Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
File: zTwRDf139XdXORwPrt7r42CGVx0.mft (raw, json)
Hash identifier: opR98XPvraSENuDifR0M6U/8dsP/lBrSurv70hJ7fDs=
Subject key identifier: 26:4F:9F:A9:92:B1:27:B4:00:94:34:55:D7:EA:3B:D7:05:E6:ED:4E
Authority key identifier: CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
Certificate issuer: /CN=cd3c110dfd77f57757391c0faedeebe36086571d
Certificate serial: 0198D5163B70ED7DB92C8E06A900FCC5C332
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
Manifest number: 0E65
Signing time: Sat 23 Aug 2025 04:01:00 +0000
Manifest this update: Sat 23 Aug 2025 04:01:00 +0000
Manifest next update: Sun 24 Aug 2025 04:01:00 +0000
Files and hashes: 1: n79crWM-L0W_-YTIs0SA8x1g-4g.roa (hash: WTPugh0CrOL+7geJ0TTyRViJCXrCGCyNH+3nK4QxB48=)
2: zTwRDf139XdXORwPrt7r42CGVx0.crl (hash: i4Tq9uaL3VW7Vx3eZBN4DF68QueMEKUT2I/q+muEOCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:3b:70:ed:7d:b9:2c:8e:06:a9:00:fc:c5:c3:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3c110dfd77f57757391c0faedeebe36086571d
Validity
Not Before: Aug 23 04:01:00 2025 GMT
Not After : Aug 24 04:01:00 2025 GMT
Subject: CN=264f9fa992b127b400943455d7ea3bd705e6ed4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:53:8c:ee:a8:fc:66:1e:64:39:63:c5:02:a9:
af:ad:2f:15:df:1b:dd:c6:75:e1:cb:92:20:21:e6:
1f:5f:7a:ca:e8:46:b9:af:01:86:97:c2:a2:ca:af:
1b:a4:64:79:1e:4f:d2:d1:49:83:23:5a:66:72:7d:
25:e1:e2:64:9b:77:3e:e6:4d:3b:75:04:49:da:94:
fc:09:78:74:3e:0b:f2:39:51:86:21:84:4e:9e:68:
11:db:3a:e5:15:fc:83:3a:1b:d8:76:3d:2f:29:1a:
a5:f6:e8:c9:d3:18:3f:be:f0:47:4c:df:b3:bc:1d:
ba:3c:c3:f6:d0:70:58:19:e9:46:67:5c:b4:7e:00:
b0:4e:b3:61:21:84:a4:4a:23:a5:dc:ce:07:e1:ca:
88:3f:5c:90:d8:31:5c:78:cb:71:3c:fa:92:be:77:
78:fa:2e:42:61:2f:18:ce:07:dc:e8:42:49:b9:11:
8d:60:cd:73:fd:6c:f1:8c:d0:23:00:85:11:e5:ce:
29:a2:18:df:f7:e6:22:5a:15:70:16:19:6f:78:05:
ce:31:4e:e5:ad:77:96:4b:77:3d:fb:31:59:a1:2b:
59:d7:dd:34:56:bd:c9:f8:d4:cc:80:df:d5:c7:20:
7d:1c:15:fa:ce:c5:07:cc:39:08:7c:09:de:7e:ac:
90:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:4F:9F:A9:92:B1:27:B4:00:94:34:55:D7:EA:3B:D7:05:E6:ED:4E
X509v3 Authority Key Identifier:
keyid:CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:98:f9:a8:75:a7:4a:41:c4:31:f3:04:89:f6:68:84:84:0d:
d2:1e:ff:b7:d5:1d:d4:7a:85:77:8a:c0:43:82:fd:9f:07:0e:
ae:69:9f:f5:77:94:ca:aa:2f:f7:c6:82:4c:88:9a:ae:a0:97:
63:18:9b:12:54:17:95:85:53:14:71:de:0a:c4:ed:ad:ce:25:
d8:0c:ff:2b:75:a5:f5:72:fc:57:99:68:a2:68:98:89:29:55:
6b:11:fd:1f:27:9c:63:3d:06:21:be:8c:39:4f:37:90:24:f7:
ee:05:5f:95:a1:97:ca:6e:9d:bb:e7:27:cf:ed:26:df:0e:3b:
c3:6c:00:e1:82:c9:e2:77:57:e0:3f:12:09:2e:e6:cf:82:2c:
44:a6:68:c6:41:c5:d0:17:9f:94:c8:6c:44:55:36:67:60:de:
64:64:5a:80:ed:54:80:b9:7b:ca:68:3e:cc:cb:e3:31:e1:cd:
83:e8:2e:4b:42:73:5d:ea:f6:fb:81:f9:09:cc:65:21:e4:61:
5f:30:7b:5a:80:bb:80:1b:b8:47:b2:99:57:e8:41:70:c3:72:
e6:2f:98:91:c2:d2:5d:ff:a0:f3:f2:ef:e4:26:2c:b1:d1:d3:
93:e3:5b:a4:a9:4c:7f:35:48:51:49:7b:34:90:0f:0c:06:0b:
3f:04:16:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:44 2025 by rpki-client