Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
File: zE4rrFHZy3KbGnVijua0ycHp_8g.mft (raw, json)
Hash identifier: pwt8hivRo7Mf8z6V1PlwPvR8elZnDqhaEPyPM3wSE3M=
Subject key identifier: 76:80:18:F0:85:C6:9C:97:6A:3F:3C:C5:54:58:5E:13:09:9D:36:0C
Authority key identifier: CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8
Certificate issuer: /CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8
Certificate serial: 0199FAA161BE3566BBA1D366D03FC8A52790
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
Manifest number: 028C
Signing time: Sun 19 Oct 2025 04:01:44 +0000
Manifest this update: Sun 19 Oct 2025 04:01:44 +0000
Manifest next update: Mon 20 Oct 2025 04:01:44 +0000
Files and hashes: 1: O_wHUsAPrNDflBZDUMtdY6xsx-Y.roa (hash: ARirtfJZlvrV6Gh7ZW/gDyQsG60JpK7a/eIqEIlcaSo=)
2: zE4rrFHZy3KbGnVijua0ycHp_8g.crl (hash: OlfWFbNWjva5p8L4hvp5Xc1rJgGxBqKihP4n9evYvBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a1:61:be:35:66:bb:a1:d3:66:d0:3f:c8:a5:27:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8
Validity
Not Before: Oct 19 04:01:44 2025 GMT
Not After : Oct 20 04:01:44 2025 GMT
Subject: CN=768018f085c69c976a3f3cc554585e13099d360c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:35:d4:7c:af:4a:55:cd:1f:6b:3d:57:fa:22:
1d:88:fe:7d:9e:54:ea:d6:8d:39:c6:df:85:55:4f:
33:05:a4:da:36:28:b2:cf:67:a0:17:d2:1a:ba:82:
8c:99:aa:16:6c:af:0c:f7:cf:63:e9:21:c8:04:c3:
54:b7:b4:77:97:e7:20:a7:23:59:52:60:1b:2b:d8:
9a:66:89:14:87:e8:8f:f4:fa:06:de:76:54:b4:6c:
d6:e8:fb:15:c5:76:c8:d5:a8:d7:5d:75:5c:bb:87:
09:6a:1d:88:41:d6:99:f4:d6:53:46:07:d7:b8:24:
d2:57:77:0d:eb:ef:ee:70:7c:cf:9a:0d:b9:d3:cd:
ff:56:f6:b8:4b:4e:70:3c:f8:3c:86:c5:3a:27:2f:
98:60:4b:17:ce:56:cf:24:bc:df:7d:c6:e5:ea:50:
54:71:d4:96:de:bd:28:d5:e0:3f:fc:cf:f2:93:97:
65:1b:d0:95:86:e1:6e:52:fa:92:33:24:6e:cb:03:
6a:4a:42:8d:91:89:09:8f:5b:6a:f9:6f:4b:cf:66:
64:67:32:93:48:ec:45:b7:56:bb:ad:d4:81:22:ba:
fe:77:43:6f:6a:da:ee:c7:57:ba:d6:93:e1:e4:2a:
5e:7a:d5:b5:2d:85:ab:d8:78:69:55:20:93:c7:8b:
d3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:80:18:F0:85:C6:9C:97:6A:3F:3C:C5:54:58:5E:13:09:9D:36:0C
X509v3 Authority Key Identifier:
keyid:CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:84:65:5f:71:b1:73:bc:e2:b1:af:ec:3c:c3:d0:b1:18:08:
5f:f3:37:a1:e2:fb:0b:49:5b:80:78:fd:b6:74:67:9d:4f:ef:
be:8d:25:80:0f:24:e6:2d:af:4a:e7:95:76:ba:ef:cb:7f:57:
97:f9:f6:ae:84:67:62:f5:2f:cb:1d:e2:47:62:83:c2:10:2e:
f5:15:c6:92:b9:8b:0b:ed:c0:1c:49:49:52:59:7e:4d:d4:7d:
1b:39:4c:c3:bb:a4:85:dd:33:f0:d7:30:5b:e1:6b:d9:10:70:
99:4e:7b:d0:37:2e:13:23:a7:d1:bf:96:69:ae:56:47:aa:e9:
e7:7a:e7:81:d6:02:6a:9f:a2:b4:18:fb:29:98:0c:c3:8c:7b:
8d:16:4b:41:23:1c:e6:d1:99:15:b6:d0:c0:42:fc:3a:05:98:
21:c9:75:fb:0b:42:cf:df:f6:de:53:e1:ae:66:54:39:ee:56:
9e:5d:f2:09:fe:3a:5b:19:e8:84:4c:02:98:41:44:d7:e6:dd:
bf:2a:cf:3c:0d:2f:09:57:79:2f:2f:f1:99:98:f0:a9:70:b6:
8b:be:37:82:98:38:3c:73:17:37:51:a2:11:cc:df:22:dd:71:
1d:60:fc:0f:3a:4a:71:27:f5:ad:e1:9a:17:ec:c0:80:2e:9b:
ad:74:f1:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:09:58 2025 by rpki-client