Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
File: ZD4bqRxWmoshptLWf1271sBOQ-o.mft (raw, json)
Hash identifier: GB+AKqY8dSbIH70Vqf7BBwqqy8/h2EiklWWLu7OUOjE=
Subject key identifier: 4B:7D:66:3F:CC:9A:D0:78:44:E8:47:2A:57:44:31:7C:99:11:AD:97
Authority key identifier: 64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
Certificate issuer: /CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Certificate serial: 0199304808E55C2B70FB604DC749213182B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
Manifest number: 167A
Signing time: Tue 09 Sep 2025 21:00:51 +0000
Manifest this update: Tue 09 Sep 2025 21:00:51 +0000
Manifest next update: Wed 10 Sep 2025 21:00:51 +0000
Files and hashes: 1: 1MBxY-L-G-PezNdSAum2Qznjvvk.roa (hash: WzqdlX3BQAdtrBN0mtz0qnp4BVXNCLlknuqqWLF2nEY=)
2: 64_MTb5KgxHA8ajybrrfkFaqSHo.roa (hash: 3HoEZ5o8a764cMBp72+Je8xSTOL3XWu1W9vfmUxztJY=)
3: NcFH54U_2J6k3O8FG01A4l3YkX4.roa (hash: /kjUMIh5yITP6UOhs7cpgkxUJuo6AlmV12M3gHqX+6U=)
4: QnTqLhMHC9T4AoMjaLap4QpmLDU.roa (hash: 7wNURJNL1VG5jzuYA7SYiM1RdZjO0wnh2b7/W3YMGs8=)
5: ZD4bqRxWmoshptLWf1271sBOQ-o.crl (hash: gZbriK0b1vCiz9kZlQuDJWvuQQ1CHQsmAuqaBiOVzus=)
6: ZKwCytxQwb2lA8HdN2ItTa-nGFE.roa (hash: YVehp3VlkVUX9qY7Jk5F+8RNoRR+lbS+MAT+mCdr+Tw=)
7: ymZdEzMVegQJBBFPgdqPQzW1-gk.roa (hash: RX7+2wwGNp6bGJxI7GKZlbgjxbbHN4LNuKVuwi5foZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:30:48:08:e5:5c:2b:70:fb:60:4d:c7:49:21:31:82:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Validity
Not Before: Sep 9 21:00:51 2025 GMT
Not After : Sep 10 21:00:51 2025 GMT
Subject: CN=4b7d663fcc9ad07844e8472a5744317c9911ad97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7e:30:69:01:0b:8f:60:a4:fc:9a:37:e3:9f:
19:83:b9:e4:1e:99:c0:c7:ca:05:13:0d:73:37:e8:
37:29:65:56:02:c4:84:24:8b:7e:ce:c8:39:2b:f0:
07:d5:6e:14:3d:a2:41:8c:b0:82:e0:ec:e0:6b:f7:
6d:5b:bb:55:9e:68:8b:e5:69:36:fb:e4:d8:10:59:
d4:13:d5:1a:36:be:db:b6:79:9f:98:7c:3b:5d:7f:
f6:eb:fb:09:a5:37:04:d1:34:93:13:92:56:d5:18:
a0:0e:6e:94:1a:99:69:ec:1a:56:20:00:78:3f:b1:
5b:aa:58:a4:0c:73:ee:7e:81:0a:67:18:5b:b2:6d:
02:bb:3d:86:58:58:2b:27:a6:1e:35:49:43:8a:4e:
7c:bd:a9:de:97:21:b7:c4:6f:a8:16:8d:6c:9a:80:
14:7c:16:85:5c:39:f4:fb:33:6a:c4:e6:77:f9:8f:
79:ea:1b:f9:cd:dc:96:86:39:53:d2:9a:1d:d9:7b:
e3:3b:e3:7e:48:e3:91:ce:e9:25:ea:fa:7d:1e:c1:
44:b6:ea:d6:02:e3:10:09:9b:9e:30:fe:85:17:2b:
b0:9d:fe:f0:33:93:72:c6:d8:ae:9e:e1:2f:9b:9a:
f8:3c:99:c1:79:30:78:6c:bd:37:46:9a:97:10:90:
93:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:7D:66:3F:CC:9A:D0:78:44:E8:47:2A:57:44:31:7C:99:11:AD:97
X509v3 Authority Key Identifier:
keyid:64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:d5:f4:9f:ba:56:85:f7:04:4a:ea:ff:df:b7:2f:ca:7a:4c:
b8:9a:4c:63:8f:7d:7f:d4:8c:02:55:fc:cd:53:ad:6b:56:a2:
31:7b:fd:9c:5b:28:34:37:d4:1e:4d:d4:40:91:f0:00:00:2b:
52:aa:b3:c2:60:f2:e2:0c:10:f8:1c:36:64:87:66:c4:10:0c:
ad:51:52:c9:5d:05:38:3c:2f:b2:99:6a:55:7f:27:98:b8:f3:
1f:31:d0:8e:e1:94:34:9e:4e:1d:9f:cb:a6:47:42:d4:e1:e5:
3b:8c:1f:ad:0c:a0:36:e9:51:f1:35:a4:93:36:a0:49:e5:30:
83:71:09:0f:ed:1e:f3:5f:c5:63:dd:c3:cd:c7:28:83:a5:71:
10:41:25:f8:61:be:a7:03:44:6b:7f:a7:ae:f3:d3:43:71:18:
59:8b:75:b8:87:23:4f:a1:29:68:2e:53:3b:52:8a:20:ac:65:
43:24:65:f1:24:fb:3c:33:b1:a7:05:c7:92:e4:7f:69:af:00:
92:e8:8b:8c:a5:dc:65:3d:36:d7:f4:c3:a0:16:8a:a9:9f:e7:
18:00:70:b8:8b:a5:6f:94:b1:d6:b9:1f:5d:0d:54:bd:f6:a7:
e2:89:42:12:04:0a:bd:9c:df:fd:96:6a:3c:6a:92:20:e0:21:
74:37:5f:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 04:07:51 2025 by rpki-client