Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
File: MzOeZKWFFMmwkemy5o4pNx5D498.mft (raw, json)
Hash identifier: /Rpy+ht3tcmE6z4xCZLptyzAMVV54hf1vY/qGn1MVn8=
Subject key identifier: 38:50:82:EB:95:D1:35:5F:6E:AA:01:B6:0F:D6:F1:DA:92:7C:8F:6E
Authority key identifier: 33:33:9E:64:A5:85:14:C9:B0:91:E9:B2:E6:8E:29:37:1E:43:E3:DF
Certificate issuer: /CN=33339e64a58514c9b091e9b2e68e29371e43e3df
Certificate serial: 0198D473B75B3C34A6DF2173378A1C1C2CC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzOeZKWFFMmwkemy5o4pNx5D498.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
Manifest number: 0A93
Signing time: Sat 23 Aug 2025 01:03:29 +0000
Manifest this update: Sat 23 Aug 2025 01:03:29 +0000
Manifest next update: Sun 24 Aug 2025 01:03:29 +0000
Files and hashes: 1: 0SGERXpsIldifCTWUfwaAPLWZj8.roa (hash: Wl6639BT2YEzAcDZ1BBEKA7sfTmRzgLCKdjibP72VaE=)
2: MzOeZKWFFMmwkemy5o4pNx5D498.crl (hash: WdLuB7q+Q9jJ+ICBwsGyr5BObST4VaUkEv9zXJLGkNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzOeZKWFFMmwkemy5o4pNx5D498.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:b7:5b:3c:34:a6:df:21:73:37:8a:1c:1c:2c:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33339e64a58514c9b091e9b2e68e29371e43e3df
Validity
Not Before: Aug 23 01:03:29 2025 GMT
Not After : Aug 24 01:03:29 2025 GMT
Subject: CN=385082eb95d1355f6eaa01b60fd6f1da927c8f6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:33:65:61:8a:83:34:80:46:47:48:99:82:81:
95:f9:96:91:d4:18:6b:ef:be:6a:26:d7:05:43:c6:
24:98:d8:b7:27:01:67:de:c7:43:5a:cd:be:a9:be:
61:0f:f9:70:59:4e:0b:cf:49:f1:77:a0:fe:ef:be:
e5:dc:0f:e2:39:bb:32:51:4f:03:d9:72:0a:ec:59:
a5:ca:32:08:91:b3:19:82:fc:1f:c5:d4:2f:9f:43:
67:2b:c8:53:ac:d6:ae:32:db:56:af:6d:f3:67:81:
0d:cc:3d:8b:da:44:30:63:e2:df:6f:0e:e8:42:49:
d2:12:9b:9d:d5:1b:73:97:62:dd:90:5a:1c:55:d2:
0c:79:aa:3a:98:8c:0f:08:56:f6:83:2f:7d:c5:2f:
2d:30:60:0b:c0:71:c1:61:d6:5f:c2:45:e0:c1:ec:
d0:fa:40:06:97:35:c1:53:a0:d3:97:21:2b:12:0b:
5b:2e:d6:eb:33:3b:ff:ad:6a:12:8f:ec:9b:1b:ad:
b5:6a:e3:ad:4e:d4:00:38:ec:85:1d:2b:b9:e2:15:
ec:a4:21:58:81:1e:cc:42:0f:08:85:b1:23:9b:c0:
6e:90:37:df:2c:c4:42:58:50:d7:83:51:91:e8:33:
5c:35:71:48:23:28:63:58:7c:18:f0:1b:a9:4f:75:
6d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:50:82:EB:95:D1:35:5F:6E:AA:01:B6:0F:D6:F1:DA:92:7C:8F:6E
X509v3 Authority Key Identifier:
keyid:33:33:9E:64:A5:85:14:C9:B0:91:E9:B2:E6:8E:29:37:1E:43:E3:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzOeZKWFFMmwkemy5o4pNx5D498.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:36:51:a1:53:be:8b:d5:5b:48:3d:a9:3f:8c:bc:6a:12:1c:
0a:2a:be:86:88:e1:4e:cb:7d:5f:d2:59:3f:1e:69:5c:76:69:
af:a4:5f:74:c3:60:4b:a3:53:ee:68:aa:9b:fd:fa:e0:54:6e:
c2:76:fa:e4:77:51:1d:27:38:86:ae:d5:48:cc:69:a8:8f:47:
a7:db:fd:d3:15:ed:8a:44:c7:0c:81:27:b7:41:14:5e:e0:eb:
73:5c:c8:9b:c7:76:4c:ed:53:b0:b7:5e:99:37:37:4f:50:83:
4f:35:df:ac:c7:c6:16:3f:7a:3a:45:51:1b:8c:67:00:00:d2:
d5:89:a1:b3:bf:40:44:3c:f6:0b:80:96:b4:4f:72:50:50:2d:
bb:cc:35:8b:12:94:9d:00:fe:2d:64:ba:da:8b:71:d5:39:d5:
5d:0a:73:fa:66:8a:6b:b5:ce:cf:7b:1c:cb:c0:d7:f3:f5:e4:
7b:ff:da:2e:b4:72:2a:53:27:be:54:d8:3a:d6:af:b6:37:0f:
32:97:57:82:9f:00:29:69:dd:86:f1:1d:93:f7:84:a6:4a:8b:
57:92:e6:19:1b:72:cc:25:17:0f:d9:58:34:08:66:62:b8:d3:
8e:a4:d6:f2:e8:0b:37:b0:da:e5:72:19:83:cb:42:2f:d2:23:
7c:c3:b2:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:49 2025 by rpki-client