Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
File: ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft (raw, json)
Hash identifier: 9FoD6YFnL8fNSBOT7sPabnyzjhK5ZWIIjOdszFYz0tk=
Subject key identifier: 20:DC:29:D9:21:9E:7B:25:6B:72:BD:AA:0E:0B:39:6F:8D:D9:C5:46
Authority key identifier: 65:D6:63:29:57:6C:9C:01:B3:CD:82:85:F4:B5:4B:01:70:D8:C3:9A
Certificate issuer: /CN=65d66329576c9c01b3cd8285f4b54b0170d8c39a
Certificate serial: 01988BEAB7F1E9011BCD7556D6D34519D1DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
Manifest number: 12E2
Signing time: Fri 08 Aug 2025 23:01:12 +0000
Manifest this update: Fri 08 Aug 2025 23:01:12 +0000
Manifest next update: Sat 09 Aug 2025 23:01:12 +0000
Files and hashes: 1: ZdZjKVdsnAGzzYKF9LVLAXDYw5o.crl (hash: 4Otlmrx7ia3EgQ6KPUKIWtQLlO/jM5MufgYLkUKAQRM=)
2: cD0i6eXUEb95MRC9zt2P-QsR-zI.roa (hash: bwRfJD4nIDDz+Ohj/YcPEu2i5IBHAbvcA7uyG/Ew8EE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:ea:b7:f1:e9:01:1b:cd:75:56:d6:d3:45:19:d1:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65d66329576c9c01b3cd8285f4b54b0170d8c39a
Validity
Not Before: Aug 8 23:01:12 2025 GMT
Not After : Aug 9 23:01:12 2025 GMT
Subject: CN=20dc29d9219e7b256b72bdaa0e0b396f8dd9c546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2f:fa:10:23:76:55:14:70:af:1b:74:b5:f4:
40:29:3f:17:6f:f7:1c:ab:f9:06:96:cf:e1:57:2d:
f2:c9:22:5b:13:7c:e4:16:ee:0d:42:96:8a:90:89:
1a:59:e8:63:26:3a:b5:89:8c:33:06:93:eb:7b:cb:
63:9c:0a:6c:d0:0c:7a:e8:88:00:f4:5d:fe:a5:42:
91:45:a4:e9:60:fc:22:27:b4:0a:58:a4:0a:dc:41:
21:c9:16:dc:da:ee:b8:54:03:54:f7:87:d3:c8:1d:
f6:55:5e:47:8f:9f:57:2f:f8:d6:6b:ed:14:ad:bc:
36:eb:33:41:68:22:b8:ee:92:59:e3:0b:91:57:0d:
86:87:56:3c:c1:4a:2d:c6:9f:27:05:11:d7:c0:9a:
a5:15:3c:fa:fb:ed:69:a4:f2:b8:5e:ee:df:75:0e:
2f:bc:6b:5b:08:fd:65:e9:64:96:ed:86:b9:a9:db:
3c:04:70:ae:51:a5:ea:85:2b:b8:51:bb:97:aa:8a:
02:97:8c:25:4a:44:03:ca:a0:e9:65:ff:fc:e3:1d:
39:53:e7:99:60:f8:a7:60:b9:c4:38:86:2d:c2:86:
2d:0d:4f:24:34:24:26:fa:d3:14:8f:b6:d8:ed:13:
b7:19:68:e8:32:e2:d1:65:28:a3:f1:fb:44:6f:6f:
2a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:DC:29:D9:21:9E:7B:25:6B:72:BD:AA:0E:0B:39:6F:8D:D9:C5:46
X509v3 Authority Key Identifier:
keyid:65:D6:63:29:57:6C:9C:01:B3:CD:82:85:F4:B5:4B:01:70:D8:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:82:84:27:99:3f:60:e4:3c:3f:21:da:3c:07:38:70:78:ef:
cb:61:14:44:8f:82:0d:72:6a:ba:0e:88:ce:96:4e:21:05:48:
cf:30:55:e1:6a:5e:7f:78:da:f4:e6:0f:86:a8:91:fa:d0:f0:
2a:25:cb:50:5e:3c:b9:a8:65:e1:39:19:cf:90:09:eb:14:40:
36:a9:73:53:6d:9c:fa:c0:cc:31:aa:d3:b6:a1:f0:b7:39:90:
f5:95:21:79:42:40:00:43:60:2d:ff:7a:c2:f4:ee:dc:13:b9:
0c:23:f7:ad:4e:9e:13:ae:ee:b5:08:82:8a:d5:30:e9:b1:64:
3e:e0:ca:40:20:ed:55:e7:c6:48:19:3a:6f:0c:3c:a8:eb:be:
05:d5:32:db:5c:7c:b4:4e:cf:fd:b1:ab:29:b0:63:27:80:e2:
03:ff:c2:34:13:77:35:4a:39:8c:ff:99:3d:62:e6:47:2f:dc:
ac:1b:9d:82:bc:4c:79:35:a6:e6:90:3c:15:2e:ce:ad:d3:b9:
a8:24:ff:e5:62:7b:e0:ca:c5:b5:bf:d3:8d:45:f7:c9:ef:00:
a8:cf:e7:16:5b:bc:75:30:cf:c8:3b:de:96:58:3b:5b:83:57:
8b:bf:8f:b8:62:3b:bf:26:91:ca:ab:64:64:26:ca:f3:d6:37:
5a:6a:80:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:47:18 2025 by rpki-client