Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
File: ZhBOT32fONjiKi0yvgGQMZMMGkc.mft (raw, json)
Hash identifier: oJ+bJtBLojPvfNDOb4q4zJ6VfI74bFI1+8dTbaFV+e0=
Subject key identifier: F6:43:CA:16:14:AB:8D:C9:FE:4B:7F:76:66:09:81:0E:70:D6:A2:73
Authority key identifier: 66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47
Certificate issuer: /CN=66104e4f7d9f38d8e22a2d32be019031930c1a47
Certificate serial: 0198D6981CFAC15B85F7FD05F83E0D6E57F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 11:02:29 +0000
Manifest this update: Sat 23 Aug 2025 11:02:29 +0000
Manifest next update: Sun 24 Aug 2025 11:02:29 +0000
Files and hashes: 1: CBx-FeJj7z4oTrZiVmY-MbHnzM4.roa (hash: 1bONPKFzyDS/3APoxZR25vqyDAsgCQifSMXpTfL4F0s=)
2: WxxzockSF-0jbEBubYwjKIfgtaw.roa (hash: uNom3cZ42KKzlsjBXTYNfCi+Ksse/PrjCfplRbo7jWE=)
3: ZhBOT32fONjiKi0yvgGQMZMMGkc.crl (hash: B4j7EpMfWLps/sPar10snGhwjK2Oh1v3dPuiTMrxkqM=)
4: hAuohYiSHygUFUxTjuX1SWN5QDE.roa (hash: MotGMSUysnMBdzXEwoyDH1EBq/l4jrQRez7lyisrMeA=)
5: n6ANVJpjfADW-mInHpVlhLdkL5w.roa (hash: E28ZlsfhOnBkyIyOKkYfx6xyMrKE5R52d/SAANOKtIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:1c:fa:c1:5b:85:f7:fd:05:f8:3e:0d:6e:57:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66104e4f7d9f38d8e22a2d32be019031930c1a47
Validity
Not Before: Aug 23 11:02:29 2025 GMT
Not After : Aug 24 11:02:29 2025 GMT
Subject: CN=f643ca1614ab8dc9fe4b7f766609810e70d6a273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:08:ed:ac:e2:7f:84:a7:d9:6f:bc:09:51:02:
83:e6:78:67:9a:cf:7e:9a:e4:fc:66:47:87:2c:60:
39:b9:65:e5:30:5a:5a:8b:b7:90:80:fe:10:79:78:
ec:a5:bf:c1:86:8c:69:ae:40:f0:e3:31:5d:c9:3f:
bd:9c:fb:ae:49:58:38:8a:bc:4e:72:59:9c:dc:cc:
c7:0e:80:9f:34:1d:4b:67:e7:8f:10:1c:35:d9:43:
79:cb:73:40:42:1d:7d:69:ba:09:0f:02:68:e7:42:
b5:bc:8b:10:b0:85:25:c2:66:04:9e:65:9d:25:c2:
7b:a1:b8:f7:29:18:dc:c9:84:81:6f:a5:84:54:2b:
ed:ae:a1:3e:7f:1d:52:b9:25:a9:87:4a:53:18:bd:
dc:9a:05:ec:f0:e8:82:00:09:9d:51:59:71:03:d3:
98:83:71:c0:9d:9b:e0:88:de:5b:5c:2f:b2:c0:5f:
fd:97:67:73:b9:c3:b0:b2:83:fa:ad:fb:90:1d:6f:
1b:f0:e3:68:0f:64:16:a7:06:10:f2:8c:ca:85:13:
4c:a9:ae:86:53:ff:a7:b9:22:aa:29:fe:5b:21:80:
26:f4:f0:b5:66:6f:90:ae:51:99:7f:bf:ac:d2:09:
b4:e8:d0:5b:37:50:6e:83:63:54:2d:fa:6a:56:78:
4f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:43:CA:16:14:AB:8D:C9:FE:4B:7F:76:66:09:81:0E:70:D6:A2:73
X509v3 Authority Key Identifier:
keyid:66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:21:60:ab:80:53:5c:1f:e9:56:64:c4:72:7e:f2:87:bf:30:
0e:d0:7d:79:63:6e:37:95:e7:86:ca:34:84:c8:a6:b6:00:fd:
d3:d5:0b:2e:7f:ef:23:9f:48:ba:cd:0f:c0:c0:ee:97:71:28:
16:53:73:ff:32:a7:a4:e1:6f:55:8b:23:91:c1:74:1b:1a:2d:
04:c7:55:af:70:5e:0e:76:ab:b4:6d:f0:2b:e0:b1:93:bd:63:
90:00:34:55:17:ab:9d:e5:b8:e6:4e:3d:aa:ad:f1:26:5d:86:
76:a2:e2:e1:c5:20:2a:f2:da:5b:db:0b:7d:9d:a5:cb:53:36:
0b:eb:c3:9f:2d:bc:db:a5:0a:14:4f:96:ac:60:2e:32:62:c8:
c8:8e:66:05:7d:e5:52:25:c1:b8:8a:dc:5d:bb:54:c0:40:ac:
89:79:90:ec:18:38:1e:1e:67:ed:8a:f1:55:8a:ec:52:16:26:
07:fc:d3:1c:08:b2:1c:c6:b0:12:d8:12:af:63:b0:53:54:d6:
e5:62:d4:f0:9d:3f:9d:ea:a8:96:5a:15:39:c5:3a:7e:dc:c2:
2f:b6:60:f1:b2:fc:f6:5f:30:95:62:ea:c2:32:d7:3d:82:78:
e6:6b:51:ac:b1:30:37:bb:10:d5:3b:76:2e:69:2f:42:46:0e:
f2:c2:d4:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWmBz6wVuF9/0F+D4Nblf3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2MTA0ZTRmN2Q5ZjM4ZDhlMjJhMmQzMmJlMDE5MDMxOTMw
YzFhNDcwHhcNMjUwODIzMTEwMjI5WhcNMjUwODI0MTEwMjI5WjAzMTEwLwYDVQQD
EyhmNjQzY2ExNjE0YWI4ZGM5ZmU0YjdmNzY2NjA5ODEwZTcwZDZhMjczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsAjtrOJ/hKfZb7wJUQKD5nhnms9+
muT8ZkeHLGA5uWXlMFpai7eQgP4QeXjspb/BhoxprkDw4zFdyT+9nPuuSVg4irxO
clmc3MzHDoCfNB1LZ+ePEBw12UN5y3NAQh19aboJDwJo50K1vIsQsIUlwmYEnmWd
JcJ7obj3KRjcyYSBb6WEVCvtrqE+fx1SuSWph0pTGL3cmgXs8OiCAAmdUVlxA9OY
g3HAnZvgiN5bXC+ywF/9l2dzucOwsoP6rfuQHW8b8ONoD2QWpwYQ8ozKhRNMqa6G
U/+nuSKqKf5bIYAm9PC1Zm+QrlGZf7+s0gm06NBbN1Bug2NULfpqVnhPcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPZDyhYUq43J/kt/dmYJgQ5w1qJzMB8GA1UdIwQY
MBaAFGYQTk99nzjY4iotMr4BkDGTDBpHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmhCT1QzMmZPTmppS2kweXZnR1FNWk1NR2tjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS84MmQyMjItMjIwMi00NWYyLWI5MDQt
NDc0NzJlZDNiZWNiLzEvWmhCT1QzMmZPTmppS2kweXZnR1FNWk1NR2tjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS84MmQyMjItMjIwMi00NWYyLWI5MDQtNDc0NzJlZDNiZWNi
LzEvWmhCT1QzMmZPTmppS2kweXZnR1FNWk1NR2tjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABCFgq4BT
XB/pVmTEcn7yh78wDtB9eWNuN5Xnhso0hMimtgD909ULLn/vI59Ius0PwMDul3Eo
FlNz/zKnpOFvVYsjkcF0GxotBMdVr3BeDnartG3wK+Cxk71jkAA0VRerneW45k49
qq3xJl2GdqLi4cUgKvLaW9sLfZ2ly1M2C+vDny2826UKFE+WrGAuMmLIyI5mBX3l
UiXBuIrcXbtUwECsiXmQ7Bg4Hh5n7YrxVYrsUhYmB/zTHAiyHMawEtgSr2OwU1TW
5WLU8J0/neqolloVOcU6ftzCL7Zg8bL89l8wlWLqwjLXPYJ45mtRrLEwN7sQ1Tt2
LmkvQkYO8sLU5Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 16:29:00 2025 by rpki-client