Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft
File: Zo1_de9C8L1xqpxmZo4KM9vhY08.mft (raw, json)
Hash identifier: jMrxTEFTfsQwHqeqW6E87LTt0ZiCa+cntxFFolPoUoY=
Subject key identifier: 48:47:BE:D5:C3:8C:1D:4D:DF:98:4F:1A:65:1F:C2:7F:32:B8:ED:7C
Authority key identifier: 66:8D:7F:75:EF:42:F0:BD:71:AA:9C:66:66:8E:0A:33:DB:E1:63:4F
Certificate issuer: /CN=668d7f75ef42f0bd71aa9c66668e0a33dbe1634f
Certificate serial: 0198D6607F86FAB35213B24588F67A331D88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zo1_de9C8L1xqpxmZo4KM9vhY08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 10:01:44 +0000
Manifest this update: Sat 23 Aug 2025 10:01:44 +0000
Manifest next update: Sun 24 Aug 2025 10:01:44 +0000
Files and hashes: 1: ZLef86UZ8-ykPDzWWLmzoQSdgC4.roa (hash: 9D+NhHpbmJi6ZpbrwdmFqtG+bLkEiMEM9kjTpQm+k4M=)
2: Zo1_de9C8L1xqpxmZo4KM9vhY08.crl (hash: EfzyNvgJ8N9aBV4r6qx+6aSfLLpcArBKybM9U8S4amo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zo1_de9C8L1xqpxmZo4KM9vhY08.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:7f:86:fa:b3:52:13:b2:45:88:f6:7a:33:1d:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=668d7f75ef42f0bd71aa9c66668e0a33dbe1634f
Validity
Not Before: Aug 23 10:01:44 2025 GMT
Not After : Aug 24 10:01:44 2025 GMT
Subject: CN=4847bed5c38c1d4ddf984f1a651fc27f32b8ed7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:37:55:ee:d1:9c:e7:6f:4a:50:8c:61:fe:e3:
c6:f6:ad:b4:c9:38:11:01:c8:6d:96:4f:c4:01:3f:
cb:f0:65:3b:eb:01:b6:50:dc:d2:37:5b:23:8e:00:
5c:b8:d5:22:2b:5e:cd:df:9c:a9:39:70:30:21:69:
f9:a1:d7:53:4d:14:fc:c0:4d:e3:79:f4:d9:15:37:
d6:c6:f3:60:e4:7a:7e:54:c0:fb:f2:f8:cb:a9:82:
cc:01:09:b6:21:38:d4:1b:a2:1b:44:55:e2:3c:00:
17:d4:e1:53:b6:1d:3e:bf:e1:85:b6:17:ea:8c:b9:
a8:19:03:23:12:47:80:7a:9c:f7:96:2b:4d:ab:61:
40:82:70:84:5d:4c:95:ad:9c:38:05:ff:06:59:96:
87:52:b1:14:f4:31:43:95:0c:0e:88:6a:e3:72:f9:
28:fc:01:ae:e5:5c:ab:0c:b5:d2:4f:2c:92:6b:b1:
71:7b:f0:31:f7:a7:7c:bc:88:b1:38:e2:60:78:b6:
96:d7:ef:d3:99:34:0e:92:ce:a9:5b:ed:58:50:09:
5b:15:c2:e6:e1:5b:ff:ad:f4:c3:77:24:66:fd:11:
f4:cf:9f:ca:32:bc:7b:62:b0:9e:94:d1:d2:99:c4:
44:e3:c5:2f:0c:08:25:44:b6:15:ee:50:a7:43:19:
19:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:47:BE:D5:C3:8C:1D:4D:DF:98:4F:1A:65:1F:C2:7F:32:B8:ED:7C
X509v3 Authority Key Identifier:
keyid:66:8D:7F:75:EF:42:F0:BD:71:AA:9C:66:66:8E:0A:33:DB:E1:63:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zo1_de9C8L1xqpxmZo4KM9vhY08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:ab:a5:f7:80:8e:cb:7b:90:f5:5c:b3:a1:63:cd:b2:8d:86:
13:38:c0:5b:3a:26:2f:00:4e:43:48:ec:ab:54:ad:b9:df:23:
92:75:5c:fd:97:91:cf:f8:63:37:77:ee:90:24:c0:0c:42:c6:
c3:1e:3f:a9:5c:c6:21:b5:0c:84:74:50:25:02:cf:0d:07:6c:
02:5e:87:02:a9:92:d7:d6:e1:af:a4:b1:98:dd:dd:e5:f3:9e:
70:c3:c7:95:1d:94:6f:05:49:71:89:02:6a:71:f6:3d:c6:88:
28:e8:98:f6:17:c8:ef:2b:88:82:83:8f:ff:7d:4a:e4:0b:87:
f6:e3:7c:cd:11:e8:fb:87:85:b9:e6:3c:c7:d4:a2:6b:af:eb:
c8:03:9f:70:6c:3e:2a:41:d9:4d:fa:3b:17:c7:1b:88:25:4e:
10:b5:ad:d7:e9:af:ec:33:d3:67:14:9d:a1:01:a7:83:14:27:
42:56:ed:4f:de:91:59:10:37:23:12:8b:c7:d9:7c:6f:8f:e7:
91:1a:cd:c1:58:ca:ac:cc:7f:c5:ed:ea:a2:20:f9:09:5e:a4:
91:14:65:81:11:46:86:68:48:d0:85:5b:4c:79:37:1a:b9:7d:
c2:cf:40:34:c9:79:18:74:00:b5:5e:5e:58:b8:01:22:90:2f:
54:e0:0b:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:28:42 2025 by rpki-client