Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.mft
File: rzkvKN7GuMzrfNcOevcdjNyqmgY.mft (raw, json)
Hash identifier: pNUPJsDH+hlVbBqzLE3kPxMo3bJUrN70FBSnBZJ560s=
Subject key identifier: 3D:36:CE:0D:9A:C5:7C:1E:EB:6A:CE:DC:A9:5E:35:A1:65:1D:65:DB
Authority key identifier: AF:39:2F:28:DE:C6:B8:CC:EB:7C:D7:0E:7A:F7:1D:8C:DC:AA:9A:06
Certificate issuer: /CN=af392f28dec6b8cceb7cd70e7af71d8cdcaa9a06
Certificate serial: 019893DADB04D1CC2ADD21B335C5BA9F32BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzkvKN7GuMzrfNcOevcdjNyqmgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.mft
Manifest number: 1625
Signing time: Sun 10 Aug 2025 12:00:50 +0000
Manifest this update: Sun 10 Aug 2025 12:00:50 +0000
Manifest next update: Mon 11 Aug 2025 12:00:50 +0000
Files and hashes: 1: jlnSpYKnKgIEV_ZJFnqA1zdm8Xc.roa (hash: W+tCfuFHaZiswjzfI3LjlAyiu6GbDCuHiVsPBGynsaw=)
2: rzkvKN7GuMzrfNcOevcdjNyqmgY.crl (hash: 8QaQtZHghmae62ASqzQyoh03ThzkLsEw77Lgv5OU+BA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzkvKN7GuMzrfNcOevcdjNyqmgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:da:db:04:d1:cc:2a:dd:21:b3:35:c5:ba:9f:32:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af392f28dec6b8cceb7cd70e7af71d8cdcaa9a06
Validity
Not Before: Aug 10 12:00:50 2025 GMT
Not After : Aug 11 12:00:50 2025 GMT
Subject: CN=3d36ce0d9ac57c1eeb6acedca95e35a1651d65db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:88:c2:53:d0:e1:7f:5a:85:29:2d:a3:3c:91:
24:a0:cc:b4:63:ef:b7:b7:9b:55:5d:7a:ce:c6:fc:
81:e1:8a:31:d2:02:50:e9:31:a2:9e:09:00:58:3e:
7e:23:cb:e8:48:57:ea:50:72:50:ca:c3:27:f6:cc:
d1:22:5f:6f:cb:0a:7e:88:e0:34:09:ae:75:f5:51:
68:26:13:bf:13:39:f8:e6:e9:f1:71:cb:c4:5d:6c:
47:10:fe:b8:82:89:28:3d:19:21:89:60:0d:30:18:
37:93:06:e1:12:ac:28:fb:08:c9:23:7f:08:9d:c0:
5a:7e:ac:1b:ea:11:70:60:f5:79:c5:cd:09:a6:d2:
75:b7:94:58:0f:6e:51:66:ec:fe:e3:8a:1a:78:93:
26:de:eb:d3:5c:ee:ce:fe:dc:a7:ee:fc:b5:46:25:
fb:df:1a:e1:14:9d:02:87:d8:78:48:fa:e4:dd:4e:
b4:4c:13:18:62:22:77:ff:53:82:29:86:4f:db:ab:
bd:52:b5:57:e5:62:a3:f6:0a:f3:02:23:fd:f2:c6:
36:cd:34:4e:40:21:ce:57:87:5c:51:11:c0:de:14:
13:54:cc:9e:77:e0:63:9b:f8:10:6d:df:c1:1e:df:
b4:8c:ad:38:a9:c5:75:07:d5:24:09:aa:1f:8c:8f:
08:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:36:CE:0D:9A:C5:7C:1E:EB:6A:CE:DC:A9:5E:35:A1:65:1D:65:DB
X509v3 Authority Key Identifier:
keyid:AF:39:2F:28:DE:C6:B8:CC:EB:7C:D7:0E:7A:F7:1D:8C:DC:AA:9A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzkvKN7GuMzrfNcOevcdjNyqmgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:c0:67:e6:92:4f:c3:a1:57:5f:79:27:02:1e:38:8f:50:e3:
79:ec:36:7c:47:b6:e8:1d:81:89:83:3b:a6:59:01:e2:cd:2a:
0a:df:e4:71:f8:de:45:a1:b3:93:da:d7:17:a9:05:5a:8b:04:
49:9f:01:f3:5f:40:ff:68:1e:10:ea:99:c6:43:12:c4:ae:13:
d6:a7:39:8e:91:f7:33:19:37:4b:a3:fd:8b:a3:e4:19:1d:1a:
cd:c4:ec:ff:28:fb:fb:a5:96:29:3c:09:7a:b3:00:0f:3d:89:
8e:d9:b9:55:ac:99:79:6e:74:10:af:94:85:36:c8:fa:6e:07:
4c:1d:99:08:1d:ff:b0:56:36:b1:06:52:21:52:1f:c0:93:4f:
78:9d:b9:f1:19:d8:fe:67:5f:c1:7f:23:1b:7b:0a:8f:d9:df:
15:de:80:6b:ef:0c:77:8d:df:41:04:ae:6a:ab:7d:3f:2b:4d:
b0:85:a6:ee:cb:3e:c5:56:74:80:c3:ce:e3:5a:ec:7a:88:54:
e0:ca:97:39:25:c9:73:98:07:45:c5:59:47:7a:14:ab:2f:fc:
8c:1c:8b:5d:ce:74:fd:87:9e:a6:de:71:80:82:1c:41:30:d7:
8b:31:1f:d6:f3:ce:82:9c:63:64:35:b2:e9:a2:97:ac:8a:78:
84:15:81:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:44:01 2025 by rpki-client