Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
File: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft (raw, json)
Hash identifier: zdLVaKGIRDXC9Jf2NsS7LJecO1qd6rRHOo4br2iD1Sc=
Subject key identifier: 1C:5B:75:B7:8F:3C:AC:47:4A:C9:53:3B:EE:FB:D3:C4:26:99:45:30
Authority key identifier: CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
Certificate issuer: /CN=cddd902a1271270027e4577778ea35883b4515f6
Certificate serial: 0199FC587B15CED6D5B0AF46E1B96CDD20F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
Manifest number: 16E8
Signing time: Sun 19 Oct 2025 12:01:21 +0000
Manifest this update: Sun 19 Oct 2025 12:01:21 +0000
Manifest next update: Mon 20 Oct 2025 12:01:21 +0000
Files and hashes: 1: Ylu4oY650LeSLzKfRWZsKd7D6d4.roa (hash: at13Jjp52CyKiekCDznMGprsJGH6Ha6O/Aegpe9S1N0=)
2: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl (hash: LZ1+Yn5LzMTqaqLvezK/aTEuEYqJIz2odHotK6djMLk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:7b:15:ce:d6:d5:b0:af:46:e1:b9:6c:dd:20:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddd902a1271270027e4577778ea35883b4515f6
Validity
Not Before: Oct 19 12:01:21 2025 GMT
Not After : Oct 20 12:01:21 2025 GMT
Subject: CN=1c5b75b78f3cac474ac9533beefbd3c426994530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f1:8c:63:97:ab:f5:fe:f7:43:13:a7:af:14:
1d:a0:de:fd:61:aa:19:2b:98:fe:19:30:67:d7:2e:
06:33:70:5b:42:43:45:e6:41:84:d9:1d:d1:37:56:
66:0a:0f:1b:9d:07:ea:19:5d:fc:51:05:1a:01:c5:
ef:8d:a2:5a:ac:b9:d8:a5:2f:e1:a0:5c:60:61:0e:
46:95:52:91:c2:0f:a3:b7:d8:d6:88:08:53:26:d1:
73:15:4a:cd:1f:e3:d9:98:90:be:ba:f8:78:91:8b:
83:9c:2b:d1:55:a4:87:45:5c:d8:42:b7:a9:fd:bb:
ca:46:87:e9:f5:bf:36:a6:6a:43:c4:6e:46:f3:91:
1f:75:e0:49:2b:70:d9:1f:93:5f:48:9e:31:06:85:
1e:e6:43:5d:d7:21:47:29:9c:4c:44:79:88:af:50:
1c:7f:c9:05:f4:c1:48:53:a4:65:15:c6:15:8c:19:
e3:ce:25:4b:7c:fa:7a:1b:ae:d0:e2:07:77:ac:c9:
2b:ab:49:8a:84:66:38:ec:4c:78:e7:54:f3:f6:76:
8c:59:f5:8d:af:90:4a:b4:c5:1a:74:f0:82:bf:73:
b5:99:c2:e6:de:cc:1b:dc:3f:f3:61:a9:f6:99:ef:
b7:a8:30:e4:8a:2b:12:aa:05:28:dc:31:a9:18:ca:
47:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:5B:75:B7:8F:3C:AC:47:4A:C9:53:3B:EE:FB:D3:C4:26:99:45:30
X509v3 Authority Key Identifier:
keyid:CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:d3:c6:2a:e0:66:e1:b3:46:cd:06:96:2a:9c:c6:8b:a3:db:
35:0b:fc:e8:a0:6e:fa:67:24:c1:f8:a6:9e:4c:e9:28:c6:f3:
00:a4:af:38:5c:43:b1:16:c6:4c:b4:96:79:fa:87:a8:7d:d4:
70:11:44:8f:24:76:69:19:ed:5d:2f:e2:85:a6:84:22:10:f3:
bc:41:1e:16:20:b3:2a:e6:37:bb:c7:a2:d7:d8:14:82:b0:12:
68:b0:43:a1:90:d2:85:69:be:24:49:47:64:9a:5b:dd:57:68:
2a:8a:59:5b:38:de:57:41:18:96:7e:70:d6:14:0b:ca:eb:43:
da:65:7b:e1:d5:8a:da:f8:45:b8:7f:a5:ef:da:db:ff:c2:22:
71:46:b9:17:0b:af:5c:a2:b2:d4:fc:92:77:d0:7e:51:3b:0e:
cf:c1:cb:c9:87:71:f4:20:f2:ec:17:2e:39:f0:f9:fe:4e:3c:
79:96:aa:4f:bb:ae:f8:85:a4:8b:da:d6:98:ae:36:24:58:6f:
b1:66:2c:30:95:69:45:30:26:eb:17:46:d9:84:b7:3e:70:7b:
2c:19:28:e3:09:af:4d:b4:6d:36:5a:33:b3:ee:b2:57:12:ec:
a5:d4:41:17:18:aa:a4:cc:18:95:97:58:85:45:c9:0e:6d:0c:
39:d9:56:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:42:52 2025 by rpki-client