Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
File: ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft (raw, json)
Hash identifier: 1fjoDaLDeG2saSvYF6oj603sIBbfnfzasq/1Fyu+t1o=
Subject key identifier: 4B:1E:46:98:FE:D9:4F:D5:69:14:8E:0E:F5:76:1A:70:98:50:49:91
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 019A240A20B311B32D8689736716228AF486
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
Manifest number: 0DDB
Signing time: Mon 27 Oct 2025 05:00:34 +0000
Manifest this update: Mon 27 Oct 2025 05:00:34 +0000
Manifest next update: Tue 28 Oct 2025 05:00:34 +0000
Files and hashes: 1: RA9kR943QDfswVQ2De2E5cFSYaU.roa (hash: jCT5nXHXTc0Nn3QbV8+Qje22n9CHMzdTyZ/tDlKS5Ck=)
2: ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl (hash: U11P0YFQHyUr0EQhDAOONy/l2KXp5iqjE/IWarWt+RQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 05:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:0a:20:b3:11:b3:2d:86:89:73:67:16:22:8a:f4:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Oct 27 05:00:34 2025 GMT
Not After : Oct 28 05:00:34 2025 GMT
Subject: CN=4b1e4698fed94fd569148e0ef5761a7098504991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f1:9a:0d:6d:31:40:2b:3b:b5:cc:16:7a:f1:
f4:9f:56:37:1b:55:ad:02:77:cf:0a:6b:2d:66:b3:
7c:88:ff:9e:ce:41:40:13:91:63:88:04:7c:54:18:
0d:7c:0d:49:87:e9:71:3a:3e:89:9b:3f:e3:cc:95:
6e:5c:09:72:52:d4:b7:65:cf:18:2e:6c:91:f7:1e:
1c:99:22:7b:52:ef:06:e2:3a:46:e7:d4:b1:8d:c5:
c9:e8:25:c0:a0:ae:b8:40:29:ef:d3:73:80:94:58:
c6:27:d3:5b:7e:77:db:23:38:7e:59:be:68:c0:ff:
a7:56:c5:26:57:59:4e:d5:d5:fc:f8:76:80:12:88:
26:c8:27:71:2f:a0:17:60:e1:72:21:54:e9:e5:37:
ea:a4:0d:04:1a:1b:3c:08:93:3e:a4:3d:a8:bc:4b:
44:d4:e4:ce:8a:f0:18:4c:b9:75:9b:fd:e5:ff:d9:
81:6c:64:5b:16:b2:b8:55:3d:e7:14:d8:73:b3:55:
0a:73:9a:57:05:cd:7c:8c:29:d0:7f:42:cf:26:41:
ca:9e:cd:72:6f:98:51:73:f7:b7:3e:73:f9:47:e9:
44:3a:a2:75:a1:86:43:56:61:b8:96:e7:5e:02:58:
c3:60:dc:33:84:b4:39:c6:73:c7:72:fd:3e:b7:00:
1a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:1E:46:98:FE:D9:4F:D5:69:14:8E:0E:F5:76:1A:70:98:50:49:91
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:d8:62:3f:8c:c7:44:ca:ff:f7:37:e3:1d:8e:48:e6:76:27:
74:e2:14:34:1b:6b:28:02:a9:82:cb:86:31:01:02:64:f2:9a:
52:f8:e3:85:be:c7:0d:a4:af:db:55:ec:d6:62:11:16:ec:55:
bd:0c:60:8d:a3:73:c8:ac:c3:6e:38:40:3d:01:d8:ba:75:68:
71:56:da:5f:4f:d3:6e:2b:b0:6f:29:b8:75:15:d9:12:8a:96:
f7:a2:a9:35:16:cd:0f:1a:60:ba:bd:50:48:b2:04:6b:55:4f:
c1:55:11:a7:d9:90:9a:bf:6b:da:b4:b0:a2:f0:38:df:e9:94:
8c:22:47:6d:aa:36:c5:b1:30:4d:97:1e:02:2f:ee:96:eb:51:
6e:53:95:1e:39:32:86:ee:32:7e:c2:7c:4a:db:13:ad:10:ca:
fd:f4:ae:c4:b4:bb:8a:20:df:6f:72:a2:a9:5e:d2:40:8a:bc:
a8:b8:21:f5:73:0e:a1:68:ab:a5:f6:7b:01:2f:93:d6:cd:ba:
dd:82:54:6a:52:b4:4a:04:78:06:ad:02:40:a6:b6:64:b1:eb:
86:d3:45:fd:3b:33:dc:55:c8:82:70:17:0e:fb:3d:14:bb:b5:
d2:ca:4f:21:71:c7:4c:d1:e4:68:83:6c:a0:c9:ea:58:a8:aa:
e3:9d:60:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 14:47:18 2025 by rpki-client