
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
File: zdpbTOlfoL32BUFp53rvyCZd28Q.mft (raw, json)
Hash identifier: vkKLXqXvKdxQo9LV15sep6xjZbD3DMY1qICPyzJQKnU=
Subject key identifier: B8:9B:5D:8F:E1:2B:5E:65:66:71:8A:6A:90:3A:D2:C3:BA:D4:B5:4C
Authority key identifier: CD:DA:5B:4C:E9:5F:A0:BD:F6:05:41:69:E7:7A:EF:C8:26:5D:DB:C4
Certificate issuer: /CN=cdda5b4ce95fa0bdf6054169e77aefc8265ddbc4
Certificate serial: 019873064A8BA6B4CB7D736A77AF9753DE62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
Manifest number: 15A9
Signing time: Mon 04 Aug 2025 03:00:48 +0000
Manifest this update: Mon 04 Aug 2025 03:00:48 +0000
Manifest next update: Tue 05 Aug 2025 03:00:48 +0000
Files and hashes: 1: 40_j8EnMOslOGeaUGeLQNCGHg64.roa (hash: BOU6u1kQjKsVBkJf+h9lI/7YbpbYLn1ZXJQhHit/Gyg=)
2: zdpbTOlfoL32BUFp53rvyCZd28Q.crl (hash: JxV8cD29EF+BYaob+ZbiBCMyev++B16eflm4niu3u0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:06:4a:8b:a6:b4:cb:7d:73:6a:77:af:97:53:de:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdda5b4ce95fa0bdf6054169e77aefc8265ddbc4
Validity
Not Before: Aug 4 03:00:48 2025 GMT
Not After : Aug 5 03:00:48 2025 GMT
Subject: CN=b89b5d8fe12b5e6566718a6a903ad2c3bad4b54c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4a:2c:aa:8e:2b:3d:a0:3e:b9:51:cc:76:8b:
c2:ed:45:5f:13:84:99:8a:24:b3:ca:83:43:6e:69:
c4:27:f8:04:b2:21:9a:56:f1:5b:b8:8d:d0:3a:d6:
49:1d:fd:26:6d:08:21:6f:22:9a:c2:6b:bf:23:dd:
d8:b2:4b:2d:66:ac:5a:ec:5e:62:54:fb:30:19:de:
3b:0b:72:0a:81:52:ad:0e:3d:04:78:36:e5:25:27:
5a:03:ce:b3:36:30:fd:c2:d2:3d:a6:c0:57:2b:16:
26:e8:04:bd:12:00:b8:0e:0e:f5:2c:ad:fe:fb:ab:
10:dd:26:04:21:fe:2e:1e:73:2b:71:40:3e:51:07:
53:fa:50:84:d0:18:fa:61:e8:9d:ec:d8:d6:61:d1:
10:c4:61:36:13:ef:9f:32:03:21:a2:f3:36:35:44:
f0:38:65:3b:2e:bc:73:28:93:40:9d:b8:bc:2b:66:
99:ab:a6:2a:74:22:23:0b:b0:14:2b:42:0e:92:38:
4d:48:be:b2:3c:5b:b9:99:2f:1b:f4:f8:a1:e9:30:
2d:02:17:29:be:24:5e:97:48:cf:d5:6f:fc:ca:ec:
3c:08:ac:8f:b7:d6:e0:9f:0d:57:9f:f0:4b:62:3b:
3d:85:89:33:ca:f0:55:8d:db:64:38:b7:1f:e6:4e:
01:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:9B:5D:8F:E1:2B:5E:65:66:71:8A:6A:90:3A:D2:C3:BA:D4:B5:4C
X509v3 Authority Key Identifier:
keyid:CD:DA:5B:4C:E9:5F:A0:BD:F6:05:41:69:E7:7A:EF:C8:26:5D:DB:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:c8:8b:9c:cb:41:7d:60:c9:8e:c6:f7:fb:0c:f6:f3:ae:1f:
5c:51:24:f6:3f:4f:ca:cb:69:4d:a6:48:ef:4c:04:ae:2e:34:
d1:fc:c0:6f:99:d4:91:59:40:c5:aa:cf:f6:95:ba:65:3e:f2:
e5:41:53:f6:0c:8a:3b:2f:99:44:6e:15:01:66:fe:de:be:60:
8d:64:44:e2:71:20:c1:e1:7f:a3:5e:d5:46:df:94:52:5c:4b:
4a:02:eb:59:4c:e7:c7:0c:ee:69:91:8c:1a:45:d1:1b:5f:79:
a7:3b:fe:cc:5b:37:d5:d6:5f:8a:78:0b:0f:d5:25:24:2b:f6:
cc:28:ac:cf:15:89:16:94:01:fb:b4:03:fa:44:32:2d:b7:9f:
7e:85:3e:1a:e7:d6:f8:27:f1:7d:1b:a6:3c:96:89:6e:d7:3f:
a6:5c:83:23:fd:22:5b:cc:76:60:e4:1b:49:77:01:88:bb:e6:
57:11:f6:85:97:9b:87:de:d0:62:78:2b:6f:25:a3:ca:94:58:
c1:9e:69:93:84:19:04:3d:e0:d8:c4:58:43:f8:64:f3:b7:2a:
dd:d8:02:e1:29:6c:bc:0c:08:f6:53:1a:84:fb:1f:a1:c3:a7:
13:73:69:30:f2:7d:56:f9:73:31:7f:33:55:4a:fe:50:f9:88:
25:84:75:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:05:49 2025 by rpki-client