Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
File: zQPRPdJvAESig_xqEedWoqK1aRs.mft (raw, json)
Hash identifier: 0HbIFa3V2HzeP22W1kEK0Oba4Im4CxajoxPH2oxXr9c=
Subject key identifier: C4:BE:50:80:38:50:DC:C2:1B:61:A4:55:2A:7C:FC:E5:F8:2F:AB:E7
Authority key identifier: CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
Certificate issuer: /CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Certificate serial: 0199FD6B171368410DA02733521E0085920A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
Manifest number: 01E8
Signing time: Sun 19 Oct 2025 17:01:17 +0000
Manifest this update: Sun 19 Oct 2025 17:01:17 +0000
Manifest next update: Mon 20 Oct 2025 17:01:17 +0000
Files and hashes: 1: yLKyshLk5Y8qo2HfRt0bfJWqtcI.roa (hash: CLpNYZZ3o+zwOI76Lm9XQZQEHlIeProjGVosiuqFQCw=)
2: zQPRPdJvAESig_xqEedWoqK1aRs.crl (hash: c2WyegIdoLLhaSrZVaJzzSTglZ36t1aafU1uqV4JnRk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:17:13:68:41:0d:a0:27:33:52:1e:00:85:92:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Validity
Not Before: Oct 19 17:01:17 2025 GMT
Not After : Oct 20 17:01:17 2025 GMT
Subject: CN=c4be50803850dcc21b61a4552a7cfce5f82fabe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:43:f0:58:25:9a:a7:99:4b:b1:43:bc:a4:4c:
31:53:bf:5e:aa:0c:29:c2:69:4a:5f:50:93:ba:7e:
7d:b7:64:19:42:d9:c5:9a:29:7e:f1:62:47:0d:22:
e5:9c:50:7f:b5:5d:be:03:52:b2:0e:1b:c7:e0:bb:
1c:54:81:7f:93:da:6d:02:b5:ed:71:80:5f:0b:0f:
39:ee:b6:3f:d0:d1:6a:ae:49:f4:31:0d:f9:4b:d2:
f0:36:8b:24:18:d7:47:40:5e:5a:1d:3e:9f:86:60:
e8:7f:a4:4f:8e:bc:bf:dc:c2:f7:27:4e:7e:dc:b6:
9d:ae:3d:18:d8:7c:bd:52:6e:ce:d1:19:c7:29:ee:
16:b1:15:6e:20:72:3f:5c:00:20:3f:57:41:57:da:
9e:83:b6:b2:91:d2:ec:f6:e5:a6:4e:7f:91:29:2e:
9b:99:e6:55:34:8a:88:33:2e:3d:c0:b9:91:0f:76:
f1:75:c9:22:a6:23:31:99:d1:cd:d7:eb:6c:6f:fe:
ea:9e:bb:54:e1:03:80:b0:d1:8a:92:48:70:99:eb:
84:20:21:20:aa:6b:f6:10:14:ed:be:78:0c:90:c5:
3b:9c:99:2d:57:a9:a9:6e:6c:6d:20:c0:9e:c3:3e:
d4:6a:19:27:6d:09:21:1a:a6:1d:1e:f6:ff:ec:90:
f3:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:BE:50:80:38:50:DC:C2:1B:61:A4:55:2A:7C:FC:E5:F8:2F:AB:E7
X509v3 Authority Key Identifier:
keyid:CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:5f:c9:c3:5c:66:12:d6:e5:b0:5a:ea:b3:76:cc:9e:47:bb:
3b:b7:bd:95:39:3a:74:0c:9d:9f:0f:e8:9f:e1:76:da:37:63:
06:15:e0:d8:2a:24:8f:87:3b:b6:2d:29:1c:ce:a7:32:5b:0a:
1a:50:69:9b:5d:2a:97:6b:ca:ca:0d:c8:c1:89:88:55:f7:8b:
d1:2c:94:a4:44:8a:02:05:49:8d:06:df:47:47:c4:c3:cb:ac:
4f:f8:30:1d:e4:cc:1b:38:9a:c7:74:59:74:ab:65:65:0e:89:
4f:ec:45:c4:cd:4d:83:a1:46:50:da:62:1d:16:ff:ac:7b:ef:
f5:67:4e:10:88:43:71:db:22:5d:01:50:d4:e4:2b:61:2c:1b:
5c:51:5e:5f:14:f7:ec:aa:ca:fe:1f:bb:a6:91:a7:ae:d3:a3:
d7:7c:f4:2d:26:68:e5:c7:c9:de:af:1b:11:fc:30:a8:2d:2b:
89:4b:4e:73:a5:58:8b:d6:5f:9a:37:4c:37:42:aa:69:8b:30:
14:e1:cb:44:91:59:31:41:8f:b2:b4:74:35:d1:62:0a:1c:01:
cb:f5:44:c2:97:4d:c6:7b:fe:ca:06:47:c7:49:01:25:7d:52:
8e:ce:1c:fe:63:7b:e2:57:0e:9e:0e:27:16:f9:5e:36:d0:4c:
47:42:40:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:07:11 2025 by rpki-client