Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
File: zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft (raw, json)
Hash identifier: uAj1idX0aURM7AVdedMSLogZDV7Bt4mFMvRoCAw/+ss=
Subject key identifier: 6B:E7:4C:70:63:A2:6C:65:8C:13:DB:DB:E8:E3:29:17:EE:EF:6B:56
Authority key identifier: CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D
Certificate issuer: /CN=ce1f59ae34548132892fcc89b1595f9b0360198d
Certificate serial: 019847E54298771AFCF526871E880A7002C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
Manifest number: 0FFB
Signing time: Sat 26 Jul 2025 18:01:03 +0000
Manifest this update: Sat 26 Jul 2025 18:01:03 +0000
Manifest next update: Sun 27 Jul 2025 18:01:03 +0000
Files and hashes: 1: DnTbZNQqyk7b1Kpp-h3yl2scJwY.roa (hash: TJ12NvtCptbjwY91XKfeBV5bJZ6ugQZ1nYOaUhjOlp4=)
2: zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl (hash: GLoFKnUM1ue24zfJH9Klp0v5+9+sbGZjftLrj1P8ZFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:e5:42:98:77:1a:fc:f5:26:87:1e:88:0a:70:02:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce1f59ae34548132892fcc89b1595f9b0360198d
Validity
Not Before: Jul 26 18:01:03 2025 GMT
Not After : Jul 27 18:01:03 2025 GMT
Subject: CN=6be74c7063a26c658c13dbdbe8e32917eeef6b56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:53:59:e3:86:0e:7b:41:86:94:5c:12:56:d4:
c2:a3:d4:9d:4c:8a:5e:aa:24:d8:0f:f1:c4:0d:e1:
48:4e:05:69:39:da:68:cc:fd:23:b5:43:53:3a:db:
6c:cc:ee:2f:cb:70:42:3e:a2:79:9d:c8:95:98:b0:
b0:7d:7f:ef:cb:2f:5c:58:2c:73:12:7f:74:69:16:
32:cb:29:c5:85:a6:2f:46:cb:30:73:71:c8:51:df:
a0:fe:c3:34:49:44:72:d2:a3:78:cc:de:51:0b:06:
5b:54:e6:81:f9:05:55:ca:3c:ca:e4:06:ad:98:5a:
4f:8b:86:7d:c9:28:0c:95:c2:7b:6f:40:3a:26:86:
06:12:89:bb:6d:d6:8a:7b:05:2f:39:11:52:a4:4f:
d9:7e:6c:b2:1a:d2:a5:f5:f1:80:f6:c8:e3:3a:2d:
dc:ea:30:28:41:be:e6:3d:9d:5c:fa:e2:4c:41:ac:
37:a5:75:77:ef:8c:81:6d:11:bf:0e:67:2c:05:f8:
61:5e:8f:9b:36:de:29:3c:a1:72:1e:b6:c4:cd:f0:
2c:89:78:55:55:63:3c:01:a9:9a:c5:c6:74:76:ec:
ea:de:16:ca:3d:79:fb:88:a6:83:54:59:a2:50:59:
cd:65:ca:fc:f1:d4:2f:c6:5e:d3:95:17:4f:71:70:
ba:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:E7:4C:70:63:A2:6C:65:8C:13:DB:DB:E8:E3:29:17:EE:EF:6B:56
X509v3 Authority Key Identifier:
keyid:CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:88:c3:56:99:03:f5:52:6e:ae:4f:8e:fc:c8:9a:b7:ba:a6:
33:57:8d:d9:d9:29:44:a5:eb:63:9b:8c:d6:3b:85:e6:93:38:
bf:29:42:28:73:6f:7a:03:6b:6e:67:ee:39:97:58:c7:9d:b2:
a9:89:59:b1:b0:db:31:c5:19:5b:61:31:47:f5:56:57:3f:2a:
d1:13:7a:50:a5:36:ee:6f:07:8f:c9:48:0a:97:dc:30:b9:79:
db:ac:52:4c:88:aa:26:9c:c2:fe:24:c8:e0:1f:54:43:af:2a:
59:69:39:e5:d3:9f:d1:90:19:b3:90:6a:73:52:5a:1d:7e:bf:
cb:37:36:8b:30:ed:9a:93:c0:a6:a7:23:20:d6:95:c1:c4:d9:
46:1f:62:9b:21:76:d6:4e:29:52:cc:ac:e1:7d:8b:6e:98:5e:
c5:d9:ab:7e:0e:33:d1:72:0d:ca:0d:1c:19:df:9e:64:76:f2:
86:33:94:d7:be:4b:8f:dc:5b:eb:28:71:c0:83:df:c3:b1:dc:
da:22:3b:d9:97:c5:2a:a1:d5:ba:02:93:61:e2:77:f5:2d:c6:
9e:0e:6b:61:f9:a1:e3:a2:03:44:a5:b7:cd:d3:89:8f:d9:98:
34:c6:6c:6a:fe:8d:cc:e5:40:03:1d:0c:b7:75:74:61:5b:06:
ab:32:d6:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 19:39:15 2025 by rpki-client