Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
File: zCdbIX3x3piMohkqg64R3fQjpE8.mft (raw, json)
Hash identifier: u8oVIlK9JsjdgnhidI96KDkNdJxpl2UNhge0i14fsuU=
Subject key identifier: 1D:79:54:EA:DE:1E:16:3A:50:99:49:25:07:A1:85:D6:08:A9:5D:63
Authority key identifier: CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
Certificate issuer: /CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Certificate serial: 0199FB7CBD96149C3C241FD65971C029F70B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
Manifest number: 0B99
Signing time: Sun 19 Oct 2025 08:01:20 +0000
Manifest this update: Sun 19 Oct 2025 08:01:20 +0000
Manifest next update: Mon 20 Oct 2025 08:01:20 +0000
Files and hashes: 1: Nr1R18FVhyzjXhL2YKl54Kz1CcM.roa (hash: Ka3gajN2kG5bn7od03MC2i4kFc5aTTook8osIu09I1U=)
2: zCdbIX3x3piMohkqg64R3fQjpE8.crl (hash: 35TG42+sWZ4oknZsTCWkb6xSvbxQxBBjU7ibuVLY80o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:bd:96:14:9c:3c:24:1f:d6:59:71:c0:29:f7:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Validity
Not Before: Oct 19 08:01:20 2025 GMT
Not After : Oct 20 08:01:20 2025 GMT
Subject: CN=1d7954eade1e163a5099492507a185d608a95d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:84:cd:de:64:fb:a1:9e:dc:02:d1:4e:16:35:
30:fe:3b:dd:a5:b7:fb:2f:27:8d:d3:bd:c2:c2:e8:
ab:84:57:94:30:61:16:3d:5c:a4:33:1c:22:f4:c4:
7f:c5:ec:d5:2d:50:e1:b4:10:f8:64:4c:63:27:62:
10:3d:a4:b9:05:84:a7:a3:a5:3d:df:b8:15:cd:55:
bf:d3:0b:36:ae:a0:f7:90:b3:c0:61:b2:61:6c:ae:
a1:2b:08:3a:0c:d4:66:b4:60:84:05:a5:08:8c:96:
07:10:10:ae:ab:bf:ac:a2:09:b2:81:b4:71:95:ec:
c5:a5:75:84:41:bd:a2:93:aa:24:90:a4:4f:b9:e9:
34:dc:e3:06:11:b5:78:fe:85:a2:d1:d5:22:b2:56:
04:1b:ad:59:19:af:ad:19:7e:fd:0a:9b:88:0a:16:
18:2f:b8:5b:86:21:cb:71:e0:b9:19:c5:66:1e:ea:
8b:19:dd:42:95:ac:b4:dc:d1:03:29:89:2c:5d:87:
07:4b:de:1c:84:ff:59:84:85:41:10:63:22:a3:19:
e1:10:0b:17:2e:79:27:93:8e:93:34:ca:51:e8:5f:
33:cd:d9:8c:a0:ab:4e:81:5b:37:29:2e:65:19:18:
7b:f5:d3:45:84:be:c3:81:46:35:dd:c4:8f:3d:d4:
1d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:79:54:EA:DE:1E:16:3A:50:99:49:25:07:A1:85:D6:08:A9:5D:63
X509v3 Authority Key Identifier:
keyid:CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:2c:50:39:1d:c3:1d:f0:b3:92:7f:71:7d:87:39:31:c2:69:
8c:60:56:d9:78:49:82:4a:bf:92:28:d4:e6:04:c7:fb:e0:79:
d0:32:d7:83:a1:59:a8:a5:38:eb:c7:5a:8d:f3:9d:94:f6:22:
cc:4a:25:e5:67:37:91:89:a2:91:72:0d:41:a4:0b:bc:19:81:
bc:cc:5e:f4:66:82:cc:32:6f:24:c0:fc:c1:75:6a:e1:0b:01:
cc:79:ab:99:ea:90:dc:b8:1d:53:50:c0:08:0b:13:2a:7e:b1:
a9:1f:af:47:8e:33:7e:a8:da:78:29:9f:50:5e:e1:7c:7b:cf:
50:2d:1c:d7:90:3e:86:4d:ce:77:80:d5:d1:2c:30:3f:0b:5e:
3b:12:e0:03:7c:e2:7d:ac:4f:c3:c8:d9:ac:50:5b:b4:93:f8:
f8:00:5c:44:00:a1:4a:f3:9d:4b:96:23:97:dc:67:f5:d1:64:
32:80:5f:44:ee:91:a0:1a:c8:f5:8e:83:e2:e7:e0:bd:3f:ca:
0c:fc:cc:dc:2a:37:16:4a:a6:36:76:f7:58:f5:30:81:fd:fe:
ce:46:8a:fb:05:ef:cc:4c:81:7e:d5:f2:07:0e:83:61:5c:ee:
b2:e9:7c:ff:e1:21:1e:4e:c4:4e:21:9b:57:38:9b:61:96:2b:
3a:c6:bf:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:08 2025 by rpki-client