Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
File: ZnKfnQeG9ooezVxakrw5LYaRl14.mft (raw, json)
Hash identifier: ru8KpWZlEny5gWbEQwc0vCNyEbWAIyvHjRftUlOd8a0=
Subject key identifier: FD:81:8B:62:00:8F:81:B6:96:4A:69:B2:0B:6F:2D:CA:06:B0:19:3A
Authority key identifier: 66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E
Certificate issuer: /CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e
Certificate serial: 0198D660A0B4874C9088F376CCF50CF464CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
Manifest number: 122D
Signing time: Sat 23 Aug 2025 10:01:53 +0000
Manifest this update: Sat 23 Aug 2025 10:01:53 +0000
Manifest next update: Sun 24 Aug 2025 10:01:53 +0000
Files and hashes: 1: 8P_S0IiROCk_5OYQ6mxMJ_E_ykg.roa (hash: hKXKA4mluIkjfh1vqK/elg6N0eojlwBUTy51lDcZmFo=)
2: ZnKfnQeG9ooezVxakrw5LYaRl14.crl (hash: 9q/XHeQ2M63RkWJ0riiNn67+OSqJP6i/3GcsB+G2MeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:a0:b4:87:4c:90:88:f3:76:cc:f5:0c:f4:64:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e
Validity
Not Before: Aug 23 10:01:53 2025 GMT
Not After : Aug 24 10:01:53 2025 GMT
Subject: CN=fd818b62008f81b6964a69b20b6f2dca06b0193a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:e1:4f:0d:ba:d4:1e:fc:0a:33:70:b2:2b:0f:
2e:63:eb:16:ef:07:df:13:74:15:67:64:4e:5d:f5:
de:fc:49:49:d7:53:96:6e:bf:78:78:87:63:a5:e4:
68:cf:a1:6e:f7:7f:dd:31:a1:16:1b:9b:1f:0e:1c:
9e:eb:d0:9c:6d:23:f7:4b:84:b8:28:dc:b0:45:c1:
62:f8:df:de:7d:df:67:02:5b:eb:59:ab:94:f5:b3:
ad:6e:51:cc:37:08:80:10:4e:04:a9:9e:92:44:94:
c7:51:d3:ef:9f:01:98:02:b2:ff:d8:e0:4b:68:a2:
8d:60:cf:d9:ce:cd:5c:6b:a0:db:95:33:d8:00:a1:
ad:f5:2a:43:55:82:7c:96:70:42:33:81:5b:c7:51:
9b:64:3f:11:26:64:68:df:9f:73:f9:8b:e3:e9:76:
76:0b:42:f8:c8:c7:aa:66:46:a3:ca:e6:52:5b:e0:
96:39:6c:58:93:e4:80:7b:7e:42:7f:a2:d6:12:0a:
38:2a:0c:a0:55:ef:e9:1f:7e:81:b6:e2:ac:f2:36:
a1:87:84:bc:8e:cc:75:e9:22:25:7e:06:7c:f4:e0:
64:0c:d2:6c:ab:82:17:a0:73:59:81:71:32:38:50:
d9:2f:40:07:dc:45:0c:d2:d7:e4:94:f9:13:4b:08:
5a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:81:8B:62:00:8F:81:B6:96:4A:69:B2:0B:6F:2D:CA:06:B0:19:3A
X509v3 Authority Key Identifier:
keyid:66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:53:84:2b:34:01:e9:72:50:4f:1b:9d:9c:2d:e0:7f:9b:7c:
25:70:d3:15:72:35:a4:f7:bf:c8:b2:e8:2e:70:eb:c1:4e:e2:
62:d9:59:de:12:2b:f3:88:d9:e7:eb:2b:09:11:b1:71:63:00:
aa:f2:1d:1c:bf:75:4d:d5:2f:4d:85:e9:6b:b9:c5:14:b2:71:
1d:cb:f7:7f:b1:93:90:85:e5:23:82:b0:36:54:5a:fb:63:0d:
27:b9:ca:d3:88:1b:10:8f:69:3e:6c:ce:2e:45:20:f9:6f:85:
c6:d7:3a:ea:56:b3:8b:1d:44:d4:36:bf:f8:cf:59:aa:e5:8f:
88:66:49:02:c5:a8:4d:ce:84:95:6d:14:9c:c3:e6:df:d7:72:
bd:5a:da:33:04:1b:d5:92:70:45:ac:91:46:7d:cf:49:33:d4:
f8:74:63:51:30:27:de:c6:74:ad:43:c6:24:5e:3e:a3:41:04:
62:34:73:7d:80:ec:fe:8f:cd:db:a0:b8:e9:34:71:50:1b:e8:
be:a0:ec:b5:fc:c6:61:a5:c3:fe:9a:01:a3:38:01:9e:d7:51:
b5:40:6b:7b:e3:43:85:24:c3:3f:68:fd:28:c0:b5:8f:25:a7:
fa:b0:74:05:ce:24:29:1d:d6:52:d5:17:00:c5:79:5c:8c:5e:
02:8a:8e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:13:42 2025 by rpki-client