Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
File: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft (raw, json)
Hash identifier: BGBREgV9kHwE/ViMi96Q8GbETK3R6vDtEBRPrVJI0EU=
Subject key identifier: 8E:16:E7:83:2C:03:70:48:F5:15:79:89:C1:85:88:C0:0A:CD:15:13
Authority key identifier: CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
Certificate issuer: /CN=cf40e25606651a075484c709fa766d80dad52d9c
Certificate serial: 0199FDD9D99FBB83659FAAFA621BC5764815
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
Manifest number: 04EF
Signing time: Sun 19 Oct 2025 19:02:16 +0000
Manifest this update: Sun 19 Oct 2025 19:02:16 +0000
Manifest next update: Mon 20 Oct 2025 19:02:16 +0000
Files and hashes: 1: hGH_yKtqtaewmmke-m1I7cISSH0.roa (hash: T3QXU6gMQq0RcA3qUlvm1jUKiUtDYtXE4Lz78+TSbU8=)
2: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl (hash: p5yDNpiqPRAH2l/hxXIb4iP9+eCnYy+J0DByebbhvHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:d9:9f:bb:83:65:9f:aa:fa:62:1b:c5:76:48:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf40e25606651a075484c709fa766d80dad52d9c
Validity
Not Before: Oct 19 19:02:16 2025 GMT
Not After : Oct 20 19:02:16 2025 GMT
Subject: CN=8e16e7832c037048f5157989c18588c00acd1513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f5:67:e0:95:dc:cb:4f:9f:26:2b:a0:34:d8:
0f:da:c1:08:e3:f5:bd:3c:96:b6:bc:e7:93:c9:8e:
a3:dd:94:31:32:85:e3:90:5b:4b:51:20:ec:54:c3:
99:39:3c:f4:b3:0a:40:77:9e:ad:99:67:0c:da:5c:
0a:1a:80:5b:ae:9d:ac:31:32:79:81:cd:8a:62:23:
31:a6:59:44:28:1f:aa:89:9e:2b:ec:83:fc:42:92:
22:41:64:f2:f7:3a:43:55:18:1d:bd:c2:fe:0a:34:
c3:d4:74:10:a6:47:33:b7:2d:ad:fe:19:18:d0:95:
82:b6:7f:b8:2b:6c:bc:83:6a:8f:cd:d2:b4:66:be:
b2:17:e6:65:96:b8:b5:88:2f:52:1f:e2:af:62:e2:
b9:28:38:9f:ab:af:dc:f0:10:a0:32:25:57:cd:33:
60:29:d5:1b:2e:7f:60:cc:a6:e2:81:21:3d:1a:18:
f0:3b:a4:fb:43:52:f4:40:7c:79:d2:40:c1:95:d2:
7e:61:07:f0:5b:fb:3b:51:cd:83:5c:0b:b2:b3:1a:
1d:18:cd:5b:41:2b:db:79:35:6d:8e:ea:90:09:2c:
95:97:a3:e0:48:d2:64:42:b3:f6:5a:a1:c2:8f:0c:
58:12:86:1e:57:87:39:86:6d:83:1c:20:9c:84:79:
fa:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:16:E7:83:2C:03:70:48:F5:15:79:89:C1:85:88:C0:0A:CD:15:13
X509v3 Authority Key Identifier:
keyid:CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:6a:d5:70:28:41:d7:b1:d6:13:26:98:66:cf:31:18:f6:1c:
a5:d0:8d:80:4f:12:30:5a:fb:4c:52:2a:ab:8d:da:2e:96:47:
47:95:87:fe:98:e4:c1:88:a2:a0:48:e9:9f:6c:4b:90:30:e4:
65:64:e4:64:40:bd:0d:71:a9:df:49:ec:1a:0c:58:64:cc:29:
42:2f:43:f5:c4:96:3d:e8:d2:d7:a1:a3:be:5a:c8:a2:10:41:
c5:8a:d1:97:4f:3e:a5:cd:0b:40:34:21:3c:c8:bf:fe:47:e0:
01:a5:df:00:bf:f1:d7:46:7e:e6:bd:95:e2:64:af:a9:3d:3f:
e9:b4:12:b4:92:85:b0:f1:55:71:4d:fc:11:af:62:95:1f:b5:
5e:12:5d:11:da:a6:dc:33:9a:81:f6:dc:1f:79:ab:e6:ab:1b:
a4:b7:48:55:20:96:43:c6:1d:1e:ad:d4:eb:b0:6b:50:5c:da:
ee:e7:65:3c:d0:34:82:36:73:1f:b9:bb:d0:b6:b6:50:4e:9d:
fd:f1:3b:c6:38:c5:cb:c4:3a:3c:46:27:0e:4a:bb:d1:62:c4:
f9:65:a4:b6:b4:70:45:39:55:20:08:05:e6:ff:c5:90:b1:d7:
98:b4:b5:91:1e:10:29:d7:3b:dc:95:4e:e8:de:21:ac:16:e3:
6a:45:c5:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:49:19 2025 by rpki-client