Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
File: zZFzvIKKtx2i68r6f4mOxqoe6nY.mft (raw, json)
Hash identifier: gy22VPsyJydNOlS21D6aSrmvkGm7l5CwDz3uCMW78BE=
Subject key identifier: B6:9E:50:E8:68:B8:9F:D6:7B:F0:9E:8F:8A:3E:E4:FD:E2:6D:1A:F3
Authority key identifier: CD:91:73:BC:82:8A:B7:1D:A2:EB:CA:FA:7F:89:8E:C6:AA:1E:EA:76
Certificate issuer: /CN=cd9173bc828ab71da2ebcafa7f898ec6aa1eea76
Certificate serial: 01987FAF390FF315C2DB709183FF252D0504
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
Manifest number: 04AB
Signing time: Wed 06 Aug 2025 14:00:46 +0000
Manifest this update: Wed 06 Aug 2025 14:00:46 +0000
Manifest next update: Thu 07 Aug 2025 14:00:46 +0000
Files and hashes: 1: RtwNd0kIIB4fJfHreOuMYKMR7lc.roa (hash: qbEtbkjwEQIcvAZsD7fY24iBMXF9LqUeMZOAB812XzU=)
2: zZFzvIKKtx2i68r6f4mOxqoe6nY.crl (hash: Kksv+NZ48U3+ADbVzwyiPCNtfgNpwJ+WGjAC4gjyDns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 14:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:af:39:0f:f3:15:c2:db:70:91:83:ff:25:2d:05:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd9173bc828ab71da2ebcafa7f898ec6aa1eea76
Validity
Not Before: Aug 6 14:00:46 2025 GMT
Not After : Aug 7 14:00:46 2025 GMT
Subject: CN=b69e50e868b89fd67bf09e8f8a3ee4fde26d1af3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:80:e9:f5:b8:27:c5:34:4b:26:54:0f:a8:6a:
90:f3:e1:9c:39:e5:d8:5b:7e:ed:39:79:f2:be:9d:
b2:e1:30:b5:cd:54:3b:aa:71:6d:c9:5d:42:d1:d7:
09:80:e8:a0:2a:03:fa:74:c0:41:a2:98:2d:67:20:
e4:fc:00:96:14:68:14:cb:bb:8f:fb:c2:aa:f2:b7:
81:e0:4b:d6:03:18:18:e2:30:d8:db:24:3f:13:65:
a4:76:68:6e:f2:58:82:a8:f3:73:cb:cf:01:22:93:
94:eb:63:16:33:7a:c5:73:d1:88:cc:9e:8f:84:35:
2f:3e:d0:14:2e:a3:e2:52:5c:ce:a5:24:e6:18:8b:
d3:6c:13:a5:a3:76:66:4e:aa:62:fd:73:98:b0:14:
10:86:d6:c5:a8:8b:32:fe:02:03:7f:37:67:6d:ca:
54:78:22:24:e2:01:55:16:01:40:65:46:fd:79:44:
4b:2e:66:34:60:02:1b:79:f7:1b:8e:7a:99:ba:1e:
66:8d:4b:f6:ce:0a:aa:28:2f:ca:d3:71:93:12:dc:
6b:3b:bb:4e:26:c5:0c:6b:6e:fe:cc:0c:b2:67:8f:
16:61:38:5f:29:53:91:e6:60:a7:84:98:03:7c:c5:
3d:4e:40:d6:98:d0:c6:8f:ee:2a:20:e3:9c:aa:a1:
ca:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:9E:50:E8:68:B8:9F:D6:7B:F0:9E:8F:8A:3E:E4:FD:E2:6D:1A:F3
X509v3 Authority Key Identifier:
keyid:CD:91:73:BC:82:8A:B7:1D:A2:EB:CA:FA:7F:89:8E:C6:AA:1E:EA:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:be:ec:b7:3a:2d:b4:0a:5f:4e:1a:cf:88:47:89:88:18:15:
4e:69:95:05:f6:70:03:c7:c3:77:ef:a5:f3:c4:6a:9c:21:f8:
6a:ac:0e:66:e9:68:8c:bf:0d:0b:72:5e:f6:a3:66:0e:f9:b2:
f3:3f:c7:61:e9:8e:85:a5:8f:e2:25:84:6c:0d:19:e1:5c:84:
77:cb:1c:9e:3b:27:70:75:cb:65:81:82:40:c8:30:16:ee:ec:
11:2d:a3:35:9e:92:ec:db:af:e8:96:4d:2a:fd:43:91:ef:c8:
a5:db:ee:e7:f4:ff:91:e4:2e:d1:94:06:dd:7a:78:49:0d:94:
f1:ee:5b:b3:a9:51:c1:e5:1c:f1:bf:f6:be:0d:4a:b7:42:2f:
ac:f4:4b:91:32:77:95:33:df:ec:c3:21:a5:37:0e:30:e4:d1:
89:9b:fe:2f:61:3e:25:91:a6:75:2e:c7:4b:1b:b2:32:9b:2d:
f8:76:b5:bc:55:e9:87:18:e5:51:4d:01:57:47:fe:07:0b:5a:
05:cb:2d:28:dc:ee:60:51:4e:7c:4f:88:01:19:11:8c:f9:f0:
f4:47:d0:f5:26:77:8d:0a:ee:ef:c3:18:99:b1:1f:da:34:ce:
f7:ce:74:73:29:0d:37:31:f0:96:8a:3a:fb:cb:cb:c5:56:5c:
94:6e:3d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 16:15:27 2025 by rpki-client