Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
File: zSC8r3ISPi2fXieIazg5t0JEELc.mft (raw, json)
Hash identifier: fmzGmrlv1SPA7NcF71W0FNRY/7JGO+HBfpJmywPU4pY=
Subject key identifier: 0C:AF:F2:1A:C2:0F:5E:ED:36:97:69:9D:7A:AB:B0:6E:DD:B1:42:D4
Authority key identifier: CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
Certificate issuer: /CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Certificate serial: 0198748701F0196AB4291FCF8BE2AA8566D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
Manifest number: 0C05
Signing time: Mon 04 Aug 2025 10:01:01 +0000
Manifest this update: Mon 04 Aug 2025 10:01:01 +0000
Manifest next update: Tue 05 Aug 2025 10:01:01 +0000
Files and hashes: 1: YvvxlYUE1Sa5OVkc6cN_zQjcrsc.roa (hash: 755pvpPS6YdCIfa/QNyMrmXmYNI2VVu3cPA+IlhoyYY=)
2: zSC8r3ISPi2fXieIazg5t0JEELc.crl (hash: YC0DXBQlOTkDNROdbClRQMGcJbRaT8dIrM1ISZhdUR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 10:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:87:01:f0:19:6a:b4:29:1f:cf:8b:e2:aa:85:66:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Validity
Not Before: Aug 4 10:01:01 2025 GMT
Not After : Aug 5 10:01:01 2025 GMT
Subject: CN=0caff21ac20f5eed3697699d7aabb06eddb142d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:43:06:86:b6:cf:25:8e:64:f4:15:76:b6:fb:
b1:23:4b:ce:ff:6d:21:9a:97:77:47:95:bf:07:13:
ec:0e:14:c1:2b:e3:33:5b:4b:af:e8:a2:48:cd:d2:
bb:58:09:92:ab:3f:fb:f4:9b:07:e5:3b:1e:63:27:
5b:d6:4b:72:bd:4f:d9:1e:dd:19:d2:fc:7c:d1:3c:
6f:d3:f8:6d:6e:a3:4f:b3:c8:8a:fd:e5:0e:96:2b:
d4:bb:54:33:04:62:cf:30:4a:53:db:44:20:90:50:
91:af:49:b9:6e:a4:ec:f6:d1:86:88:30:d1:d7:12:
5a:e0:cb:08:ad:06:a3:6f:60:58:29:f1:a1:1e:e9:
28:b9:65:c5:a8:d5:a2:08:20:ec:b0:90:16:ca:e2:
83:58:30:8e:5b:6a:59:49:92:5a:8b:6b:42:13:a7:
b9:26:04:fe:68:91:05:e5:cb:2e:54:18:ae:2e:ed:
03:d8:d9:47:be:3a:f3:49:37:21:74:87:0c:82:da:
a7:24:25:0b:71:ee:d7:cb:58:0b:a5:71:ad:67:f8:
1c:96:e1:db:76:c4:8e:0a:ce:2f:fd:d9:e2:f6:32:
05:90:9d:8e:fa:f3:eb:ea:05:41:6f:b5:a5:1d:e1:
13:ff:cf:6f:2a:60:a3:61:f6:0f:b2:5d:1c:3f:c0:
10:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:AF:F2:1A:C2:0F:5E:ED:36:97:69:9D:7A:AB:B0:6E:DD:B1:42:D4
X509v3 Authority Key Identifier:
keyid:CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:6e:fe:23:86:52:e7:6f:cd:e7:35:4c:16:6b:bb:3a:87:da:
96:73:6c:2b:00:32:11:f3:d9:cb:7f:a6:8c:a1:41:79:73:9e:
cc:15:bd:ee:e8:e6:b4:02:5d:ea:49:7f:88:7b:55:c1:62:ef:
ae:f5:bd:a0:6e:92:6d:31:cf:0a:4a:70:d7:d7:7f:5f:61:0e:
04:97:65:2f:a3:fd:de:d4:f7:06:fb:db:43:d9:64:9e:8a:55:
4a:84:42:90:59:7c:5d:b8:15:f9:44:1c:74:cc:55:90:46:d4:
a6:68:5e:25:b2:23:77:d3:83:ca:8c:a9:c0:0d:26:7b:3f:cf:
dd:23:fa:80:51:ee:01:93:80:ce:10:ac:25:54:b1:b8:06:93:
dd:a1:fb:27:80:8e:fa:f2:97:d3:4f:e1:d8:68:3c:b4:f8:32:
02:b0:69:50:e1:94:d9:4f:ac:e1:64:0b:5c:fd:17:ff:2a:5e:
16:e4:68:cf:ef:d7:d7:60:56:a4:58:6d:0c:10:54:8b:82:7e:
43:28:43:b6:19:b0:1a:97:bb:6b:cb:3e:da:7e:40:9d:85:9a:
7b:35:0f:6a:21:da:bf:c1:bf:b7:61:41:5d:b1:b1:f7:7a:81:
3f:ee:a5:f5:64:56:72:c5:a3:a2:b1:f5:85:01:5e:54:78:26:
b5:7e:a5:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:32:42 2025 by rpki-client