Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
File: ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft (raw, json)
Hash identifier: qf3T7b2mnSklK319dG5/V0xhThFUpS4kabveILD+PRc=
Subject key identifier: 30:51:94:58:2F:56:B6:A4:5E:27:3F:03:5E:31:8D:E7:CA:65:38:D4
Authority key identifier: 66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C
Certificate issuer: /CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c
Certificate serial: 019A0F708BA98843733A4F49955531B985AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
Manifest number: 0D39
Signing time: Thu 23 Oct 2025 05:00:25 +0000
Manifest this update: Thu 23 Oct 2025 05:00:25 +0000
Manifest next update: Fri 24 Oct 2025 05:00:25 +0000
Files and hashes: 1: 6uraY0RUo083dp6VRDIhaMr-XOw.roa (hash: 84hQ/Wr95yt1TasjhyzEMQBsJDQIG0TsCg+7NafRezY=)
2: ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl (hash: 5imrEce2P8Fa4SYE4ePxatY3J2PI4Fmed9ZPtnhE8/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0f:70:8b:a9:88:43:73:3a:4f:49:95:55:31:b9:85:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c
Validity
Not Before: Oct 23 05:00:25 2025 GMT
Not After : Oct 24 05:00:25 2025 GMT
Subject: CN=305194582f56b6a45e273f035e318de7ca6538d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0f:ae:b8:68:f0:ad:dc:b3:2d:08:3f:c0:c5:
2c:53:9c:55:73:b5:cd:e7:ac:28:b4:0d:98:79:8a:
d2:52:b7:e5:66:64:6e:fc:95:38:6a:be:f9:8b:36:
f7:fa:d9:31:65:80:1d:90:08:80:be:14:4b:48:84:
7e:99:3b:f2:d9:6b:2f:56:44:40:ee:39:eb:4f:eb:
ba:3a:0c:0c:d1:d1:f1:3d:ec:f5:c8:5e:ba:04:20:
22:27:11:0e:da:cd:06:86:df:e1:af:07:7d:ae:93:
52:a9:b6:a4:5f:3c:d7:88:46:a9:6f:be:32:cb:bb:
dd:a9:46:66:71:4b:5b:88:f5:0d:55:76:0d:91:ad:
de:78:4b:b7:90:6f:66:b1:7c:4c:15:1e:2d:a4:c6:
83:ba:c1:14:30:40:d5:71:b9:97:b9:d9:34:91:5e:
f6:83:cc:25:03:7e:90:36:ea:1f:00:d7:1a:27:cb:
98:31:9d:24:b6:4f:d2:8c:7b:d6:a6:3a:8b:3a:86:
3c:93:2d:5f:8d:4d:f9:7a:75:d6:42:bd:55:0b:c3:
2d:06:2c:ad:6f:24:89:b9:66:d1:55:fc:e8:b6:53:
75:17:c2:8b:b4:f8:6a:1f:2d:40:eb:f9:9d:99:cd:
0d:35:56:ed:c4:18:e7:a4:28:72:cd:5a:da:0f:43:
0c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:51:94:58:2F:56:B6:A4:5E:27:3F:03:5E:31:8D:E7:CA:65:38:D4
X509v3 Authority Key Identifier:
keyid:66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:e6:0a:9b:a4:75:05:ac:8d:e6:ad:ee:3a:bf:75:63:13:06:
9d:df:af:b9:56:b8:e8:99:27:80:b7:76:42:e3:bf:ee:b3:25:
76:02:fc:6f:4d:95:59:e2:48:28:6e:a0:aa:19:87:41:65:d1:
46:d8:84:11:73:dd:71:ee:c7:c5:5d:67:53:55:df:41:1b:99:
fe:83:a5:5b:84:68:05:29:14:0b:f1:bf:df:0c:78:7d:d2:09:
e3:36:29:21:cd:13:db:1a:9b:b4:a3:cf:12:14:5d:99:0f:22:
8e:dc:ec:2e:9b:9c:fc:9b:a7:79:4f:18:84:19:fd:39:e8:51:
fa:3c:94:cc:3b:40:64:f9:60:95:e4:9f:30:46:41:62:67:99:
92:9e:ab:1a:7f:b8:2c:cf:1b:0a:6f:57:5a:e2:ff:ee:8c:1c:
9d:c4:b0:30:85:68:1c:0a:e0:9d:8f:12:97:70:48:b1:2e:c8:
c0:e8:d7:65:ec:e4:b1:46:7b:79:ff:e1:fb:69:5a:72:05:d8:
80:5f:e1:29:60:b7:b9:09:b4:78:c6:4f:56:f3:79:56:a6:a2:
17:fa:19:14:cf:41:1e:f2:fe:81:ed:73:36:e3:c3:94:ec:b9:
d6:93:a4:66:9b:8e:82:72:30:39:cb:c5:6f:cc:c1:84:cf:20:
72:9a:1a:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 07:18:11 2025 by rpki-client