Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
File: Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft (raw, json)
Hash identifier: Gty6usbDXWOFqOFEeg2tpqtbrfe89/WKlDxnOC+fL0Q=
Subject key identifier: 2D:EF:EC:B9:B7:C1:29:3E:4F:AB:7E:88:B1:F3:40:41:C2:50:E8:67
Authority key identifier: 67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C
Certificate issuer: /CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c
Certificate serial: 0199240C8A1660E055FC5B31D03C63EEB57F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
Manifest number: 0D66
Signing time: Sun 07 Sep 2025 12:00:25 +0000
Manifest this update: Sun 07 Sep 2025 12:00:25 +0000
Manifest next update: Mon 08 Sep 2025 12:00:25 +0000
Files and hashes: 1: QSFoTY-rZFAhWSMN9-_p_o-BDiU.roa (hash: 3LADFmQvbHE7KoUBEivUP2jD8vxc2/ZNRnufgFEmEsE=)
2: Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl (hash: pJaUsSxCftraGmzj8IttUjtH+rZOohqcipB+LIQ0VPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0c:8a:16:60:e0:55:fc:5b:31:d0:3c:63:ee:b5:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c
Validity
Not Before: Sep 7 12:00:25 2025 GMT
Not After : Sep 8 12:00:25 2025 GMT
Subject: CN=2defecb9b7c1293e4fab7e88b1f34041c250e867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e7:78:45:e8:a6:cc:89:a8:b5:f3:9f:75:ba:
78:e9:dc:40:9d:38:40:7a:49:bd:1d:36:8e:f2:d3:
3c:74:5b:8b:18:69:52:ca:4d:3d:31:de:fb:d0:c3:
03:4f:74:12:5e:1b:4b:de:d0:3c:25:05:05:d2:8c:
29:3a:57:1a:d8:6b:e9:c7:46:d5:7e:05:c2:4b:94:
54:52:62:01:e5:13:30:84:be:a2:40:71:4f:a2:3a:
12:a4:56:09:37:06:c9:77:45:18:2e:98:f9:b7:af:
f9:de:8a:09:40:6b:2c:d0:35:a0:91:4e:71:45:45:
3d:2c:8d:03:63:00:10:11:d6:c5:4b:a1:dd:d1:c4:
5a:5d:2d:3d:e3:2c:9e:e7:20:c3:1c:37:8e:80:9c:
b3:78:48:0d:ac:dd:07:18:10:e3:df:8a:f5:d8:bc:
76:8a:12:e3:a1:9e:25:da:e5:5d:91:8a:0e:b5:08:
c7:dc:05:0b:95:26:67:c4:50:89:d2:fc:31:78:d0:
77:19:fb:2d:c9:d1:2c:7b:1c:47:63:03:60:7c:6e:
fa:99:1a:2f:34:9c:86:1c:16:2f:b6:13:86:51:22:
68:02:f5:4e:ce:f2:65:83:cf:b7:9f:3e:e5:61:ec:
67:bb:f5:e2:2f:e7:c3:f1:bf:20:aa:73:38:60:2f:
2e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:EF:EC:B9:B7:C1:29:3E:4F:AB:7E:88:B1:F3:40:41:C2:50:E8:67
X509v3 Authority Key Identifier:
keyid:67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:fc:da:e1:4e:5d:40:90:f5:fe:a5:46:e2:65:0a:82:5c:b1:
2d:22:74:34:40:d1:be:01:65:2b:1b:76:5c:67:07:b9:80:f4:
68:15:cb:30:47:32:da:4b:db:6b:a3:04:c1:29:aa:4e:1e:0d:
92:65:f5:c0:20:08:be:d0:19:96:06:df:31:7a:b2:4b:0e:fc:
97:a8:38:cf:ea:3e:01:97:b1:61:da:db:aa:30:dd:23:0a:9b:
9e:f2:5a:b8:cd:d1:9f:40:5b:1f:69:3b:79:93:9c:72:4f:1d:
cb:b5:e3:1d:2c:6e:6f:d5:45:1a:4c:10:84:aa:1c:84:84:26:
b7:e5:24:5d:11:33:9f:72:c2:d0:8e:b7:d5:c1:18:a6:e7:6f:
b8:bc:1f:9b:ba:da:57:9c:0b:52:74:79:98:64:83:17:03:26:
f0:e4:80:89:7b:0b:12:d4:f6:d7:b1:4e:a2:3f:09:c0:48:b5:
37:10:bc:66:58:dc:03:85:9c:f6:02:34:80:60:59:aa:70:00:
36:4c:51:af:d1:e4:9b:58:13:62:2b:12:71:ed:d7:8e:f9:65:
9c:a4:93:e3:57:e2:03:ca:9c:a6:65:00:fd:72:80:33:a0:22:
95:25:dd:13:1a:63:98:da:4c:82:7f:b3:05:7a:2a:42:d6:71:
40:5b:4d:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:50 2025 by rpki-client