Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
File: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft (raw, json)
Hash identifier: SxTEkSQX2vQhUUXCiaZIeDRGvG6hvjG/Xon+95k7SRs=
Subject key identifier: F8:24:B6:4B:51:B2:86:21:A8:55:97:A4:6E:F8:AB:C5:B9:BC:49:A6
Authority key identifier: 67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
Certificate issuer: /CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Certificate serial: 0199FC216976A3263EF9B0909FD37C778B71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
Manifest number: 15F2
Signing time: Sun 19 Oct 2025 11:01:12 +0000
Manifest this update: Sun 19 Oct 2025 11:01:12 +0000
Manifest next update: Mon 20 Oct 2025 11:01:12 +0000
Files and hashes: 1: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl (hash: y+RwMY53vP1Gci4a7tLScGl2BvTgqZTBOmDBIKHAVwE=)
2: lHo6E8O3jVZPWE_3CSGUh-yWmns.roa (hash: EcydcckC44FXLMG0RzB+bDpZsk7fNTw0ZBUYetuTeMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:69:76:a3:26:3e:f9:b0:90:9f:d3:7c:77:8b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Validity
Not Before: Oct 19 11:01:12 2025 GMT
Not After : Oct 20 11:01:12 2025 GMT
Subject: CN=f824b64b51b28621a85597a46ef8abc5b9bc49a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:17:3f:a2:83:b9:26:3d:43:4d:70:ee:2c:70:
7e:89:03:35:f5:55:47:b6:82:d9:01:c2:1a:3e:52:
65:be:bb:06:b7:7d:c7:fc:59:1a:c2:3b:41:9d:8a:
7e:68:ce:58:69:5a:73:ca:dc:56:6b:1b:22:5c:ba:
06:b3:68:f6:ac:66:70:9f:ad:6f:aa:73:2e:5a:1a:
dc:96:78:f1:84:2a:bd:86:3c:b3:4f:9a:aa:91:46:
f9:ca:33:d5:db:46:f4:1d:6a:aa:73:e1:0f:e8:26:
f5:62:b8:a5:e6:f0:e8:63:1b:0f:3a:ab:a7:b5:3c:
3a:58:f2:93:7e:11:92:10:f6:ea:79:36:a8:38:be:
8c:f6:30:65:5d:38:b4:01:8f:c5:a2:c0:00:c8:87:
76:47:33:d6:12:41:c0:8b:88:f6:4c:45:52:b1:7d:
08:66:9f:1f:8a:33:40:2a:3c:8b:16:e2:bf:7b:8a:
09:1e:ab:c5:c3:b7:8d:52:0f:d4:f4:46:2a:e7:1b:
cb:ef:fd:6b:8b:6a:99:3c:fe:4a:da:8f:c8:8a:05:
ca:7f:ae:e6:2f:96:07:f2:1c:94:10:22:1b:b3:36:
e1:05:4c:34:80:c4:33:87:f3:aa:5f:5b:23:c3:cf:
6f:fa:0e:74:6b:00:c4:9b:35:3f:18:33:9c:72:67:
9f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:24:B6:4B:51:B2:86:21:A8:55:97:A4:6E:F8:AB:C5:B9:BC:49:A6
X509v3 Authority Key Identifier:
keyid:67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:23:f9:87:a1:e2:31:52:6a:d9:10:0e:cf:f9:2d:30:93:bc:
92:a5:59:e6:3c:f7:11:eb:23:63:5f:6e:37:2f:3e:0f:ff:6e:
b0:b1:ae:ae:70:89:ae:b9:bf:a6:45:cb:c6:51:f9:3a:07:de:
75:97:fa:4d:1e:48:db:22:26:6b:33:9a:79:3a:16:8d:28:3e:
03:0d:2b:03:5a:ce:95:9f:25:38:ad:0c:87:05:30:a0:4a:58:
82:79:47:61:f3:b3:7e:2c:f8:3f:54:b9:f6:25:15:5a:79:dd:
f6:38:46:c2:17:77:7d:40:ff:bd:34:c8:7e:ec:f8:fe:d0:43:
bb:46:f4:68:59:76:f8:35:8f:e1:52:63:58:66:6f:e7:41:ed:
22:9d:67:e7:83:ec:a9:71:97:e8:23:bb:f7:69:3c:89:3a:97:
33:37:d0:72:38:2f:1b:c7:be:1f:7b:51:a5:66:59:6f:7a:f7:
9d:88:c3:10:b3:d6:45:93:01:a6:1b:1a:2c:c1:4f:6e:6b:f1:
55:74:d8:bb:30:66:55:09:d9:d5:1b:86:69:32:7b:8b:b0:e6:
8f:9a:16:bb:b4:27:45:f6:a6:c1:a8:1a:59:e3:54:7e:22:76:
78:c1:4d:20:d5:b6:a4:80:f0:d8:91:ef:89:88:ee:6a:ef:c9:
38:94:47:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:25 2025 by rpki-client