Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json)
Hash identifier: vJiBfsv2AqBYByZFXKAnjHaBfMmGKK8/XF3hCmZHQkM=
Subject key identifier: CB:81:3E:56:EC:52:DB:11:E6:DC:14:A5:5B:16:5A:E8:E8:E5:54:06
Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196
Certificate serial: 0198D65FF24A68D444C044E1CA9EB516EDB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
Manifest number: 0CF0
Signing time: Sat 23 Aug 2025 10:01:08 +0000
Manifest this update: Sat 23 Aug 2025 10:01:08 +0000
Manifest next update: Sun 24 Aug 2025 10:01:08 +0000
Files and hashes: 1: FwAUcIE-PlUBJk-lyofvjIK4_Vk.roa (hash: 7pDJDV3PAprmagYY0WEztJ7b9H5DGoPcWbYIPWhc9l8=)
2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: AN5Y1EZhP6CBE4SVAVaj9SABouQBEeelovUgOu/KBzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:f2:4a:68:d4:44:c0:44:e1:ca:9e:b5:16:ed:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196
Validity
Not Before: Aug 23 10:01:08 2025 GMT
Not After : Aug 24 10:01:08 2025 GMT
Subject: CN=cb813e56ec52db11e6dc14a55b165ae8e8e55406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f7:68:dc:fd:ff:f3:5a:89:63:69:af:fd:ab:
f0:81:c8:89:25:3e:cd:0e:ff:94:de:8c:00:21:15:
46:8d:e3:5a:c9:09:87:fb:55:dc:20:91:ed:76:c9:
e2:73:f3:e0:ed:6f:e4:eb:59:48:31:48:fa:21:b3:
a2:3d:79:c4:17:e9:16:7c:a2:b7:7b:53:7f:bc:96:
46:ab:1c:c3:92:44:c4:07:6b:8b:49:c8:ee:32:c3:
15:b2:15:82:b5:73:7b:54:5c:59:c4:8f:a8:46:5e:
3e:2b:df:6a:9c:c4:7f:01:dc:0d:81:fa:80:64:0b:
7f:b4:d9:56:c0:4a:e1:46:7b:af:e3:f8:17:8d:04:
c2:ba:c6:41:8c:a3:47:73:cf:25:fa:49:30:9e:2f:
07:a3:01:90:61:83:ea:76:d3:58:64:a4:ec:b8:b3:
14:b9:b0:72:6f:07:ac:ae:35:69:03:4a:49:42:cb:
d3:56:fb:70:94:06:e1:cb:6a:7c:ba:ef:4a:04:0a:
9e:83:0d:26:8c:aa:79:de:32:33:70:65:f0:30:7b:
52:f8:67:ff:5d:62:7d:86:f6:d8:04:2c:11:90:a8:
6c:3b:7f:94:c1:bc:9d:93:76:0b:f0:4a:a4:ac:0e:
ea:c3:9c:7a:be:86:95:01:28:1f:2b:49:e0:45:9e:
1a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:81:3E:56:EC:52:DB:11:E6:DC:14:A5:5B:16:5A:E8:E8:E5:54:06
X509v3 Authority Key Identifier:
keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:43:38:1a:37:dc:91:10:b6:f1:04:96:cd:87:8a:fb:7c:0f:
79:c3:2e:d1:b0:eb:3b:12:45:21:4f:e0:17:a4:d1:ee:72:d9:
14:c1:a2:a3:53:c4:ab:81:e7:b4:ec:f6:e1:8e:04:da:2f:a8:
ed:e6:e8:dc:84:f5:f5:61:47:4c:47:c9:29:12:45:a3:3a:89:
23:91:8b:0f:67:4b:18:4a:83:bf:35:88:9b:b2:83:18:44:76:
51:8c:6f:61:2f:6b:2f:4d:56:2e:68:fc:73:5d:aa:92:14:9b:
df:b4:96:25:e3:66:4f:7f:79:ad:12:25:c0:0a:5f:bc:0a:87:
dc:e1:0e:00:15:c2:65:a1:b9:4b:f4:13:b5:d3:0d:47:7a:70:
1e:9c:39:ef:d5:57:30:2a:56:0e:b3:5d:22:2c:c0:3e:ad:fe:
d4:e1:05:36:45:7d:12:29:c0:6d:b5:2a:1c:ed:fc:90:14:d0:
d2:56:f4:de:9e:34:eb:d8:91:82:db:b2:50:4b:5b:1a:6f:eb:
e8:72:2e:ab:f7:c4:b2:04:19:18:08:5e:6f:8a:be:6e:ef:51:
06:f4:ad:8d:b6:a0:fe:c6:3b:23:5c:ee:76:96:4e:fa:ee:fd:
43:dd:db:8d:eb:29:3e:f1:13:cb:f6:f6:11:26:ec:b4:17:83:
0c:22:c5:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:41 2025 by rpki-client