Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
File: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft (raw, json)
Hash identifier: hTtW/ZwcH8kgq3xpn1uTTu+eSl+rCk2bGn9prAAE+1U=
Subject key identifier: B9:C0:E3:DE:EB:C8:0E:08:C4:B4:72:FF:B4:4C:52:9C:50:2B:53:89
Authority key identifier: 66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
Certificate issuer: /CN=66ba8d64e901b39b501ed3693ec27430713886e3
Certificate serial: 019922C36F682AD374655824FF1B72332E16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
Manifest number: 0FDF
Signing time: Sun 07 Sep 2025 06:00:57 +0000
Manifest this update: Sun 07 Sep 2025 06:00:57 +0000
Manifest next update: Mon 08 Sep 2025 06:00:57 +0000
Files and hashes: 1: Fg0QsDS_oIn0AHFloFbOWLXLPYw.roa (hash: PCZ0sNE5BS8dEXbU+ksvDG3w1iOi7xIBrn9yDW7TZ/U=)
2: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl (hash: R+Jzp3ZqJXqiMECXrrd5SBGRkTTVzIJa+yHTx+XnOwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:6f:68:2a:d3:74:65:58:24:ff:1b:72:33:2e:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ba8d64e901b39b501ed3693ec27430713886e3
Validity
Not Before: Sep 7 06:00:57 2025 GMT
Not After : Sep 8 06:00:57 2025 GMT
Subject: CN=b9c0e3deebc80e08c4b472ffb44c529c502b5389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:71:06:60:e0:3d:9a:5c:ad:8d:cc:65:b6:9a:
71:5a:87:a2:b1:ca:58:d1:82:a5:6d:8d:16:2c:27:
5c:29:0c:6c:a1:29:cc:8b:45:c6:03:76:94:af:13:
bd:2e:86:62:90:4d:e0:cf:d8:cd:6d:af:69:e4:55:
d1:65:ac:0e:52:93:19:53:99:a5:6c:91:66:0c:ae:
71:9d:a3:0f:e5:ea:32:73:3e:01:63:da:b5:79:04:
67:47:11:71:f8:f9:27:74:01:20:7f:bd:f6:f3:eb:
4b:c2:d7:37:6e:51:e0:1c:b6:7d:d7:a3:19:67:5d:
a2:56:54:5d:97:da:ca:c3:2b:fe:6a:b7:02:10:de:
e0:b2:91:89:27:4f:98:07:b3:d4:70:99:ac:c8:71:
c7:a3:1d:d3:2e:9d:22:82:32:30:85:58:f1:92:c8:
40:fb:11:a4:64:5f:ac:0f:85:6d:cf:55:10:f6:54:
80:0a:5c:f0:89:ae:a2:0b:ee:09:43:31:35:96:01:
11:00:6f:e5:32:5b:32:26:1f:16:8b:76:d1:01:a1:
9d:12:d6:2b:73:7e:7c:c7:2d:ef:16:9a:ec:86:67:
b4:97:c1:b3:07:00:2a:61:b7:b6:4c:14:74:96:f5:
1c:6c:d0:25:ed:69:17:da:a3:07:c7:f3:0c:17:b3:
99:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C0:E3:DE:EB:C8:0E:08:C4:B4:72:FF:B4:4C:52:9C:50:2B:53:89
X509v3 Authority Key Identifier:
keyid:66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:8d:fa:5c:df:06:30:e2:7c:ce:66:b8:71:54:07:db:49:87:
16:c4:34:3f:d3:d7:3c:28:c0:88:4b:98:be:63:2a:93:22:2e:
68:d4:da:63:9f:0f:31:33:d7:54:0f:a3:f7:d4:dd:c0:6d:02:
f2:73:bb:7f:b3:05:f7:5f:0a:f2:79:86:d5:58:d7:43:70:80:
51:c6:b9:4b:34:d7:72:39:2d:17:81:8b:94:58:a3:05:e7:a4:
b1:73:0e:57:0b:86:83:a5:2b:88:d1:e6:78:2a:15:22:83:7c:
0e:62:cd:68:14:fe:46:be:e5:5d:95:3e:e8:d3:0e:93:3d:e4:
f5:30:64:16:8b:9d:74:fb:e0:6a:a4:2d:7c:4a:9b:ef:1b:33:
f3:63:7c:4c:06:73:67:27:99:d1:c3:19:e0:bd:9c:ab:e1:eb:
b5:40:df:bc:15:3a:10:fb:ef:2e:26:64:52:58:d7:7f:be:e6:
0d:b2:50:29:a7:b1:9b:3c:ce:90:09:cf:46:84:d1:5a:01:05:
4c:b3:f1:03:ea:bc:eb:4d:e7:41:12:51:e5:5f:87:f0:b7:61:
99:10:cb:b2:d4:06:70:33:b2:a7:97:d7:dd:cf:c4:51:e8:95:
fe:f0:f2:c0:be:f5:d7:28:c2:3e:b4:49:1b:46:4e:14:fb:4d:
2d:96:59:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:43:34 2025 by rpki-client