Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
File: ZD4bqRxWmoshptLWf1271sBOQ-o.mft (raw, json)
Hash identifier: AET3dTF6vXglyT9bMI2nQaYg+htv5hJyb44StDp4Ok4=
Subject key identifier: B2:12:D0:9C:E9:41:C0:42:B3:29:1C:1E:F5:07:F5:2B:CF:F5:39:FC
Authority key identifier: 64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
Certificate issuer: /CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Certificate serial: 019A1FBF30CA401A08177DC396CFA43081BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
Manifest number: 16F6
Signing time: Sun 26 Oct 2025 09:00:14 +0000
Manifest this update: Sun 26 Oct 2025 09:00:14 +0000
Manifest next update: Mon 27 Oct 2025 09:00:14 +0000
Files and hashes: 1: 1MBxY-L-G-PezNdSAum2Qznjvvk.roa (hash: WzqdlX3BQAdtrBN0mtz0qnp4BVXNCLlknuqqWLF2nEY=)
2: 64_MTb5KgxHA8ajybrrfkFaqSHo.roa (hash: 3HoEZ5o8a764cMBp72+Je8xSTOL3XWu1W9vfmUxztJY=)
3: NcFH54U_2J6k3O8FG01A4l3YkX4.roa (hash: /kjUMIh5yITP6UOhs7cpgkxUJuo6AlmV12M3gHqX+6U=)
4: QnTqLhMHC9T4AoMjaLap4QpmLDU.roa (hash: 7wNURJNL1VG5jzuYA7SYiM1RdZjO0wnh2b7/W3YMGs8=)
5: ZD4bqRxWmoshptLWf1271sBOQ-o.crl (hash: nn7+xAh4wyEOwbxrxCzC5VoCzd4xW2NAsONMGbQfq/8=)
6: ZKwCytxQwb2lA8HdN2ItTa-nGFE.roa (hash: YVehp3VlkVUX9qY7Jk5F+8RNoRR+lbS+MAT+mCdr+Tw=)
7: ymZdEzMVegQJBBFPgdqPQzW1-gk.roa (hash: RX7+2wwGNp6bGJxI7GKZlbgjxbbHN4LNuKVuwi5foZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 09:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:bf:30:ca:40:1a:08:17:7d:c3:96:cf:a4:30:81:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Validity
Not Before: Oct 26 09:00:14 2025 GMT
Not After : Oct 27 09:00:14 2025 GMT
Subject: CN=b212d09ce941c042b3291c1ef507f52bcff539fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7e:e0:71:d0:79:b8:b3:1d:c3:08:43:53:14:
d1:5a:c9:8d:dd:28:08:92:15:d5:39:3c:2f:12:a0:
25:34:2f:d7:de:d7:54:7f:20:bd:a0:a1:83:6e:08:
f2:31:dc:25:45:e8:95:42:ee:28:ad:a7:b5:c2:2b:
ea:49:da:13:9e:29:9a:6a:38:d9:c3:83:0c:9b:2e:
1f:43:5b:2f:f2:4a:bb:7f:a0:0c:3d:30:58:59:4d:
fb:0e:1f:2e:56:ef:44:b5:6a:c2:54:33:a4:6c:3d:
4c:40:01:50:09:8f:99:51:6e:26:1e:d9:8f:c5:a3:
1e:1b:d4:c8:73:14:e4:57:24:1b:97:8f:c9:01:80:
ad:e6:ec:d8:47:bc:a8:ea:8a:32:76:6d:28:b4:79:
2c:d3:fc:8c:85:6f:eb:81:ce:5b:80:1b:a0:52:71:
c8:ab:99:3e:f8:cc:74:e6:7d:b7:97:48:d3:1c:4d:
3b:94:22:6c:0f:69:2b:ac:4d:bc:16:c5:ac:43:67:
f1:3f:ac:66:e4:b8:13:2b:35:86:1e:7d:40:78:3c:
8d:f8:29:11:17:de:eb:0b:7a:9c:ba:cf:26:98:16:
f6:1a:80:73:f1:8d:88:1f:ee:25:7d:07:51:5b:60:
2a:70:84:78:4f:a4:74:21:27:21:9c:b6:59:3d:be:
b6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:12:D0:9C:E9:41:C0:42:B3:29:1C:1E:F5:07:F5:2B:CF:F5:39:FC
X509v3 Authority Key Identifier:
keyid:64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:09:d2:d1:2b:83:91:b3:1b:17:9f:f9:74:67:b9:2d:a9:51:
60:d5:b5:f6:44:eb:e0:7b:04:ba:f0:8e:47:e6:e5:49:05:97:
07:4e:18:4f:aa:45:c1:27:c9:26:3f:8f:e1:16:ac:45:b6:82:
61:dd:0b:c4:54:33:6e:78:48:62:f5:4b:f9:24:ed:36:9d:86:
77:59:55:41:08:b1:10:d5:64:17:a9:6a:d1:08:81:cb:fc:5f:
2f:90:7a:d2:93:ea:ae:bb:38:61:51:b5:96:69:c5:c1:b3:e5:
a1:53:f7:7e:ff:52:86:49:28:39:58:ae:17:34:34:fe:53:07:
03:de:4c:3e:92:f9:37:da:85:fc:2c:cd:c8:0a:2c:0a:d8:55:
a8:26:85:11:4b:fd:8a:15:fd:aa:22:ab:54:90:7b:5c:70:3e:
b9:5e:df:88:a8:68:d1:e4:18:40:24:e4:7e:6e:83:8b:22:a0:
08:1d:14:2c:fa:26:b2:ae:e1:2a:ab:d4:6d:36:e0:d4:1a:dc:
6f:f2:1d:f3:d8:0a:20:ef:0b:1d:f7:1a:ff:cf:df:f0:bf:30:
9e:91:e6:77:c7:e9:48:f8:38:e0:34:1a:b3:77:c2:23:1f:34:
fd:d2:8e:34:c0:ea:b3:e1:c7:47:dd:c5:ab:fc:4d:50:e6:f6:
9b:42:65:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 19:04:05 2025 by rpki-client