Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
File: zTu8GVzaflgkWmHLMLlv5XL9eBE.mft (raw, json)
Hash identifier: gestSuopF1yPm/to6B1sDtL4iB73w6KFGGFKbe1YzT8=
Subject key identifier: 62:ED:93:F6:E7:66:6D:4B:EE:1D:82:B1:21:0D:F4:B0:1D:BC:2E:F0
Authority key identifier: CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
Certificate issuer: /CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Certificate serial: 0199FE47280952359E67AE27E008DA76AAB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
Manifest number: 1036
Signing time: Sun 19 Oct 2025 21:01:40 +0000
Manifest this update: Sun 19 Oct 2025 21:01:40 +0000
Manifest next update: Mon 20 Oct 2025 21:01:40 +0000
Files and hashes: 1: clDd21QzHwOlwdLoUbCFlA9N4Bc.roa (hash: b4fVPg9ViPXbDXBeIAFrk3g5qdFMK0V6puBPZsjXHfs=)
2: zTu8GVzaflgkWmHLMLlv5XL9eBE.crl (hash: 18BybLXrxtLs2SxmwUPChGfioBIv+kh/GvD2b4gFf+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:28:09:52:35:9e:67:ae:27:e0:08:da:76:aa:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Validity
Not Before: Oct 19 21:01:40 2025 GMT
Not After : Oct 20 21:01:40 2025 GMT
Subject: CN=62ed93f6e7666d4bee1d82b1210df4b01dbc2ef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e0:89:5a:5c:3d:0e:0b:af:c1:24:0a:05:f5:
f7:72:4d:e0:f1:fd:12:40:8f:83:9c:11:aa:81:54:
55:2b:c3:db:47:f7:8e:69:9d:25:da:a2:db:e3:94:
e0:e8:f6:b7:4c:1c:2d:ff:4e:8c:f6:f6:a7:0e:93:
4f:9b:29:01:a1:1c:42:30:bf:bb:f9:18:f6:81:56:
6c:6d:57:c0:aa:bc:99:c8:0b:cd:75:13:47:69:4e:
19:51:08:15:4c:15:dc:44:90:19:b2:3c:e2:e6:d9:
39:55:39:74:fe:ae:38:fb:34:4d:48:31:a2:04:7d:
17:ed:48:7f:9b:a4:86:b3:6c:bd:29:a6:82:c5:16:
e7:26:27:b0:cd:14:91:3e:68:fc:d4:88:88:6e:e4:
eb:00:a4:77:14:cb:cd:ba:ab:24:af:fa:51:47:50:
05:0b:0e:40:46:46:b2:8c:e8:25:b3:93:8d:57:cb:
5d:6b:ef:27:f7:1b:ec:dc:3b:6d:87:ee:f8:f2:2b:
41:34:41:5c:99:5f:e5:07:09:9a:cd:ee:da:11:81:
8e:8c:2d:07:55:0f:12:2e:ba:90:61:bd:25:80:72:
9b:fb:58:ec:bc:c5:f1:9f:6b:b1:f5:33:97:b0:59:
e0:45:6b:4e:a8:15:6c:e1:4a:a6:0d:c1:eb:63:5c:
aa:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:ED:93:F6:E7:66:6D:4B:EE:1D:82:B1:21:0D:F4:B0:1D:BC:2E:F0
X509v3 Authority Key Identifier:
keyid:CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:f3:5e:f4:41:12:90:97:a3:93:62:0c:62:c9:9b:7f:81:b3:
17:00:f3:09:b5:d3:52:b9:83:08:d8:d1:89:2a:0f:a4:6a:0f:
db:3a:e4:2f:24:d0:df:b6:03:b4:40:23:85:1b:aa:3b:54:2c:
85:75:4b:14:5a:b3:f3:9e:73:9f:26:91:1b:f4:49:4f:45:7c:
1d:63:c8:8e:b0:1d:5a:8e:fc:51:a7:1e:2f:ed:bb:06:df:29:
cc:65:ab:38:2a:70:2b:fe:92:08:02:02:64:90:37:c5:bf:49:
1d:db:f6:af:d6:1c:43:5d:ae:8c:ea:cc:99:87:09:a2:b9:f2:
ca:b1:da:ad:aa:37:8e:42:58:09:45:14:c0:62:85:cc:7a:d6:
84:1e:fd:88:e9:eb:61:2d:18:77:0e:84:70:d5:e0:96:77:56:
bf:83:dc:3a:be:4e:71:9f:d4:ec:df:ca:89:4a:f8:0d:a0:4c:
54:8c:f6:1a:7e:18:90:10:7d:df:6f:77:54:42:1a:60:2d:d0:
a7:f5:77:8c:91:d8:51:57:fa:88:d1:bd:87:e4:56:3b:80:be:
c2:38:df:c7:0d:21:95:08:a2:4b:9f:f5:a9:a2:15:c7:d3:c8:
43:1b:dd:4f:c3:26:ef:33:df:65:37:bf:ab:03:62:94:de:66:
9c:c0:54:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:57:09 2025 by rpki-client