Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
File: zTwRDf139XdXORwPrt7r42CGVx0.mft (raw, json)
Hash identifier: 73KLcopZdMlmgBaI1QGkHxhk8C9/zn9yu7Bk6lUtAmw=
Subject key identifier: 80:C2:4E:56:74:F2:E1:D5:0B:01:FD:C9:F1:4E:B9:E4:F1:3A:74:FC
Authority key identifier: CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
Certificate issuer: /CN=cd3c110dfd77f57757391c0faedeebe36086571d
Certificate serial: 019A06363727142243D7FC62FD8AC3DCE70D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
Manifest number: 0F03
Signing time: Tue 21 Oct 2025 10:00:07 +0000
Manifest this update: Tue 21 Oct 2025 10:00:07 +0000
Manifest next update: Wed 22 Oct 2025 10:00:07 +0000
Files and hashes: 1: n79crWM-L0W_-YTIs0SA8x1g-4g.roa (hash: WTPugh0CrOL+7geJ0TTyRViJCXrCGCyNH+3nK4QxB48=)
2: zTwRDf139XdXORwPrt7r42CGVx0.crl (hash: 7WpIrOZ9pKgO82pFRQpRYCiJtn6q0gWlRpJwRaJJKRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 10:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:06:36:37:27:14:22:43:d7:fc:62:fd:8a:c3:dc:e7:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3c110dfd77f57757391c0faedeebe36086571d
Validity
Not Before: Oct 21 10:00:07 2025 GMT
Not After : Oct 22 10:00:07 2025 GMT
Subject: CN=80c24e5674f2e1d50b01fdc9f14eb9e4f13a74fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2d:6f:03:21:2a:09:12:9c:18:d5:fe:8f:ff:
b0:24:87:37:f9:5d:63:5a:1b:c5:ba:44:6d:6d:44:
29:93:5b:ab:55:06:b4:dc:8f:45:41:59:73:7a:91:
50:56:df:06:2f:d5:f3:ad:7f:2c:63:c9:a2:13:2b:
89:c4:90:0a:23:b8:67:01:18:f6:d1:0b:85:5e:62:
d7:11:07:2b:ac:f6:b3:ed:3a:03:33:47:66:59:8e:
89:bd:31:20:16:3f:6e:66:08:26:98:2f:18:35:4d:
d4:98:8a:46:12:9f:6b:56:34:3c:7a:01:03:ac:f7:
65:b2:cf:27:fb:5d:3c:11:e1:75:63:f6:58:00:bc:
54:95:98:27:4d:ec:23:4b:37:dd:a3:23:4e:ca:f3:
e3:dc:12:a1:af:d3:24:c5:16:35:db:6f:eb:78:ca:
00:64:c6:4e:4c:3a:3f:07:de:56:7a:77:e2:7b:09:
22:d4:55:d7:55:f5:5d:7e:71:18:cf:0b:7b:75:52:
7e:90:0e:9e:b1:18:66:f2:c2:65:fb:12:e5:b7:3e:
db:97:c4:bd:c1:ae:4c:d0:80:23:28:53:36:c0:10:
d3:16:b0:81:01:ec:07:33:0e:c8:2a:8b:68:40:33:
a1:f4:04:1e:37:ca:d0:e8:2a:eb:eb:5e:ab:29:db:
b6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C2:4E:56:74:F2:E1:D5:0B:01:FD:C9:F1:4E:B9:E4:F1:3A:74:FC
X509v3 Authority Key Identifier:
keyid:CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:6f:19:39:04:82:1f:71:e7:aa:1f:26:0d:89:56:12:0b:46:
56:a3:6b:dc:54:ab:37:a8:d5:0e:5a:b3:e3:6d:57:68:d8:f4:
a1:33:11:7c:bb:d6:b2:fe:09:84:d7:0c:35:b6:a2:ba:4f:b1:
45:1b:25:cd:ff:29:ad:f5:00:67:f7:6d:c9:7a:d3:09:b2:e7:
c5:e1:30:d5:0a:5a:16:b6:ed:69:1c:49:2b:d8:cb:5c:dd:8e:
3b:e9:12:6e:86:f3:5e:7e:1a:bc:a1:e4:17:25:98:17:c4:e5:
06:13:e9:72:b4:10:a7:6a:6b:07:11:4f:72:d7:f0:f5:a1:f3:
18:bf:f1:b6:26:87:51:9f:95:a3:af:d5:c8:ad:59:5f:d9:97:
1c:ce:5c:ea:ab:4d:7f:4f:12:99:6e:9d:c5:20:0b:b1:a4:61:
fb:1b:48:7b:cf:0c:5a:4a:60:91:22:d9:ce:d4:6f:f2:71:30:
41:18:df:97:e6:73:02:f6:ec:60:49:2d:57:81:d9:80:0e:e9:
40:db:3d:dc:16:0f:44:2a:22:a1:e2:a2:66:51:1c:75:27:41:
6a:79:b1:43:78:c6:2c:04:fd:37:98:41:3b:74:6d:3c:78:9f:
64:5c:60:34:5a:f8:f1:8d:0b:49:74:1f:29:83:17:df:94:8c:
0e:a7:af:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 16:05:20 2025 by rpki-client