Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.mft
File: 1-_zUUVtJMDkhZ1jec45PGujjIkw.mft (raw, json)
Hash identifier: XMHS4ep4Ae6ffg2CedLFasY1XE9eymkA+dsP88Esh/0=
Subject key identifier: 50:5A:39:D7:29:D3:B4:D0:8F:B4:9B:50:04:E6:C9:FC:36:96:55:A0
Authority key identifier: FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C
Certificate issuer: /CN=fbfcd4515b493039216758de738e4f1ae8e3224c
Certificate serial: 0199FF9024C37AE9B59A702A5CF3A1975F43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.mft
Manifest number: 1107
Signing time: Mon 20 Oct 2025 03:01:00 +0000
Manifest this update: Mon 20 Oct 2025 03:01:00 +0000
Manifest next update: Tue 21 Oct 2025 03:01:00 +0000
Files and hashes: 1: 1-_zUUVtJMDkhZ1jec45PGujjIkw.crl (hash: m/KhSB/DK5Kq8ExlvvTS0ln5iHPR7nmm8YJlPhrudQw=)
2: DiLoOspEZ-miVIlFnPiykV7JGvU.roa (hash: 2IDQXBT0pmiOkj8NyXZhIUPtoHmvSFqSMYQziKEr2Pg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:90:24:c3:7a:e9:b5:9a:70:2a:5c:f3:a1:97:5f:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbfcd4515b493039216758de738e4f1ae8e3224c
Validity
Not Before: Oct 20 03:01:00 2025 GMT
Not After : Oct 21 03:01:00 2025 GMT
Subject: CN=505a39d729d3b4d08fb49b5004e6c9fc369655a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6f:0f:69:60:47:8c:c1:95:c2:58:ef:ca:36:
70:c6:28:01:8c:cc:39:e2:da:1c:6e:bb:7a:69:97:
e0:d6:b8:7a:3c:bf:04:1a:40:cd:b2:b8:d4:e7:a3:
4f:c9:3e:69:d7:12:36:7d:6e:72:31:84:b9:31:07:
d1:3d:db:ed:5d:81:5d:29:93:12:02:cf:37:20:10:
c0:2e:4a:25:b7:d8:be:7c:1b:7f:87:22:69:e3:3e:
63:08:36:5a:55:d7:3c:71:20:8a:1f:a3:4b:d8:bc:
36:e8:7c:df:f2:ce:af:20:3c:f5:5b:9b:6b:38:6c:
dc:9e:13:b3:15:2e:32:71:23:8b:61:e7:5a:17:77:
4d:6d:82:60:73:d6:5c:78:07:a6:6d:b5:3f:1d:6d:
dd:a7:15:a6:1d:c9:72:a7:1e:3d:40:d1:59:de:e3:
0f:f8:15:e9:99:4f:09:53:68:5a:de:66:ed:0b:b4:
ab:fb:16:63:1c:5a:fd:bf:2a:6d:60:1b:8c:7f:a5:
31:da:dd:14:4d:0e:ad:66:98:4d:72:33:84:7b:7f:
92:95:f2:2c:f1:d4:b9:8b:ad:80:97:13:e3:0f:f1:
4a:6f:39:8d:c6:9b:e0:21:56:54:4b:b0:1c:89:60:
27:bd:8f:3e:18:57:04:99:b2:59:10:04:5e:69:5f:
a4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:5A:39:D7:29:D3:B4:D0:8F:B4:9B:50:04:E6:C9:FC:36:96:55:A0
X509v3 Authority Key Identifier:
keyid:FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:b6:03:17:15:b2:52:1f:fd:50:af:92:85:ac:84:8c:91:3b:
5a:ef:1c:ab:51:21:7b:ae:cf:9b:1a:a3:91:98:e6:20:cf:1a:
3e:0d:b9:4a:71:ab:4e:c3:0e:dd:4b:6d:7c:f7:12:61:54:4f:
77:0f:1f:6e:d3:fc:d0:8f:58:a0:4d:f8:ed:0d:c7:43:d7:6f:
8e:08:36:a0:52:ed:f2:cf:d3:83:6b:8b:55:73:7e:f5:f1:ff:
d6:32:34:f6:96:35:5a:6f:2b:e0:7b:4f:1f:26:82:13:e0:c3:
a4:2d:dd:96:57:69:c0:6b:c0:10:14:d6:ac:0c:2e:4e:e5:4b:
81:e1:87:c3:ee:4f:15:2d:75:26:01:ff:76:fb:7f:9c:6e:83:
0d:22:99:04:4c:b1:03:6f:59:64:18:f6:c5:2b:3c:50:db:a2:
2a:c0:94:93:80:b8:54:9a:f0:5a:8e:17:cf:42:62:6d:ab:5a:
da:9d:8d:26:34:38:85:d6:25:1d:45:03:44:50:57:7a:44:9f:
31:ac:63:1f:47:6a:bf:ba:81:cc:c4:a2:fc:32:89:30:e6:54:
ef:2b:52:80:9e:b1:20:a5:f5:8a:30:65:93:b0:07:49:44:e1:
79:d1:42:f7:03:f5:6a:34:21:2c:7a:33:89:26:2d:92:e2:68:
36:9d:de:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:49:36 2025 by rpki-client