Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft
File: g-ZAPPcyIcEX6km8kjT-b0oR14A.mft (raw, json)
Hash identifier: ULgDuA+MpPdIXFH1dE/H9Cpw1ck/6IVryPP/czodvPQ=
Subject key identifier: EB:34:EA:39:72:24:DD:4E:13:3F:B6:33:11:99:A7:29:61:10:61:8A
Authority key identifier: 83:E6:40:3C:F7:32:21:C1:17:EA:49:BC:92:34:FE:6F:4A:11:D7:80
Certificate issuer: /CN=83e6403cf73221c117ea49bc9234fe6f4a11d780
Certificate serial: 0198D69830B153089BA0071C45F7079E7F2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft
Manifest number: 113D
Signing time: Sat 23 Aug 2025 11:02:34 +0000
Manifest this update: Sat 23 Aug 2025 11:02:34 +0000
Manifest next update: Sun 24 Aug 2025 11:02:34 +0000
Files and hashes: 1: Z__qWjsTqKN6H6Uy48R_joDrg6A.roa (hash: hy+rnvr7Ps+zzGaNk6QHsEt8A1/U9k/JFaxCitWq0s8=)
2: g-ZAPPcyIcEX6km8kjT-b0oR14A.crl (hash: 8WWWNwCWz90xRIL3XsTkq3TnvlX5JeAdGGebV/jaNy0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft
rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:30:b1:53:08:9b:a0:07:1c:45:f7:07:9e:7f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83e6403cf73221c117ea49bc9234fe6f4a11d780
Validity
Not Before: Aug 23 11:02:34 2025 GMT
Not After : Aug 24 11:02:34 2025 GMT
Subject: CN=eb34ea397224dd4e133fb6331199a7296110618a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:68:0e:c7:6b:79:de:72:6c:8c:7c:ff:dc:9a:
bd:c4:4e:d7:d7:e7:af:66:6e:8b:b8:14:9b:33:2f:
ab:16:6b:7b:81:18:dd:61:bf:32:cc:31:9c:1f:0f:
e0:d3:a3:48:f9:23:c2:4c:40:ab:91:ff:24:ff:d7:
5f:92:ce:51:51:a0:7b:89:fc:43:8b:d9:ce:f7:d4:
94:ac:88:9d:f3:21:16:d8:0a:13:2e:d0:35:75:0e:
63:87:90:ec:f6:68:12:35:ec:26:04:b9:ab:30:92:
d7:83:05:8e:96:fa:ed:e7:8a:ff:3e:17:6f:d8:86:
03:8b:1c:01:00:ca:90:e4:71:a8:a2:51:34:1e:1c:
27:60:1c:a1:3d:19:53:27:73:fb:56:66:56:76:df:
23:97:28:03:5f:d4:ef:61:84:da:72:98:7d:92:ce:
0a:c0:48:da:57:fe:64:e6:0a:75:28:62:81:c7:c6:
9f:15:54:f9:92:92:09:4a:54:82:b7:37:aa:1b:2e:
63:15:98:63:4a:d7:f9:23:3e:ca:0c:ca:71:c6:ec:
97:3e:e2:af:a3:da:25:25:e0:c0:55:c9:8b:17:08:
8a:26:62:ef:1b:14:7b:ea:0d:fa:1e:5a:bc:42:30:
e7:32:39:1b:dd:19:b7:b1:19:c2:22:ca:60:8e:02:
49:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:34:EA:39:72:24:DD:4E:13:3F:B6:33:11:99:A7:29:61:10:61:8A
X509v3 Authority Key Identifier:
keyid:83:E6:40:3C:F7:32:21:C1:17:EA:49:BC:92:34:FE:6F:4A:11:D7:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:85:3c:7d:bd:5c:c0:d6:f1:13:7f:b6:26:13:6e:c6:3d:81:
1d:4c:1a:f4:be:fa:90:5c:b0:5d:81:ee:11:d5:cb:62:26:6e:
42:e1:4b:51:30:c9:f9:4e:d2:a1:dc:ea:42:8d:dd:de:26:96:
f5:69:a7:81:2b:bc:88:46:6a:2e:0a:db:b2:34:0b:5d:76:e2:
14:a5:a3:e4:8c:e1:e3:07:f0:4e:66:85:49:e2:fc:28:b0:69:
21:30:b5:9c:81:33:ca:6b:5e:87:48:6a:f6:f2:34:f1:c0:9d:
46:aa:e4:d9:5e:4a:ea:4f:a4:4b:66:af:8e:7a:c6:06:2b:fa:
02:bf:0a:ef:fd:a0:95:91:0d:e6:1e:ff:69:f4:b9:cf:51:f0:
1b:79:5f:dc:29:6d:ac:2e:98:64:e2:a9:8f:11:fe:5b:1e:c3:
b0:9f:e8:fd:08:75:48:09:db:00:de:73:0a:8a:91:4c:a2:04:
c7:be:7f:34:34:8b:44:62:84:f8:22:a3:76:a2:45:25:b7:d6:
82:4c:f0:64:1f:7e:8b:19:2c:87:06:ce:25:53:8e:a8:6c:0f:
b3:79:c1:d5:db:e3:41:1a:ec:d5:78:72:96:da:c5:22:63:1a:
27:97:ed:a6:12:35:dc:3d:a8:12:ca:cd:4a:ab:e1:65:55:4c:
62:28:44:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:02:25 2025 by rpki-client