Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.mft
File: zZEXAvST1u3htuhyvKzcuFQoK60.mft (raw, json)
Hash identifier: 5sa1qVZe4XNjRugo1JlwaoPX2jalRd+1UZj6qfojjBw=
Subject key identifier: E8:43:73:92:8D:94:C1:43:FA:8C:6C:65:C0:9B:EE:33:38:66:F6:50
Authority key identifier: CD:91:17:02:F4:93:D6:ED:E1:B6:E8:72:BC:AC:DC:B8:54:28:2B:AD
Certificate issuer: /CN=cd911702f493d6ede1b6e872bcacdcb854282bad
Certificate serial: 0198D4E03BDB5B53ACDAA2D2EC61997AC427
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZEXAvST1u3htuhyvKzcuFQoK60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.mft
Manifest number: 0CAE
Signing time: Sat 23 Aug 2025 03:02:01 +0000
Manifest this update: Sat 23 Aug 2025 03:02:01 +0000
Manifest next update: Sun 24 Aug 2025 03:02:01 +0000
Files and hashes: 1: talgukTPD8oL2wxiXAXrxPFSwAY.roa (hash: 42F75IV5IsX3V6ll7VHZlZ+ABWMo+HJa6Q+yWz1dm0U=)
2: zZEXAvST1u3htuhyvKzcuFQoK60.crl (hash: 92VuOQ8FyDL/FLC8bEXa7MJ23ZJj5fez17LLOR+BM9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.mft
rsync://rpki.ripe.net/repository/DEFAULT/zZEXAvST1u3htuhyvKzcuFQoK60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:3b:db:5b:53:ac:da:a2:d2:ec:61:99:7a:c4:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd911702f493d6ede1b6e872bcacdcb854282bad
Validity
Not Before: Aug 23 03:02:01 2025 GMT
Not After : Aug 24 03:02:01 2025 GMT
Subject: CN=e84373928d94c143fa8c6c65c09bee333866f650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ed:f5:9d:b9:8a:8a:83:2a:e0:5e:dd:6e:5e:
f0:08:7e:23:fc:fc:c2:46:aa:e9:9b:71:60:2c:e4:
f1:dc:49:5b:b7:a4:5a:c5:e5:e1:a8:86:39:f0:dd:
8e:84:f2:8d:a6:83:54:86:d1:c1:8e:3a:fa:40:01:
ac:a1:ab:c7:73:4b:60:df:2c:b4:f3:a6:b7:44:6e:
7b:96:af:1a:6a:a9:6f:66:62:09:85:27:4b:27:43:
ce:da:fa:3f:a4:cd:4d:84:45:e1:51:7b:07:d1:79:
6e:29:41:11:a6:f4:79:4c:a4:11:95:1d:4d:87:bc:
92:3f:db:79:2f:dc:92:36:65:73:9d:6e:a0:ba:13:
8e:2d:e3:ba:e2:6f:ea:5b:45:fa:ec:8f:90:9c:06:
28:f6:aa:98:1a:f3:1b:4d:45:ce:5a:a6:f3:a2:8f:
a3:43:e1:fe:8e:58:c7:b2:44:4e:f4:13:50:fa:6a:
66:da:fc:fb:e7:3c:31:cb:9d:c7:e5:07:d3:2c:2b:
df:9d:bb:d9:44:7a:5e:ea:99:8a:f0:86:2e:f3:f6:
18:8e:09:3d:2a:91:63:7c:eb:95:b2:ad:a5:b1:e1:
5b:29:d2:63:14:0e:be:d7:46:d8:b5:72:d7:0c:68:
77:4c:a0:b2:86:ca:b1:4e:84:ff:e8:5b:e0:ca:c1:
66:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:43:73:92:8D:94:C1:43:FA:8C:6C:65:C0:9B:EE:33:38:66:F6:50
X509v3 Authority Key Identifier:
keyid:CD:91:17:02:F4:93:D6:ED:E1:B6:E8:72:BC:AC:DC:B8:54:28:2B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZEXAvST1u3htuhyvKzcuFQoK60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:c0:46:2a:d9:1d:b9:25:de:7c:b7:8f:98:d6:d2:06:e8:d8:
8d:6a:90:d6:ed:e4:49:f4:f8:38:77:71:20:4d:6c:04:b0:40:
0c:8a:ed:f3:e1:df:e8:9b:70:4a:15:66:9e:3e:a7:c3:cc:4a:
0a:84:4f:c4:e4:27:5f:b8:db:97:97:d4:48:93:cd:51:1c:d3:
6d:32:6b:26:6a:2e:a3:fb:37:d0:30:23:f9:6a:85:41:1a:f0:
04:a3:7a:16:38:43:21:c5:b4:49:55:e3:ab:8c:2b:9f:6a:f5:
07:36:5a:8c:9d:a3:b0:ea:3c:24:99:41:bf:b0:e4:ef:2f:95:
b2:45:d2:c2:b0:95:f6:1b:b8:2d:9b:ba:64:f6:22:d9:8d:8e:
08:ed:c1:44:1a:ed:75:ef:f5:e2:34:26:0d:43:09:a6:7d:0d:
e7:88:11:c5:39:c6:ef:23:22:f4:8c:db:c6:eb:1b:ed:90:9c:
71:18:27:de:b4:e6:c9:64:a7:d3:d2:63:e4:e5:2f:d3:c8:e8:
40:d0:45:93:ac:4e:cc:b1:96:e6:26:8c:68:7d:37:dd:36:ac:
81:25:00:ad:8e:3a:4e:2a:8d:9f:fa:94:89:c8:e0:29:ce:40:
b7:c4:c0:51:cd:78:c7:7f:26:a3:96:80:1a:54:86:c5:aa:eb:
d9:9c:13:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:43:31 2025 by rpki-client