Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft
File: rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft (raw, json)
Hash identifier: u84Prm5mo5X2SpHdowizLL16SvqLhCHb0bM4GqNx6g8=
Subject key identifier: D0:B9:F2:DC:DD:81:6A:7B:E9:8E:CD:5A:76:5E:42:72:12:20:BD:0B
Authority key identifier: AD:94:79:AF:E3:A9:A1:8E:1C:37:4F:CA:02:2D:1F:F2:A2:55:B1:AF
Certificate issuer: /CN=ad9479afe3a9a18e1c374fca022d1ff2a255b1af
Certificate serial: 0199FB7C6BDDF6DBD815AA114B72B8686492
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZR5r-OpoY4cN0_KAi0f8qJVsa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft
Manifest number: 0197
Signing time: Sun 19 Oct 2025 08:00:59 +0000
Manifest this update: Sun 19 Oct 2025 08:00:59 +0000
Manifest next update: Mon 20 Oct 2025 08:00:59 +0000
Files and hashes: 1: rZR5r-OpoY4cN0_KAi0f8qJVsa8.crl (hash: W0gmGGKoSrS4lK4CXKud8HlDK/zDfeWarQD9Meu+mcA=)
2: y_jzZWxrMh2AT3qjdH5sDFcbnso.roa (hash: UBOvdV+QBpMo/gPKyJWNtGffNnN28PAA/OvI521Vudc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rZR5r-OpoY4cN0_KAi0f8qJVsa8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:6b:dd:f6:db:d8:15:aa:11:4b:72:b8:68:64:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9479afe3a9a18e1c374fca022d1ff2a255b1af
Validity
Not Before: Oct 19 08:00:59 2025 GMT
Not After : Oct 20 08:00:59 2025 GMT
Subject: CN=d0b9f2dcdd816a7be98ecd5a765e42721220bd0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:72:42:d6:64:83:e8:fa:56:0e:4d:68:90:87:
d1:79:51:49:06:37:0b:24:f9:0e:26:24:66:ca:8a:
90:09:b5:aa:f9:f9:53:27:16:d8:f1:0a:35:eb:83:
e6:75:56:a8:c4:60:fb:a0:9e:2a:6a:71:59:27:34:
4c:95:1b:80:7e:97:5c:0d:89:70:4f:5a:10:84:06:
fc:aa:88:67:d2:5d:52:28:78:c3:6f:8f:0d:65:3a:
41:50:11:6a:4e:2b:1b:eb:d2:74:ab:ee:c1:e6:ec:
6f:ed:c1:3d:bb:ae:b0:1b:ea:f5:a1:db:a7:72:ba:
13:14:f3:2e:05:f4:75:e0:89:10:06:6a:dd:8e:b2:
2a:3b:13:ef:97:96:4f:29:c8:39:14:cc:f1:65:37:
8e:5c:36:38:0c:59:5a:fb:3e:63:fb:b5:99:5d:46:
f4:2a:a4:b8:14:42:dc:eb:5d:1e:b2:69:51:bf:a1:
4c:c7:4d:77:42:1b:d7:79:2a:4b:39:84:94:92:6c:
f4:38:1f:97:db:07:2d:16:c2:55:3c:09:c7:a8:10:
5e:dd:bf:4f:52:3c:17:45:d4:c1:20:03:80:d2:ae:
18:33:85:34:1c:5f:bf:87:f8:85:95:fa:15:52:d0:
45:13:ab:93:ca:4d:19:24:86:f3:c5:95:ad:b3:07:
67:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:B9:F2:DC:DD:81:6A:7B:E9:8E:CD:5A:76:5E:42:72:12:20:BD:0B
X509v3 Authority Key Identifier:
keyid:AD:94:79:AF:E3:A9:A1:8E:1C:37:4F:CA:02:2D:1F:F2:A2:55:B1:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZR5r-OpoY4cN0_KAi0f8qJVsa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:4f:b5:b3:cf:80:aa:39:39:e9:6f:c9:54:58:dd:5b:8e:cb:
8c:25:aa:cc:2d:d5:25:fb:02:53:ff:3e:ea:d1:c9:07:d3:29:
04:5a:a3:d8:2a:12:a5:21:a1:e5:52:24:aa:a4:00:e5:61:18:
d9:a8:73:f2:1f:f4:99:e9:b6:c0:0c:93:67:ee:66:92:5b:be:
c9:14:73:74:e6:6c:ac:09:9e:68:ae:00:e6:1d:dd:05:2b:ec:
9f:83:2a:2e:d6:f1:3d:dc:fa:27:e6:b5:5e:be:a3:51:d7:fe:
f3:0a:3f:13:04:b8:11:4f:e8:c6:ee:4a:ce:18:e1:13:01:8b:
b2:8f:aa:a2:a8:07:74:9f:16:b1:6e:86:d7:f5:de:a0:a6:38:
52:52:89:69:05:91:31:b3:84:52:dd:57:6b:35:51:cc:f5:00:
bb:48:dd:a3:ef:98:78:8b:0d:ed:a6:40:9f:c9:f5:c5:58:e5:
03:47:db:8a:5e:ba:97:3f:65:ff:e8:42:97:ac:b7:9f:1a:d0:
e4:ce:66:54:a0:86:c9:37:2b:c9:90:dd:a4:14:2e:1e:c1:a9:
2e:b0:fd:57:7d:27:41:a4:64:69:f5:60:b9:20:85:a3:f0:de:
ad:62:a6:b6:51:b0:94:49:b4:1d:12:81:84:6a:6c:5a:2f:51:
ce:aa:1d:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:30:52 2025 by rpki-client