Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft
File: Zo1_de9C8L1xqpxmZo4KM9vhY08.mft (raw, json)
Hash identifier: TphNvmFZBswnx8FhdZJ6ZjvVvA4TZjtbiohEIog0agw=
Subject key identifier: 08:67:8A:11:C2:87:21:0A:78:C2:91:DE:86:F5:0A:60:E9:B3:74:95
Authority key identifier: 66:8D:7F:75:EF:42:F0:BD:71:AA:9C:66:66:8E:0A:33:DB:E1:63:4F
Certificate issuer: /CN=668d7f75ef42f0bd71aa9c66668e0a33dbe1634f
Certificate serial: 0199FFC8AD2FDF291C97C47C6AB95B9A3473
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zo1_de9C8L1xqpxmZo4KM9vhY08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft
Manifest number: 16E3
Signing time: Mon 20 Oct 2025 04:02:45 +0000
Manifest this update: Mon 20 Oct 2025 04:02:45 +0000
Manifest next update: Tue 21 Oct 2025 04:02:45 +0000
Files and hashes: 1: ZLef86UZ8-ykPDzWWLmzoQSdgC4.roa (hash: 9D+NhHpbmJi6ZpbrwdmFqtG+bLkEiMEM9kjTpQm+k4M=)
2: Zo1_de9C8L1xqpxmZo4KM9vhY08.crl (hash: +SEsdntz0LmCiJf4Hdj0HBLZuui1ILsfZbUwzqQiUP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zo1_de9C8L1xqpxmZo4KM9vhY08.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:ad:2f:df:29:1c:97:c4:7c:6a:b9:5b:9a:34:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=668d7f75ef42f0bd71aa9c66668e0a33dbe1634f
Validity
Not Before: Oct 20 04:02:45 2025 GMT
Not After : Oct 21 04:02:45 2025 GMT
Subject: CN=08678a11c287210a78c291de86f50a60e9b37495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bd:1a:12:69:6e:ca:fd:f1:8b:34:3d:da:16:
95:16:fd:06:12:1b:7b:6a:a2:97:0e:e5:7c:28:ab:
e5:9b:43:d1:c9:49:37:90:4b:4c:20:ed:87:df:1f:
14:23:5d:9b:9f:45:1a:9f:dc:40:a2:fc:cf:82:97:
e1:43:e0:fd:da:a1:7c:cd:a8:e9:c8:f3:e6:c2:8d:
00:3a:be:f6:63:4d:cb:2c:89:ce:0a:3c:8f:81:75:
fd:c8:cf:c2:06:a7:e4:2c:8a:3a:d3:25:1e:52:49:
4e:65:89:07:f8:2c:ee:a3:4b:93:e2:21:8d:eb:13:
db:74:42:1a:19:5c:6c:a6:02:c7:70:f2:90:97:87:
cc:f2:2d:a1:94:2b:cc:96:e2:e5:53:06:7f:e7:ff:
87:1b:f3:47:ba:e9:63:71:36:e7:3f:2e:17:47:fe:
90:a8:a5:81:ab:1a:76:8d:f1:01:08:1a:ae:b4:0d:
91:3e:10:76:e8:af:96:c1:29:a1:0e:15:75:f7:6c:
3b:db:f8:9f:f9:ce:50:90:fa:82:a2:08:cf:7c:59:
74:ac:b0:fb:b0:04:d7:59:4c:50:52:8c:91:65:4a:
69:0c:e7:a5:da:5d:fd:7a:89:fb:b2:07:7b:e6:3d:
54:c6:a1:a4:ed:d5:57:43:1d:03:ff:04:37:4f:7c:
fe:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:67:8A:11:C2:87:21:0A:78:C2:91:DE:86:F5:0A:60:E9:B3:74:95
X509v3 Authority Key Identifier:
keyid:66:8D:7F:75:EF:42:F0:BD:71:AA:9C:66:66:8E:0A:33:DB:E1:63:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zo1_de9C8L1xqpxmZo4KM9vhY08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:cd:76:fe:8a:86:22:3e:94:3e:4e:5f:53:fd:b2:25:9d:4f:
c8:d7:de:a5:32:69:4e:00:8c:83:76:d3:4e:dd:68:9f:e7:c2:
42:39:41:eb:8c:e7:02:5b:b9:10:93:7e:25:16:50:b5:5b:db:
92:f9:86:20:8c:49:b0:8d:c1:97:f3:c7:12:38:ec:e3:20:36:
e5:b1:f8:a5:e2:4b:e6:55:94:55:84:7e:da:45:58:f7:40:1c:
4b:d8:d5:80:10:f0:d3:51:d1:1c:64:d4:58:a3:ab:ca:cf:89:
6e:eb:28:d1:a9:b9:3e:48:fc:af:ea:c0:db:ab:e2:34:3b:02:
77:34:08:40:8a:18:ab:28:13:c5:0e:64:53:ce:30:de:72:bd:
46:3a:45:60:c0:d9:d9:ad:5d:09:59:1b:f2:36:0f:cd:c2:9d:
47:2d:7a:67:7f:76:28:ac:7f:b3:26:08:1e:6d:1e:e3:ad:99:
40:33:3a:18:d1:3a:5c:f6:6f:a5:bb:06:f1:6f:df:e8:8a:e0:
2d:fe:6e:40:61:7d:ab:3b:f2:56:36:81:02:7b:c2:e2:49:1b:
c1:c3:78:41:a9:35:50:fe:a1:f7:91:38:40:ba:e8:82:2e:e7:
6c:e1:16:41:60:7f:31:f7:4d:60:31:3f:a4:b2:1e:82:9b:eb:
20:b9:ef:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:26:40 2025 by rpki-client