Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
File: zK1o9-irrfRHJiM0OjJWFQciQYk.mft (raw, json)
Hash identifier: 0DA3HTtN+eevv5bb+P+Ru2qrmrm1BRvgywJIB3h9TEg=
Subject key identifier: D2:9D:46:97:BD:0A:25:8F:97:EE:41:A1:DF:55:55:64:D5:0B:59:23
Authority key identifier: CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
Certificate issuer: /CN=ccad68f7e8abadf4472623343a32561507224189
Certificate serial: 0198D47300587AB8F715255A2CE9789E31F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
Manifest number: 07B9
Signing time: Sat 23 Aug 2025 01:02:43 +0000
Manifest this update: Sat 23 Aug 2025 01:02:43 +0000
Manifest next update: Sun 24 Aug 2025 01:02:43 +0000
Files and hashes: 1: UD4cQq7SyCABLCZHHC1Ou_EeL6M.roa (hash: tfgZKXi2rZuQqy6q4ZM+ZUGFDVqdyYkcUnUVHT5tgpI=)
2: zK1o9-irrfRHJiM0OjJWFQciQYk.crl (hash: ++tAAlDHivIZMdM21V+D2vdeVe6Yih1Tbjcwtnyt/qQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:00:58:7a:b8:f7:15:25:5a:2c:e9:78:9e:31:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccad68f7e8abadf4472623343a32561507224189
Validity
Not Before: Aug 23 01:02:43 2025 GMT
Not After : Aug 24 01:02:43 2025 GMT
Subject: CN=d29d4697bd0a258f97ee41a1df555564d50b5923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cf:03:8e:5c:1e:0d:34:26:4a:47:67:5d:43:
05:42:f4:5c:85:c1:18:01:33:f8:34:f1:f2:cd:51:
c2:fe:60:3a:6b:5a:6f:37:4a:ca:8d:e5:6e:53:9d:
c3:59:8a:03:56:b2:22:75:e6:db:6f:8d:08:0b:cd:
a0:dc:d4:4c:73:64:a1:92:1b:3c:1d:63:c0:06:91:
32:e3:fe:c2:55:a2:3e:7d:3d:73:bc:4f:94:d2:34:
6e:c0:88:1d:37:17:48:9f:6e:e0:4e:29:4e:61:2b:
75:3d:bf:d4:ed:03:ff:af:d6:8f:e1:eb:38:dc:68:
a5:f7:f1:57:f1:d2:3f:47:a3:f6:ba:35:72:aa:d5:
2b:55:67:cf:09:e5:af:e3:ab:50:0f:23:31:f6:0e:
4e:cc:bc:f5:a7:52:75:4f:73:1d:bc:66:5e:14:82:
48:1f:d7:0c:da:4d:5d:ea:8b:0a:37:39:88:9f:e7:
e4:b9:51:90:f3:93:7b:48:15:f5:6b:84:9a:5a:f8:
b4:0d:56:0e:83:2b:13:77:8a:2b:d5:f2:b8:c9:f2:
b4:fb:54:28:68:17:85:be:2c:09:51:a9:0a:1e:27:
1d:aa:5d:cd:5d:43:09:2c:d3:96:f9:52:d0:94:11:
d8:ef:23:5c:70:70:aa:12:cb:8c:43:be:fa:cc:91:
5b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:9D:46:97:BD:0A:25:8F:97:EE:41:A1:DF:55:55:64:D5:0B:59:23
X509v3 Authority Key Identifier:
keyid:CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:0c:6e:23:01:a4:9f:8c:e3:a4:9f:77:bc:a2:a1:a4:89:47:
4e:53:73:48:c6:1d:68:38:62:3a:54:02:50:ba:2d:0c:70:aa:
ee:ac:6a:09:f5:60:37:54:4b:71:01:8c:b4:35:c5:a7:aa:5c:
c3:cf:e5:da:b1:25:0d:b8:46:ef:af:39:c9:e9:6a:d9:33:9e:
3a:af:47:2e:e4:60:15:65:3b:8f:b2:bd:45:0c:ff:ee:b4:7e:
54:d0:e1:8c:c9:42:0f:c9:01:a0:11:90:d4:3f:87:2f:b3:88:
40:9f:d2:8e:52:ff:e1:bc:f9:af:b0:0a:5c:99:b0:df:96:3b:
9b:d4:a5:9e:18:8f:58:96:71:b3:76:70:98:63:7e:5c:47:bc:
20:16:47:27:51:83:ce:6b:3f:30:80:a5:49:09:4f:09:8f:da:
bf:32:43:f7:b7:e3:4a:d0:29:17:97:8b:21:b3:1d:44:f8:2d:
51:e9:d2:56:97:a0:32:af:79:6a:4c:9c:e3:6d:e6:12:be:da:
17:4c:8c:5a:b6:ec:b9:61:c5:07:57:51:b8:e6:56:3f:42:ac:
51:dc:fb:9a:5c:42:69:f1:83:17:0e:76:1b:2b:bb:e4:ce:12:
6a:86:b5:a0:5b:f2:f4:4b:ba:02:e7:d8:36:2f:58:93:87:af:
43:70:c7:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:17 2025 by rpki-client