Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json)
Hash identifier: bks5jtNciNCv69MULYXHZ5njHAozSk0EVpS0okZFA4c=
Subject key identifier: 3C:58:68:F8:49:82:35:CD:C0:F5:BF:42:8C:20:7B:20:C7:9E:C1:5E
Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196
Certificate serial: 01995009DE9E214FF96C9BB02A762FD9CFC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
Manifest number: 0D2F
Signing time: Tue 16 Sep 2025 01:00:48 +0000
Manifest this update: Tue 16 Sep 2025 01:00:48 +0000
Manifest next update: Wed 17 Sep 2025 01:00:48 +0000
Files and hashes: 1: FwAUcIE-PlUBJk-lyofvjIK4_Vk.roa (hash: 7pDJDV3PAprmagYY0WEztJ7b9H5DGoPcWbYIPWhc9l8=)
2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: hpQ/lAWiw5AicMjnLWU0po7XBIpLVU63Pmcv4SFoSBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Sep 2025 01:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:50:09:de:9e:21:4f:f9:6c:9b:b0:2a:76:2f:d9:cf:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196
Validity
Not Before: Sep 16 01:00:48 2025 GMT
Not After : Sep 17 01:00:48 2025 GMT
Subject: CN=3c5868f8498235cdc0f5bf428c207b20c79ec15e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:26:60:e1:de:6f:44:f2:19:b1:3f:b8:25:24:
7e:39:27:c4:91:19:0c:7f:4c:b9:c7:ac:4f:51:64:
d4:20:c2:0f:0c:aa:54:32:e5:22:48:12:7b:e4:d7:
fd:47:1d:18:5e:33:cd:9e:98:85:18:f6:6e:51:be:
d2:2d:74:d2:15:6a:ce:6d:f2:8f:bb:2f:88:41:9d:
4d:38:22:22:a2:1b:5f:d5:f7:a4:cc:23:d5:a8:9e:
1e:97:3f:6d:41:ca:34:b2:58:5c:a8:78:e6:6c:cf:
fa:13:bc:4c:09:9f:67:34:9e:4f:3b:4b:44:f1:58:
f8:38:28:10:f3:dd:f7:1d:b4:56:73:50:60:cf:aa:
56:1d:8c:e0:60:26:92:9c:7f:f8:2d:2d:12:58:b2:
1e:d0:4f:24:0f:0a:6f:b5:af:14:e8:bb:61:f6:d6:
ac:c1:4f:f7:b9:eb:b3:9d:a7:5d:69:77:4d:40:3a:
db:c3:63:41:67:bc:11:5f:ad:ce:4f:b3:1f:28:f5:
c4:0f:7f:58:5f:80:f5:98:33:ac:43:15:c7:91:55:
3a:d1:95:25:40:f1:85:bc:38:93:5e:8d:50:e2:68:
13:c5:41:33:d0:b1:fd:fe:ad:63:d5:89:db:2b:56:
bb:5a:16:ac:10:2c:eb:77:c3:63:2d:c6:4d:72:dd:
a0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:58:68:F8:49:82:35:CD:C0:F5:BF:42:8C:20:7B:20:C7:9E:C1:5E
X509v3 Authority Key Identifier:
keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:7d:cd:f1:45:9b:f9:e3:d1:99:2d:e3:c5:e8:63:f4:d1:ba:
82:12:73:27:9a:94:04:50:58:36:1d:ce:9b:1b:ce:9a:af:7a:
69:d7:c0:cf:ca:1a:4a:69:98:36:b5:0f:43:29:70:3e:62:80:
00:37:2c:66:a1:1c:73:b1:4b:1f:cd:e6:ca:c8:3e:ca:d0:e6:
7a:11:29:c0:c9:9d:be:44:e7:a3:15:b3:f8:0a:16:ff:62:43:
00:27:2e:d2:91:f2:1e:02:ec:69:86:1a:8a:a4:62:c4:77:9a:
09:ec:67:fe:a4:ba:5e:b2:de:3c:58:ba:26:19:74:f9:02:e5:
20:4f:a2:78:d6:40:c8:c7:e7:c1:ff:f2:00:d7:0c:5b:ad:fa:
1f:17:5c:fd:42:7f:2b:db:bc:54:24:c1:b6:72:74:cc:6c:39:
fd:e4:de:8b:68:54:5b:b9:51:40:83:cc:2d:96:4c:94:70:0c:
1a:ca:0c:67:5d:58:8d:37:4d:c4:b7:3f:34:7b:92:5f:5e:6b:
4b:68:e4:db:bb:ea:71:2a:35:39:62:70:ec:70:e5:4e:0b:05:
4a:a7:eb:b0:af:47:31:eb:0e:5c:d2:c2:fe:16:83:52:85:c0:
36:86:01:aa:56:18:4a:3b:c2:9e:2e:b7:93:c8:c8:d9:92:7c:
5c:99:7f:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 08:30:40 2025 by rpki-client