Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
File: ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft (raw, json)
Hash identifier: o+cbxfloR73M2g+F33L2gc42AadxgDoN3Gq+eXBUS24=
Subject key identifier: 7F:7B:44:7B:B1:E4:96:1C:5B:C3:2A:EF:0E:7C:12:82:7C:0A:03:AC
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 01992331841D0835EBFE4A4D97E8D6A724A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
Manifest number: 0D56
Signing time: Sun 07 Sep 2025 08:01:11 +0000
Manifest this update: Sun 07 Sep 2025 08:01:11 +0000
Manifest next update: Mon 08 Sep 2025 08:01:11 +0000
Files and hashes: 1: RA9kR943QDfswVQ2De2E5cFSYaU.roa (hash: jCT5nXHXTc0Nn3QbV8+Qje22n9CHMzdTyZ/tDlKS5Ck=)
2: ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl (hash: mZjGnhtqQxhNoLJ9F6ZBn175qNfsdwi5TRxeDV2zW1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:84:1d:08:35:eb:fe:4a:4d:97:e8:d6:a7:24:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Sep 7 08:01:11 2025 GMT
Not After : Sep 8 08:01:11 2025 GMT
Subject: CN=7f7b447bb1e4961c5bc32aef0e7c12827c0a03ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:4d:e7:69:d7:33:17:08:95:f0:b8:88:9d:84:
0e:62:38:eb:2d:9b:d7:5c:bf:53:ea:fe:37:51:5e:
01:79:03:55:12:06:4f:7c:89:b2:a5:59:81:b7:8f:
0f:16:ce:ac:f7:a5:1b:2d:82:9f:5e:32:a4:0a:5e:
f0:88:a7:51:6e:87:01:3e:62:aa:86:32:fd:84:c9:
32:59:79:0c:7f:25:f8:0a:fa:9b:8c:ac:63:68:06:
1d:92:58:a6:6d:52:a7:2b:fa:46:7c:cc:1c:09:97:
8a:37:9f:1a:c7:4a:12:e3:ef:8b:03:00:e1:cb:35:
d0:73:47:91:a7:ba:fe:76:8f:ca:89:5a:a6:08:da:
aa:3f:b5:58:df:b4:4e:16:cc:73:e5:7b:e2:0c:83:
1d:ca:27:f4:1f:6e:69:f8:5e:01:b3:bf:9d:8d:cf:
15:4f:d1:d5:2d:35:57:22:0b:1a:41:64:8d:6f:83:
b4:7e:90:43:d0:33:5f:ce:3c:aa:f4:d2:2a:a3:0c:
20:06:d4:b6:eb:9f:73:32:60:1d:2c:d5:2f:2b:99:
cc:68:79:78:66:9a:ec:99:9f:a8:db:bc:a8:41:ef:
39:b4:ac:0d:26:5a:53:66:77:f7:22:9a:06:50:44:
ce:8d:8a:8a:d7:f2:96:91:aa:d2:95:2f:52:d2:e5:
7c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:7B:44:7B:B1:E4:96:1C:5B:C3:2A:EF:0E:7C:12:82:7C:0A:03:AC
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:54:c3:b2:cf:e2:3e:04:6b:a1:a5:79:ff:05:04:68:2e:d4:
f6:09:8a:45:37:50:54:bc:63:74:74:02:c3:2e:52:d8:f8:b5:
f1:fa:48:9f:af:56:cb:44:56:08:f2:c1:c9:21:09:70:8e:e0:
6e:9b:fd:0c:7a:58:21:1b:5e:47:fe:a2:dc:e4:2a:22:6f:21:
31:0a:ba:e4:18:18:1b:16:4d:c8:82:1a:69:70:25:3c:c4:4f:
32:d3:c6:44:a0:35:a6:2c:c0:77:92:18:f9:6d:0c:26:11:cc:
43:1f:08:64:8c:61:95:ea:c7:2a:d7:60:b5:54:77:57:a8:70:
09:ae:cf:47:b1:70:c6:d6:d7:41:6a:0c:cc:cb:0e:82:d5:90:
3d:dd:6a:22:66:44:7c:cc:85:dc:b8:ef:2d:43:2c:21:5b:2e:
f2:dd:2e:04:c3:ac:2c:13:55:a4:2c:99:a9:6a:47:05:68:45:
ce:b9:a0:a6:91:f6:d2:ec:34:f3:bb:b2:c4:7c:57:d3:3d:a1:
d0:93:b1:f3:ce:b0:46:e5:6f:f7:ee:a3:9b:2d:ef:cb:6a:76:
c7:fa:e9:6c:1d:8b:d6:1b:da:f4:46:4f:f1:b4:36:a6:25:96:
c9:35:81:de:41:51:d2:3d:80:14:1e:bf:60:71:e9:e2:03:b2:
fd:af:42:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:43:51 2025 by rpki-client