
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
File: ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft (raw, json)
Hash identifier: 93Nb8oy1jcbd/1vV2cQN2OxhROKrmeQKPvw5UZUYZ4g=
Subject key identifier: 79:99:CF:6A:7A:7A:85:CB:F6:4D:A1:41:4A:3E:E1:38:8D:10:6F:8F
Authority key identifier: 64:EF:98:AD:BF:42:D5:BA:CD:24:CA:DB:0A:DF:09:2C:45:76:DA:F3
Certificate issuer: /CN=64ef98adbf42d5bacd24cadb0adf092c4576daf3
Certificate serial: 0199FC21A99D0E33D10ACBD3CB7F168B5C13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZO-Yrb9C1brNJMrbCt8JLEV22vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
Manifest number: 16E9
Signing time: Sun 19 Oct 2025 11:01:28 +0000
Manifest this update: Sun 19 Oct 2025 11:01:28 +0000
Manifest next update: Mon 20 Oct 2025 11:01:28 +0000
Files and hashes: 1: O6yhVl-p8zPN_CcTQWHTkGKQoq0.roa (hash: HphO2Xf8amyd/7vc+hBrhD7m5RPblIsLscX8rs+h9y4=)
2: ZO-Yrb9C1brNJMrbCt8JLEV22vM.crl (hash: 3hPfP5aQSxeYGqsqRU4qzgOzsHzuoXgTaanJs6mUrvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZO-Yrb9C1brNJMrbCt8JLEV22vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:a9:9d:0e:33:d1:0a:cb:d3:cb:7f:16:8b:5c:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64ef98adbf42d5bacd24cadb0adf092c4576daf3
Validity
Not Before: Oct 19 11:01:28 2025 GMT
Not After : Oct 20 11:01:28 2025 GMT
Subject: CN=7999cf6a7a7a85cbf64da1414a3ee1388d106f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c9:f8:f0:99:ce:4e:d6:e9:c8:85:bb:dc:6a:
5a:54:d0:fe:fb:d3:cd:5d:a6:77:37:ca:a1:57:31:
85:89:1c:68:a2:59:a8:2a:c9:c0:e3:af:40:78:1a:
fb:2c:af:69:4e:85:8a:ac:6a:a9:9c:00:35:4a:ef:
80:bf:94:dd:40:99:16:99:1f:9f:fe:53:5f:03:22:
06:13:d6:89:fe:14:c4:e4:d3:3e:d1:0c:d3:00:d0:
9e:a7:fd:b1:d9:57:fb:24:ee:25:b0:1e:a1:c2:5c:
fd:60:7c:e0:fd:f8:6d:aa:92:c9:2c:6c:25:9a:d8:
42:cd:24:52:cb:7b:34:ad:69:5f:d3:eb:65:b3:77:
65:ed:7f:a5:1a:59:91:0f:92:27:1b:76:fc:52:6d:
1e:50:37:a7:32:ab:4a:be:6e:1d:ee:a2:b7:eb:ab:
df:89:b5:ad:78:62:6e:a3:f8:9b:50:b5:6e:cc:43:
38:fe:cc:cd:9a:b9:26:7a:16:15:5a:68:03:72:34:
ed:db:b6:8e:bd:30:4a:2b:6c:7d:1e:98:5c:9e:0b:
36:95:da:f4:a8:8b:7b:83:b9:cb:03:f9:32:08:cc:
d0:34:db:ec:90:f9:74:8a:27:c1:ee:d4:59:e0:09:
4e:a1:ed:fa:11:2d:bb:1b:e9:f6:96:cb:41:8d:a5:
7e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:99:CF:6A:7A:7A:85:CB:F6:4D:A1:41:4A:3E:E1:38:8D:10:6F:8F
X509v3 Authority Key Identifier:
keyid:64:EF:98:AD:BF:42:D5:BA:CD:24:CA:DB:0A:DF:09:2C:45:76:DA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZO-Yrb9C1brNJMrbCt8JLEV22vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:e7:91:1b:a3:7c:16:da:85:25:60:cd:42:d8:0c:54:4f:a8:
b4:9e:f5:17:ca:d3:92:d8:9e:47:02:a1:5e:d8:0f:84:51:ac:
e9:7d:4e:bb:89:fe:50:48:61:ed:cb:34:14:23:05:74:f6:ab:
21:15:f2:db:42:1a:76:d9:54:ca:82:14:0a:ea:86:66:cd:e0:
ca:fb:91:e6:61:66:62:a9:de:de:0a:08:ec:e5:25:a6:7f:f5:
7b:c8:05:a6:85:95:5a:40:09:83:74:01:4d:30:47:56:71:21:
05:c1:4a:b5:e0:3a:12:7d:54:5e:e7:66:93:72:92:56:df:6a:
06:26:56:a2:3a:be:6e:52:e7:b2:2a:c2:ff:6d:04:9b:67:0f:
59:cc:d3:54:c3:8d:ad:9e:bf:6f:d9:ba:9d:49:ff:8c:17:1b:
af:50:4f:94:26:44:d5:f3:d9:7c:f2:ea:87:8b:b1:44:df:79:
3b:99:bc:ee:ad:72:f4:51:62:16:36:50:23:8f:6f:4d:3d:75:
36:6d:f2:10:93:e1:23:7c:47:50:17:9b:e4:cf:4f:21:4f:a9:
ee:99:aa:31:9d:6a:11:be:67:cb:b5:14:c7:50:f3:5c:33:ce:
b4:bd:4d:ad:51:1a:23:a8:ea:77:9d:b5:79:fc:31:a2:1f:4a:
07:fd:cd:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:14:43 2025 by rpki-client