
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: L9r9iOSl/TkZd9IQwcVLq7L63+xLV9xkAEjqmB13/ho=
Subject key identifier: 93:98:3E:17:31:DE:88:C9:30:FF:0C:BA:D7:7D:23:C7:7E:35:DD:9E
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 019A00A2EAFE613E1AF4B8C05EAE1A993A62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 070D
Signing time: Mon 20 Oct 2025 08:01:08 +0000
Manifest this update: Mon 20 Oct 2025 08:01:08 +0000
Manifest next update: Tue 21 Oct 2025 08:01:08 +0000
Files and hashes: 1: 69EZo_UvSYLCIwLzPyqCblCyZzI.roa (hash: 2naW8CuEgpZKAi+BoeweFMMKRLa2fsvkiMt8udbwEtM=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: jBQS4GqstjTDyZ+wzej5Eh5VGGECExc1N0ZilDKqcbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 08:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:a2:ea:fe:61:3e:1a:f4:b8:c0:5e:ae:1a:99:3a:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Oct 20 08:01:08 2025 GMT
Not After : Oct 21 08:01:08 2025 GMT
Subject: CN=93983e1731de88c930ff0cbad77d23c77e35dd9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f1:f1:a4:1c:35:a0:9a:3e:97:06:92:05:6d:
d8:86:4f:3e:c3:80:c8:94:7d:4e:08:a8:60:f8:83:
ff:47:06:86:2e:e3:24:73:16:9b:4f:ec:93:5b:83:
ba:40:05:7a:e3:e8:ef:42:7e:93:6b:17:92:89:cc:
96:02:57:04:49:60:95:ce:4b:f0:6e:7f:9a:10:48:
c8:0a:ca:30:90:5e:3b:dd:55:e7:de:ce:4a:8e:9f:
de:fd:54:f8:f9:8c:71:f6:7d:18:71:6b:ef:e8:8c:
d1:8e:b4:29:4e:5a:37:a9:93:5e:c5:e0:c5:66:b7:
fa:d4:8f:ef:85:14:24:94:ef:98:c9:02:8a:2e:96:
4d:91:84:d1:11:04:65:bf:7d:f5:8f:78:78:52:7b:
90:ec:18:6b:fe:e8:9f:88:a2:2b:a2:c4:2b:42:09:
e7:b5:d0:96:4f:9d:94:fc:0f:61:32:28:cd:56:6c:
2c:72:cd:24:34:72:17:a3:f1:6c:4b:a3:dd:dc:7d:
a8:d6:ce:12:14:31:34:9c:db:22:34:c5:f6:01:6c:
14:e5:7c:43:61:fa:f9:bb:4d:be:6c:b9:99:eb:72:
c8:f2:2b:da:f1:95:d2:d1:11:32:2d:54:89:75:48:
06:c9:8a:1c:dd:05:a1:73:78:4a:5d:b5:77:34:69:
ea:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:98:3E:17:31:DE:88:C9:30:FF:0C:BA:D7:7D:23:C7:7E:35:DD:9E
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:16:e8:70:fb:06:93:65:3b:97:7f:07:56:25:3b:37:6e:9a:
03:66:f5:3a:53:c1:f8:21:63:6c:4b:73:15:fc:3a:bd:3d:71:
b5:d8:40:1e:2d:9f:57:96:53:a2:72:e1:04:7b:8a:bc:4f:c4:
63:07:f4:dc:f7:97:b9:3e:aa:73:c6:26:e1:27:89:32:ec:e7:
e7:34:8d:bd:c9:ac:cf:6a:7c:8a:7a:46:1c:bb:ca:00:b1:da:
eb:c7:7a:2a:4f:29:33:a6:91:08:fc:99:98:4b:de:60:d1:04:
09:05:17:dd:4e:df:1b:b0:b7:98:23:04:09:75:97:b5:7b:ab:
db:aa:91:0a:c0:3d:48:b2:c1:5e:15:b2:b5:d6:f7:e8:3f:45:
4e:48:43:fb:f8:69:0f:40:53:b8:32:a3:29:0d:53:d7:99:e6:
13:b1:89:19:2b:57:b2:7a:ed:15:5c:29:22:3a:70:88:8f:94:
2b:aa:66:44:2e:f3:39:cf:02:69:17:e1:51:ff:ef:74:ac:19:
1b:e8:a5:11:3c:1b:ee:4a:03:47:d5:9b:62:41:09:d7:32:1c:
fb:3f:42:a3:1c:a8:95:92:c4:b9:65:8e:7b:d6:63:d9:51:85:
82:fe:07:bd:04:be:b8:39:35:e4:f3:af:f2:ff:ee:8e:9b:ba:
31:07:84:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:22:12 2025 by rpki-client