Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft
File: ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft (raw, json)
Hash identifier: sfgHqvpv3S/84nJYEoEWNAc6L4prBs5lxBbFdxb9fY4=
Subject key identifier: 31:EA:33:45:E4:06:23:D0:9D:E1:D8:3F:39:4C:BF:5B:4A:5E:3E:EB
Authority key identifier: 66:A1:D1:A0:17:80:2E:5C:57:DA:59:78:54:4F:C5:37:40:3D:A7:3A
Certificate issuer: /CN=66a1d1a017802e5c57da5978544fc537403da73a
Certificate serial: 019A12DF3FF5B42EF725F11E221C76E8D830
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft
Manifest number: 0A06
Signing time: Thu 23 Oct 2025 21:00:11 +0000
Manifest this update: Thu 23 Oct 2025 21:00:11 +0000
Manifest next update: Fri 24 Oct 2025 21:00:11 +0000
Files and hashes: 1: ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl (hash: P8dkInIMt36ozwmisqmB3Yy5JL3whWgyWppXLrGxGGM=)
2: kKgi-TtCN3ONXzc5dOLgjXmeD4Y.roa (hash: ThrWPeEKYfxXyDvqo92XPXVjCuwCt73viQ6BGTVTHKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 21:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:12:df:3f:f5:b4:2e:f7:25:f1:1e:22:1c:76:e8:d8:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66a1d1a017802e5c57da5978544fc537403da73a
Validity
Not Before: Oct 23 21:00:11 2025 GMT
Not After : Oct 24 21:00:11 2025 GMT
Subject: CN=31ea3345e40623d09de1d83f394cbf5b4a5e3eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e7:9d:70:bd:41:91:a5:9c:e9:46:db:39:44:
c8:84:60:f3:70:48:aa:db:2c:17:e0:04:86:2f:46:
e9:91:5f:03:8d:57:c2:e7:37:a2:b7:5d:b0:92:ce:
8d:eb:b6:51:44:20:49:87:21:11:82:a3:25:14:7d:
cb:2d:55:72:c2:2c:92:61:cf:39:c3:ff:08:77:10:
3e:1e:f3:e6:77:99:eb:7e:3e:a3:10:53:45:e2:99:
9c:96:c7:fd:06:f9:6c:3b:58:4e:5e:30:6a:6d:2e:
8d:63:d4:a3:2e:66:64:d2:19:cf:40:da:ed:f2:4a:
c9:83:f4:21:96:c9:c5:45:76:3d:22:b4:9e:9d:f7:
74:55:65:7f:da:1a:f7:e6:39:2f:b3:dd:3a:48:96:
62:8b:95:94:59:df:0a:83:cd:9c:55:61:01:44:db:
8a:16:29:f6:25:d8:38:05:99:bd:3c:6b:e0:e7:36:
e5:78:28:35:e5:b3:98:b4:52:79:78:6b:2f:ad:21:
75:5c:4b:65:4a:8c:ad:c5:9b:bf:8d:55:34:f7:dd:
0b:92:42:e2:60:19:d9:8b:82:39:03:24:84:6c:e3:
ff:77:d0:7e:38:32:0c:c2:7e:fc:40:1c:3d:f2:da:
7c:e6:30:69:e5:37:43:16:7f:0f:64:3e:dd:f6:df:
af:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:EA:33:45:E4:06:23:D0:9D:E1:D8:3F:39:4C:BF:5B:4A:5E:3E:EB
X509v3 Authority Key Identifier:
keyid:66:A1:D1:A0:17:80:2E:5C:57:DA:59:78:54:4F:C5:37:40:3D:A7:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:07:49:1e:ee:99:a5:54:a7:80:51:aa:aa:30:04:b0:7d:28:
0e:f3:49:ba:9f:a3:47:3c:47:4c:f4:e9:f8:a6:a1:a9:2a:06:
3b:00:81:ec:5e:da:54:7e:b1:20:fc:41:33:af:df:34:61:f3:
21:ae:5c:8f:aa:a7:dc:1f:be:cf:92:5d:6c:c3:0b:ce:db:0d:
d8:f5:22:d9:71:56:89:99:86:d0:9a:e6:39:07:40:cb:0a:6d:
ea:17:b9:68:e6:df:4e:4a:21:e1:9c:52:4e:29:d9:f0:cf:76:
c4:fb:57:2f:93:a7:ab:29:7d:40:30:0b:73:a7:7c:82:f4:89:
57:59:0f:9f:b6:f7:68:c7:18:07:bb:07:9e:83:37:6a:40:04:
53:9d:38:bf:22:9c:db:73:74:a9:09:ad:4c:79:56:fb:cd:f2:
b3:8e:33:0f:13:6b:2c:76:11:24:76:46:1a:38:8e:27:6a:29:
bd:17:1c:8e:5d:65:f3:e3:e0:f6:95:7d:ef:10:19:23:1a:38:
b3:55:1e:eb:42:74:0b:47:62:9e:08:2f:0b:bc:65:48:22:7a:
4f:bd:2e:16:7c:16:24:45:7b:ba:33:2e:38:b6:40:12:eb:e7:
9a:3f:71:a2:79:3c:34:78:14:e0:2d:1d:7d:62:f7:6b:aa:9a:
3f:cc:8c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 06:32:53 2025 by rpki-client