Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json)
Hash identifier: ebeAwGelB1mhUw2zMKtKTxTcqR+B6taYDr+MIq5AFyU=
Subject key identifier: D8:92:50:B2:22:7E:9C:8A:B3:28:73:9A:08:D7:3C:12:81:F6:E0:CE
Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Certificate serial: 0199FAD840CD2231AF490FF6042A3440084B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
Manifest number: 12FB
Signing time: Sun 19 Oct 2025 05:01:40 +0000
Manifest this update: Sun 19 Oct 2025 05:01:40 +0000
Manifest next update: Mon 20 Oct 2025 05:01:40 +0000
Files and hashes: 1: 9f0Q6rSiXJjkh_lJREdgBWV3nxk.roa (hash: TCvx1Dq9UNFJ/C/RNxBohy4u4C9d1rsY7iM9ireTjM8=)
2: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: IAuBeoaC52sa55tqXgeJ0QD3ncbP/gYQNSMymT7HXmk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:40:cd:22:31:af:49:0f:f6:04:2a:34:40:08:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Validity
Not Before: Oct 19 05:01:40 2025 GMT
Not After : Oct 20 05:01:40 2025 GMT
Subject: CN=d89250b2227e9c8ab328739a08d73c1281f6e0ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:af:79:90:c2:2e:56:36:a9:fc:fd:c0:9e:ec:
f6:54:2e:b2:ed:ce:63:72:38:e0:77:db:d2:bf:fe:
8f:f8:9e:fd:89:85:e5:82:92:c1:39:0d:ad:41:cb:
7c:3f:f1:72:b5:2d:ce:4f:7d:f8:33:45:c9:71:13:
7b:47:3d:78:20:7d:df:2b:bc:93:93:56:7a:bd:e9:
85:21:a6:cc:5c:cb:0d:5f:39:fc:2a:6d:d1:3d:8e:
12:3a:af:0e:3b:31:bd:f3:d8:49:2f:80:a0:01:fc:
a5:71:10:65:58:e3:11:45:66:93:aa:55:5b:1e:14:
50:f2:f9:7a:35:cd:f1:5e:e8:67:2d:45:ac:6f:a8:
db:9c:d6:1c:62:2c:8f:27:9b:8f:67:c1:1a:c0:d0:
aa:30:cc:ec:9b:58:83:bc:3c:c5:f7:8c:2f:c6:c5:
6b:c3:5e:fd:a2:54:47:16:e4:20:4b:3c:56:60:a4:
a2:6c:ae:61:51:f5:7b:f6:a5:6a:31:60:e2:12:5b:
96:49:53:96:05:81:83:17:4f:eb:89:3d:9c:35:c6:
00:fa:42:8c:7a:c9:ee:40:34:9d:04:55:7c:25:aa:
ea:a0:6c:8c:40:b8:95:89:26:50:fc:fa:0f:48:86:
e7:64:4a:0a:14:60:e0:8c:28:10:36:58:2a:e6:35:
fd:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:92:50:B2:22:7E:9C:8A:B3:28:73:9A:08:D7:3C:12:81:F6:E0:CE
X509v3 Authority Key Identifier:
keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e8:f6:63:ad:8f:82:e1:2f:9a:8c:19:f4:e4:7f:a9:2b:96:30:
8d:92:51:39:ca:a7:14:d9:bb:db:52:d3:6d:97:0b:c7:93:c7:
ca:42:64:29:74:a6:bf:70:9d:92:ad:73:5e:99:3e:1f:e5:c1:
53:a5:4f:16:11:ad:d2:d5:60:ce:32:94:ea:8c:dc:2d:f0:3c:
d3:2f:8f:15:52:a0:69:8d:e9:0b:26:68:7e:59:2f:f0:df:b0:
f4:88:af:74:33:6d:f8:6e:7b:9f:b4:18:03:86:3d:cf:5c:2e:
f8:0d:64:2e:0b:5b:75:3d:ee:ae:cb:cf:51:a8:dd:2f:78:6c:
66:f9:0c:ad:47:1b:39:32:4a:0d:19:a5:fd:16:63:6b:e2:1d:
02:d1:c0:ec:63:88:ac:a8:ec:00:21:0a:1a:6b:54:c2:60:9b:
a2:f7:6e:64:92:5b:aa:c4:2d:fa:db:cb:35:02:92:09:7d:02:
b7:91:b8:35:16:94:07:14:8e:c4:1a:12:9a:95:30:a5:7d:41:
29:aa:6a:16:9d:67:d4:98:ca:80:d1:03:1b:3d:5d:8a:54:e1:
fa:f8:b6:38:72:c6:3f:90:6a:fc:81:80:66:b9:88:e1:9a:d0:
d0:ee:7b:d0:cf:b7:b7:4b:79:04:0b:1d:05:61:58:b5:dd:e2:
13:ac:57:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 12:52:35 2025 by rpki-client