3d:79:
37:4d:d1:0d:98:b5:91:aa:bd:df:44:59:a4:ec:1b:
ee:4e:14:57:46:39:30:2f:f0:08:a7:ef:c2:1d:0b:
57:de:8c:4e:7f:21:1f:b4:ad:a6:52:0d:92:08:af:
cb:d5:91:6c:65:39:8c:f1:f8:4f:ba:d0:88:22:f9:
9a:3a:d1:37:3c:d6:cb:b5:a2:9b:c7:b3:24:94:ef:
d9:d0:0b:47:24:dc:9c:dc:b8:79:de:51:c7:bf:21:
f7:8d:e4:90:40:2f:d6:a5:3d:95:f3:c7:29:80:27:
81:b8:2d:aa:dd:a8:bc:dd:c3:e8:b0:df:65:fe:3f:
36:22:eb:e4:0c:c1:ac:5c:d3:73:1c:80:c7:b5:d7:
7f:7a:55:66:25:e3:c2:cc:a9:e5:73:bb:ec:b0:12:
a9:30:6c:24:3f:22:92:65:b0:d7:7a:31:b1:76:25:
45:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C6:00:87:FD:2A:2E:B8:60:47:4E:E4:50:E9:55:85:B2:57:20:5B
X509v3 Authority Key Identifier:
keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:cc:2c:8d:6c:b4:46:b5:42:37:45:9e:55:51:9f:e6:28:cd:
c1:ec:62:93:94:08:16:05:ed:1b:17:96:b9:98:d9:e3:5c:5b:
1b:31:00:2c:56:aa:a7:c1:f3:ba:f4:24:2b:0a:2f:49:66:3f:
bb:f0:f0:e4:98:24:ea:e9:1b:6f:d6:d3:3d:33:ac:25:53:a5:
9c:b9:cc:9f:4e:50:72:09:bc:df:96:50:b2:42:b3:ce:dc:73:
df:0b:4f:c0:b0:97:b1:78:71:5e:c5:64:a2:bb:63:5a:52:fa:
b2:16:6b:e5:ef:f1:0e:1a:86:33:43:9f:54:59:99:d1:5a:f3:
7d:2c:c5:e5:c4:7c:d3:85:13:70:05:c9:3e:69:99:4f:90:c9:
8f:3e:94:6f:a0:df:86:d0:6a:51:5d:9a:0e:64:a0:bf:10:9d:
a1:1d:f8:00:57:c4:b6:fc:e7:0f:97:c0:90:be:1c:55:1b:c1:
8d:65:7b:fc:32:00:97:44:49:65:01:68:e6:86:6c:29:2d:f3:
bc:c0:6a:87:19:50:b0:9c:6e:5e:ea:79:b4:cc:e1:fb:04:c2:
6d:0a:ec:2b:d0:5c:52:f4:34:4a:ef:b9:e5:08:cd:f1:8e:8e:
d0:90:fd:ba:4d:23:3a:d0:44:31:07:7c:ca:40:21:ac:47:ba:
55:9c:cf:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:25:23 2025 by rpki-client