Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
File: zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft (raw, json)
Hash identifier: k/JNs7DNmxzEPtHm+EPSomwWxio/O1CA/6ErScIQ0xY=
Subject key identifier: 77:AF:8B:BA:9C:77:A3:E4:14:29:8C:E8:E8:00:00:3B:63:79:C7:97
Authority key identifier: CD:86:B8:CE:22:24:82:A1:4F:9B:13:46:8C:E5:7E:99:92:68:49:61
Certificate issuer: /CN=cd86b8ce222482a14f9b13468ce57e9992684961
Certificate serial: 0198D705D5218CCB9F83591BE2DC60674A23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
Manifest number: 061F
Signing time: Sat 23 Aug 2025 13:02:20 +0000
Manifest this update: Sat 23 Aug 2025 13:02:20 +0000
Manifest next update: Sun 24 Aug 2025 13:02:20 +0000
Files and hashes: 1: DQHOKV8IKLhzD_DKbK2yKJLy3qI.roa (hash: PB4sy0lCqmdf8gfZUrxsVqDoVfWeVXqM8PmI2EwyuMw=)
2: zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl (hash: oH7bfOLBu5L7brMhOYdQht8BQQc7/Zlw6IcwSTc/s4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:d5:21:8c:cb:9f:83:59:1b:e2:dc:60:67:4a:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd86b8ce222482a14f9b13468ce57e9992684961
Validity
Not Before: Aug 23 13:02:20 2025 GMT
Not After : Aug 24 13:02:20 2025 GMT
Subject: CN=77af8bba9c77a3e414298ce8e800003b6379c797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1f:09:da:96:55:60:98:68:f3:08:73:3e:b6:
8c:eb:7a:b0:29:c7:26:c8:45:7a:14:b0:e1:13:65:
94:ae:1b:2b:04:f7:50:2b:33:85:8c:f7:71:05:ca:
f6:28:6a:c2:1e:61:c6:a3:18:68:8e:9e:43:5e:8a:
13:f3:da:05:93:87:bb:9d:4e:c9:57:07:c3:9f:6b:
42:d4:b3:5c:a8:da:b2:c5:a7:b9:ef:47:42:27:10:
8d:f6:c6:99:de:d2:6f:8d:ea:c0:96:52:a4:6c:67:
e4:73:6c:0c:23:3a:08:9c:90:eb:ad:b0:c4:84:74:
05:f5:0d:d4:80:b4:ae:27:ba:f5:51:47:c8:69:8f:
f3:e2:55:6c:c2:e2:ac:65:ff:b8:43:f0:a9:ec:60:
5b:2d:3e:0b:01:b4:79:09:4b:95:ed:cd:f3:21:97:
8b:ab:60:bb:2d:cb:20:91:6c:0b:2b:7f:18:00:53:
86:af:96:c1:72:8a:66:18:1f:9e:ab:b2:c4:58:c5:
ff:58:51:c5:5d:32:0c:b8:24:b5:c9:b3:db:d0:64:
f9:ee:16:4b:88:a4:5a:0e:e3:5c:68:79:e1:62:e2:
33:29:91:2f:83:54:47:2b:e8:b9:de:a3:2c:cb:f2:
49:62:9e:c4:3d:0d:68:80:55:38:24:b5:f7:fb:7e:
e4:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:AF:8B:BA:9C:77:A3:E4:14:29:8C:E8:E8:00:00:3B:63:79:C7:97
X509v3 Authority Key Identifier:
keyid:CD:86:B8:CE:22:24:82:A1:4F:9B:13:46:8C:E5:7E:99:92:68:49:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:18:dd:a7:dc:a1:1a:57:40:ff:65:14:af:83:0b:1a:1a:c7:
11:1a:84:59:19:db:03:1a:88:30:b7:37:a7:2c:eb:56:74:ee:
77:ad:bd:de:ef:28:7c:ec:8d:57:38:0c:07:ed:a7:93:82:b4:
a5:9c:29:59:a0:8f:7e:21:8f:35:a8:c0:7c:24:de:bc:82:4c:
9f:77:97:47:14:7a:b1:f0:2a:a5:8d:d0:3d:33:09:e7:fd:df:
02:27:c4:c3:18:88:a5:3f:ac:28:06:0f:45:c5:ff:68:74:a1:
98:df:f4:7a:31:3d:0c:f2:41:64:83:eb:19:02:e8:45:cf:1f:
28:b5:13:b4:a8:25:3b:db:61:49:dc:95:80:2f:fc:3b:3c:0e:
4d:a0:eb:59:19:07:5a:1c:44:70:7e:03:f9:7e:6b:cb:fd:34:
ad:74:d3:44:7a:b4:ed:ed:43:27:26:d2:76:6e:fd:fd:02:51:
b3:db:ba:d5:0d:8f:7e:4f:ab:e5:31:e7:48:88:81:46:e6:03:
fd:54:27:d7:84:28:b3:b2:6b:b8:f4:5b:b5:69:af:2b:6a:3c:
88:e7:0c:ce:66:f9:21:97:4c:0e:a7:14:4a:b6:a6:7b:91:24:
82:e1:f0:3f:2e:b6:84:44:c5:fb:76:ea:97:e6:41:da:50:48:
8a:cd:7a:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:04:47 2025 by rpki-client