Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
File: zTu8GVzaflgkWmHLMLlv5XL9eBE.mft (raw, json)
Hash identifier: 1RiTq8QrNO3TTw3zCYFIPvhOQcFw6LA6vXoQwvqNj4Y=
Subject key identifier: 1F:E7:FC:8D:33:F5:6F:6A:47:EA:DB:30:1F:6C:88:93:A1:9B:6E:D0
Authority key identifier: CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
Certificate issuer: /CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Certificate serial: 0198D4E0ABBB1ED81C2534E3B74A14B48BC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
Manifest number: 0F9C
Signing time: Sat 23 Aug 2025 03:02:30 +0000
Manifest this update: Sat 23 Aug 2025 03:02:30 +0000
Manifest next update: Sun 24 Aug 2025 03:02:30 +0000
Files and hashes: 1: clDd21QzHwOlwdLoUbCFlA9N4Bc.roa (hash: b4fVPg9ViPXbDXBeIAFrk3g5qdFMK0V6puBPZsjXHfs=)
2: zTu8GVzaflgkWmHLMLlv5XL9eBE.crl (hash: 34+RHcZW4bwk61TwuNdsY80wsTNwTxSE52hMHVB640Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:ab:bb:1e:d8:1c:25:34:e3:b7:4a:14:b4:8b:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Validity
Not Before: Aug 23 03:02:30 2025 GMT
Not After : Aug 24 03:02:30 2025 GMT
Subject: CN=1fe7fc8d33f56f6a47eadb301f6c8893a19b6ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4f:27:2f:50:d3:f5:92:97:de:4c:98:db:a2:
d4:d3:60:41:72:e1:33:54:2c:7f:16:74:c2:b2:79:
d9:a3:65:c8:41:16:b1:59:42:8b:b2:63:31:f9:c1:
2c:16:19:3f:db:bb:b9:5d:91:a0:f0:d1:12:15:ef:
37:ff:0d:88:2f:8d:b2:3f:b5:59:b7:38:97:38:91:
ce:28:52:67:d6:bd:84:6a:9d:1d:e8:e7:82:eb:60:
f9:9e:56:ce:72:b0:bc:7d:04:7b:a1:da:80:47:79:
a6:8d:77:f3:45:cd:38:4c:f6:41:ce:ef:86:d4:b3:
68:9b:6b:ba:7c:90:48:3b:bf:a6:ff:4d:fc:6d:47:
0a:09:33:ee:5f:6c:3d:ea:bb:64:ae:5a:e8:d9:0b:
73:b1:e4:72:8d:4b:50:33:b8:8b:3a:bd:0c:85:d1:
e2:b5:0b:6d:1e:8d:7f:b1:6c:92:40:f6:a5:b1:ad:
37:b2:9a:e0:3d:3f:4c:ef:da:5d:ed:7d:18:f1:f0:
0f:3d:0d:ae:16:fb:a7:09:0d:4a:14:ec:51:73:85:
7e:3a:07:32:26:c0:34:38:2f:b7:9a:a0:12:4f:fa:
24:29:3f:49:9c:6f:aa:cf:3d:5e:1b:ed:30:f8:fa:
81:19:45:17:1a:bf:63:ea:ac:cc:95:a0:62:41:a0:
38:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:E7:FC:8D:33:F5:6F:6A:47:EA:DB:30:1F:6C:88:93:A1:9B:6E:D0
X509v3 Authority Key Identifier:
keyid:CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:bf:ed:c0:0d:f4:45:4a:f6:ba:75:b7:b8:c6:0d:d1:ad:94:
14:07:bc:ba:17:54:d1:48:0b:71:63:14:99:f7:ac:a1:6e:18:
f5:db:75:5f:c6:95:e3:ec:08:d1:f1:34:73:9d:da:e9:0b:b1:
98:43:21:13:a9:fd:e4:de:42:40:59:91:99:35:9d:c2:3b:d5:
1b:79:93:c6:1c:87:8c:b8:16:83:1c:15:13:97:21:55:e0:b6:
57:4f:c7:d9:51:b5:22:f4:0e:cb:cb:bd:b4:45:3b:cd:ad:ce:
dc:dc:6b:c3:c4:55:15:c1:d3:bf:15:6b:46:20:4f:cf:9b:6e:
5a:1d:77:73:ff:66:6f:bf:a8:4d:6b:21:a2:38:bc:c9:3c:77:
12:2c:cf:a5:f8:b8:58:11:46:4b:7f:f6:20:5b:f4:7a:80:f5:
63:fc:f9:29:47:5f:83:8e:b7:56:da:20:24:24:35:88:23:b3:
68:75:d9:95:1d:3a:a2:8f:50:4e:98:92:45:04:46:3d:10:eb:
bf:50:69:0f:b9:07:84:80:91:ec:63:3f:a6:d7:cb:4a:34:8b:
67:58:fd:e5:31:b0:72:b5:c2:37:e2:e1:ee:6c:9d:87:c9:6a:
b5:c5:b9:c0:6b:3d:17:30:f1:b5:78:c1:01:8a:b3:48:7d:93:
76:05:98:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:20:17 2025 by rpki-client