Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
File: MzOeZKWFFMmwkemy5o4pNx5D498.mft (raw, json)
Hash identifier: fAD7sTxDsRwB4Jp0rVVWh3xjUS89xE1CnpPoEeP5E3M=
Subject key identifier: 00:F7:B7:43:E4:A8:6E:90:F3:EA:9B:20:74:EB:08:6E:98:28:8F:1B
Authority key identifier: 33:33:9E:64:A5:85:14:C9:B0:91:E9:B2:E6:8E:29:37:1E:43:E3:DF
Certificate issuer: /CN=33339e64a58514c9b091e9b2e68e29371e43e3df
Certificate serial: 0199FBEC2CC85A63C7D4781F85BEE1D06D22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzOeZKWFFMmwkemy5o4pNx5D498.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
Manifest number: 0B2C
Signing time: Sun 19 Oct 2025 10:03:03 +0000
Manifest this update: Sun 19 Oct 2025 10:03:03 +0000
Manifest next update: Mon 20 Oct 2025 10:03:03 +0000
Files and hashes: 1: 0SGERXpsIldifCTWUfwaAPLWZj8.roa (hash: Wl6639BT2YEzAcDZ1BBEKA7sfTmRzgLCKdjibP72VaE=)
2: MzOeZKWFFMmwkemy5o4pNx5D498.crl (hash: bmC0vCNJuJUnfXhR/QPsCEJYQ/FvaytHYxNDhhdo9/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzOeZKWFFMmwkemy5o4pNx5D498.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:03:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:2c:c8:5a:63:c7:d4:78:1f:85:be:e1:d0:6d:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33339e64a58514c9b091e9b2e68e29371e43e3df
Validity
Not Before: Oct 19 10:03:03 2025 GMT
Not After : Oct 20 10:03:03 2025 GMT
Subject: CN=00f7b743e4a86e90f3ea9b2074eb086e98288f1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a9:ce:ab:ca:9e:e0:d5:08:90:45:51:62:47:
d7:6d:2c:3e:07:60:3c:cb:3b:86:56:2c:a4:e7:a9:
b2:3f:84:09:57:78:5d:b2:55:7b:a3:6a:41:83:ae:
a8:f7:67:d3:0f:1a:de:bb:23:c7:69:c8:93:65:91:
eb:ea:ed:82:55:8c:98:a3:56:8b:82:26:90:d8:a9:
c8:1c:98:13:05:55:6a:b2:7e:ea:e7:04:4a:69:43:
13:d0:76:49:18:0a:6e:08:71:1a:e0:4a:f0:3d:5a:
39:e4:b4:9c:3f:f1:f8:a7:c1:af:bc:79:d3:75:64:
6a:62:63:9f:dc:23:43:30:1e:3a:aa:3e:57:20:95:
d2:8b:9e:ad:e2:49:5d:0b:cd:b6:0e:fb:54:6e:6d:
b4:08:8e:63:bc:7e:91:ce:6c:a3:85:67:2d:4b:eb:
d7:ee:82:b4:3e:3e:71:74:1b:c8:99:e1:57:51:71:
fd:62:9d:a6:7a:eb:da:17:7c:60:65:7c:af:fa:2e:
6f:70:41:3c:25:4e:59:30:67:48:07:b5:9b:16:98:
99:4a:46:53:53:48:a8:f9:5b:58:80:95:70:74:ce:
5c:c9:38:e0:59:13:ab:76:a6:66:c3:5f:13:2f:04:
c7:55:57:80:59:e5:f8:0a:cb:81:8f:07:3c:df:37:
59:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F7:B7:43:E4:A8:6E:90:F3:EA:9B:20:74:EB:08:6E:98:28:8F:1B
X509v3 Authority Key Identifier:
keyid:33:33:9E:64:A5:85:14:C9:B0:91:E9:B2:E6:8E:29:37:1E:43:E3:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzOeZKWFFMmwkemy5o4pNx5D498.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:2a:47:7e:d6:ae:6d:d7:e5:74:65:78:cd:4f:0e:44:0c:c1:
01:cd:05:04:45:fc:c6:0b:71:39:c7:c3:a2:81:b9:12:84:94:
ff:cb:d0:21:f9:47:81:48:04:ff:ac:f1:10:4f:8b:af:26:e7:
e9:80:34:81:69:59:1a:92:cb:e4:4c:ef:6a:1d:c5:6f:95:0d:
2c:f6:5f:bb:b0:8e:5e:b7:28:e1:97:25:79:d2:5e:4f:61:b6:
91:4a:b4:35:6b:a5:7a:53:36:75:21:5a:16:38:3f:27:e1:78:
21:4b:65:e3:dc:fe:f9:5d:d6:86:5d:51:3d:20:e6:12:71:b2:
55:60:e6:20:5c:25:a2:4c:12:3a:29:92:81:97:6b:34:2b:b6:
46:a5:86:b6:72:d2:f8:9b:45:cf:96:fb:db:25:54:9f:f0:7d:
32:92:78:9f:ff:e6:be:d0:54:d5:e6:89:2c:74:fd:ff:a2:3e:
78:c9:53:b9:d1:c3:9f:a7:12:f7:1e:6a:36:d6:aa:3a:36:3e:
99:df:04:1a:71:c9:7b:d3:3a:d9:d2:0f:30:3f:68:9e:82:74:
37:e8:63:b7:f2:df:16:b4:8f:96:67:1b:2d:21:eb:c1:72:eb:
6d:0b:75:ed:20:0a:c5:f4:7e:5f:55:29:0f:cf:87:9c:07:f7:
a8:f6:26:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:39:32 2025 by rpki-client