Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
File: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft (raw, json)
Hash identifier: YLHP8cUYj6N/IXKP6LJTsn0yR2YuZO1zuyi7i6NgSnQ=
Subject key identifier: B4:97:93:AD:3B:61:64:03:85:E4:1D:15:10:2A:08:D3:CF:48:97:A3
Authority key identifier: 66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
Certificate issuer: /CN=66ba8d64e901b39b501ed3693ec27430713886e3
Certificate serial: 019897B7945EA1C508C89F9FA9436E08ECD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
Manifest number: 0F97
Signing time: Mon 11 Aug 2025 06:00:47 +0000
Manifest this update: Mon 11 Aug 2025 06:00:47 +0000
Manifest next update: Tue 12 Aug 2025 06:00:47 +0000
Files and hashes: 1: Fg0QsDS_oIn0AHFloFbOWLXLPYw.roa (hash: PCZ0sNE5BS8dEXbU+ksvDG3w1iOi7xIBrn9yDW7TZ/U=)
2: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl (hash: 2GHPBFIktZqOlIMZRgwpTqHaaXNTIMK2U0zQtS9j46s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:b7:94:5e:a1:c5:08:c8:9f:9f:a9:43:6e:08:ec:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ba8d64e901b39b501ed3693ec27430713886e3
Validity
Not Before: Aug 11 06:00:47 2025 GMT
Not After : Aug 12 06:00:47 2025 GMT
Subject: CN=b49793ad3b61640385e41d15102a08d3cf4897a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a1:d5:4b:3b:55:63:14:f1:a0:b2:77:c8:e0:
cd:39:e8:c0:54:26:2c:4b:79:75:91:b4:a0:35:e2:
66:aa:26:37:62:96:cd:a0:89:d5:6c:24:48:28:6e:
e3:15:70:34:a7:fd:5a:fc:14:fa:bd:c0:56:55:0e:
e2:3e:d9:4b:a7:85:54:b8:d5:7f:68:a4:0f:f6:fa:
4b:e5:ad:19:58:e5:42:9e:2c:fe:bb:c3:15:9c:cb:
cf:8b:81:1c:0a:7a:fd:d5:b5:0d:0e:1d:50:99:6f:
69:ab:18:a0:6c:4b:09:6f:5b:b1:ac:30:af:7f:8a:
cd:d7:63:cc:c9:bf:e6:58:24:02:ea:39:c5:10:79:
46:7d:2e:1c:1d:20:58:9a:cb:1f:31:ed:5e:69:bb:
1d:55:e7:61:e4:b5:61:de:18:4c:c9:07:43:7b:dc:
9c:97:21:c9:8f:70:c0:e8:3f:8e:7e:ae:5f:56:45:
8f:b8:d9:9b:97:44:0c:e0:0b:84:8b:d2:55:7f:ed:
8d:7e:a3:58:ee:5a:ed:82:4c:b2:94:b7:bd:d5:44:
a9:8b:2a:6a:68:ad:72:12:15:e0:5d:41:b3:81:25:
c9:c7:f0:eb:12:10:30:f6:09:40:30:a8:38:d3:df:
ff:da:b5:db:1c:e0:6d:ab:a6:9a:d8:3d:84:a5:b0:
6e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:97:93:AD:3B:61:64:03:85:E4:1D:15:10:2A:08:D3:CF:48:97:A3
X509v3 Authority Key Identifier:
keyid:66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:33:c9:2a:5e:ae:bb:a2:a8:28:f2:6f:92:a8:f8:f7:bf:35:
0f:a8:5e:ef:c2:c3:99:db:ca:f5:51:3a:63:86:c6:8f:69:89:
99:9f:02:41:c0:f5:ab:96:e8:51:bc:b5:53:31:dd:6c:e7:b3:
02:3a:a6:ef:2f:4a:1d:c2:c2:ff:41:29:b2:c6:f2:ce:19:e6:
de:ce:f9:6f:f8:d6:45:4f:3e:7b:58:18:95:c9:86:a6:9a:7f:
57:bc:b7:93:83:36:b2:2a:c3:65:c9:6f:16:3e:eb:0c:b1:0f:
20:b8:e2:10:98:02:9d:35:6a:1b:20:52:c0:28:e1:b2:79:11:
e8:ad:46:30:f6:bb:d3:f1:25:a3:f1:62:d1:5d:54:02:3d:85:
cd:5e:3e:22:ed:99:b1:61:0b:7e:33:f5:e7:8b:85:23:b9:eb:
16:cc:49:93:4b:6d:74:65:e8:5e:09:36:f7:85:db:d8:cc:7c:
e3:7d:54:e5:f5:18:54:da:95:72:9e:42:1a:53:d7:a1:0d:a2:
34:21:a6:e7:eb:49:06:3c:d4:a7:46:fe:72:35:4a:7e:2a:95:
a9:e5:7f:76:9a:b7:f0:06:3e:a9:f7:9e:aa:65:4b:57:e2:48:
1d:0c:c2:41:db:11:e5:25:e8:2d:6d:7c:31:bd:7a:8f:8d:e3:
35:76:1d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:23:46 2025 by rpki-client