Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
File: z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft (raw, json)
Hash identifier: X5te1j2k5/00ZRp2OPN9bYlgDSEPmXCXWDUswYkp3co=
Subject key identifier: B8:31:D9:1D:A3:A8:0C:C6:38:03:71:0E:AD:4D:53:72:3D:6D:7C:96
Authority key identifier: CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
Certificate issuer: /CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Certificate serial: 0199FCC6BAE16A979FD48907F11F8EAAE2F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 14:01:46 +0000
Manifest this update: Sun 19 Oct 2025 14:01:46 +0000
Manifest next update: Mon 20 Oct 2025 14:01:46 +0000
Files and hashes: 1: hPBXvKQdaqlVU4nQ-2Te7vaa8Bo.roa (hash: c9xr2QPdOJHBS76dYaN+BTyMMmlA60SbcteFKaCmJMA=)
2: z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl (hash: 3wtfkB6QTUCyQ/CgwS6ByYJqlJkyImsZh3o4UlFiJhU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:ba:e1:6a:97:9f:d4:89:07:f1:1f:8e:aa:e2:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Validity
Not Before: Oct 19 14:01:46 2025 GMT
Not After : Oct 20 14:01:46 2025 GMT
Subject: CN=b831d91da3a80cc63803710ead4d53723d6d7c96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fe:2e:ea:cc:66:1e:17:77:d6:82:94:f3:54:
41:a9:bc:e4:49:dc:34:49:e1:40:75:fd:96:d9:45:
e5:75:ea:7e:c8:b3:2b:b6:67:ee:e5:6e:1f:57:70:
65:d8:aa:3e:9a:36:51:dd:d2:38:15:c4:07:22:e6:
96:d0:fd:be:f2:83:65:fb:6e:2b:39:ca:aa:9f:d3:
bd:ee:4f:38:fb:d6:c0:48:19:7d:06:8c:80:99:af:
81:3b:80:90:92:25:11:49:37:f0:77:b1:c3:0e:8c:
8a:6b:9a:2b:08:a0:bf:cc:da:21:df:45:3c:d3:b6:
1d:f6:b6:48:94:6c:a0:02:51:03:50:3e:5f:0f:e7:
c2:3c:63:3c:40:ab:75:fa:50:52:a4:08:7e:b9:ec:
66:58:b8:2a:96:3b:6a:07:90:68:db:1b:f7:a2:a4:
09:70:ae:6c:6b:92:41:df:25:69:26:8c:72:89:1b:
94:ee:92:44:14:b9:41:bf:61:53:ae:69:db:e3:0b:
96:7a:df:b4:fb:94:9b:59:d6:0e:c8:d7:a5:ed:84:
4d:b0:d8:c0:b2:9d:9c:e9:e0:87:7f:72:3a:65:b6:
b8:c9:b2:f5:2f:50:c2:fa:d7:d8:48:3d:fc:90:9d:
55:ca:ac:6f:df:ed:72:94:57:2a:b1:a6:53:1d:3e:
20:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:31:D9:1D:A3:A8:0C:C6:38:03:71:0E:AD:4D:53:72:3D:6D:7C:96
X509v3 Authority Key Identifier:
keyid:CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:d2:a8:78:38:f4:37:11:41:6b:3d:cb:84:64:db:05:79:b9:
86:a8:c0:5c:f8:27:0b:20:d1:8e:a4:be:c8:73:8d:eb:3a:1a:
e3:e2:83:37:d2:34:88:6d:03:18:48:cf:9e:d3:cf:2e:21:e9:
2a:a9:40:f6:02:77:ca:de:d2:5b:2e:dc:c7:d6:49:16:f1:ce:
15:0e:6f:41:78:83:92:9b:d6:d9:04:3f:94:e6:da:79:dc:dd:
7a:ef:9c:7c:e8:83:0c:f1:5a:88:50:c8:f8:38:36:45:83:1f:
33:e7:7b:e0:6b:49:43:34:67:f4:b3:5f:5c:d1:79:c4:34:65:
48:a1:cd:7e:cd:44:cd:00:57:17:e2:4b:8b:33:c6:cb:dd:2e:
dd:b4:5b:32:51:84:48:05:c3:99:05:f0:19:7c:da:ec:40:53:
9b:34:fb:c2:4a:a0:b7:61:fd:c6:06:38:7c:09:e9:b3:b8:22:
62:72:0e:42:94:7e:56:44:78:08:ca:28:89:b4:8e:07:61:ec:
5d:3d:6b:ce:e8:bc:90:6c:11:0d:b5:40:d6:4b:07:a0:32:c3:
10:72:f7:9b:c8:67:85:8f:bd:6f:40:63:ca:1b:79:f4:5a:53:
ae:f3:85:a2:37:ce:77:fd:73:d0:8d:d1:9b:fd:63:8a:b8:72:
04:63:a1:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:35:21 2025 by rpki-client