Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
File: z173qHDUsUjrHU9P5mbtUFSt6uw.mft (raw, json)
Hash identifier: b5/gt7skCXHYo665rmvai6ozKK3X8vgtFJ/MImeqv9Q=
Subject key identifier: 02:09:22:71:88:B2:3D:C9:2A:F2:36:EF:8F:78:F5:80:12:B6:2A:C2
Authority key identifier: CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC
Certificate issuer: /CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec
Certificate serial: 0199FC58D755B6DB7E12F89F1A11D4890824
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
Manifest number: 0E58
Signing time: Sun 19 Oct 2025 12:01:44 +0000
Manifest this update: Sun 19 Oct 2025 12:01:44 +0000
Manifest next update: Mon 20 Oct 2025 12:01:44 +0000
Files and hashes: 1: IG4gE3aIFq9mnBnmOmJWzHSGMI8.roa (hash: NFuQufrafEIV/iOKny+LtVRYLA0EJDhZvV8121UO+Jg=)
2: eR5EevbZ-cAP0rVdhXMRAu6R2DU.roa (hash: MFuL2PsX4eqPDfqD1XxiSAvnb9qnnDDl40Z3XSXhTPs=)
3: z173qHDUsUjrHU9P5mbtUFSt6uw.crl (hash: AtesKvGJT4G8jNjdtIF4bhtX6Tq44Twhl9iV2laeQ+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:d7:55:b6:db:7e:12:f8:9f:1a:11:d4:89:08:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec
Validity
Not Before: Oct 19 12:01:44 2025 GMT
Not After : Oct 20 12:01:44 2025 GMT
Subject: CN=0209227188b23dc92af236ef8f78f58012b62ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:02:7a:70:28:00:df:87:ac:6a:c4:f5:e6:2d:
2e:c6:e1:8d:ee:52:97:e9:97:3e:03:f7:86:d5:b1:
c7:df:bd:17:2c:5e:0d:df:00:d8:fb:13:42:91:12:
59:00:96:a9:2b:12:9a:8d:06:3d:3f:d5:2d:8e:d0:
cd:42:a1:fc:d2:92:7d:98:f3:b1:13:7b:ca:0b:92:
88:74:12:80:94:09:0b:e4:c5:72:e9:84:84:ed:5a:
1f:48:d0:6b:0f:6e:79:ff:ac:f5:22:47:d3:b6:12:
c3:bf:e9:aa:55:1a:85:14:31:0b:39:40:56:57:63:
57:db:6c:88:90:2b:6c:a1:7f:ac:f0:45:b0:31:59:
f8:4a:b7:b7:29:bc:0d:35:f4:de:10:02:a7:b9:6c:
69:44:01:ee:d0:b0:31:05:10:e8:db:4f:bd:8a:c0:
cb:e2:db:97:92:f9:b1:bb:f6:6d:6a:be:6d:61:78:
5a:98:8f:58:73:3e:54:27:64:88:5e:87:26:02:b2:
2f:fa:fd:e9:4d:e2:3b:31:39:a6:84:dc:a6:60:be:
3a:20:a8:c3:44:9e:77:df:83:8e:c2:8c:de:c2:be:
ab:d5:13:7a:ef:4f:60:aa:a4:fb:1f:04:20:11:53:
78:7c:4a:d3:ed:94:6f:83:29:bb:74:ee:3c:6d:af:
37:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:09:22:71:88:B2:3D:C9:2A:F2:36:EF:8F:78:F5:80:12:B6:2A:C2
X509v3 Authority Key Identifier:
keyid:CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:4e:49:52:bb:38:56:9c:4d:0f:4e:39:02:ca:8f:9d:5c:ac:
0a:11:d5:a2:d5:7d:c0:6f:95:53:ae:11:09:a9:06:43:76:a8:
17:0b:21:74:f5:c5:5a:ba:ff:ec:b7:ab:82:66:2e:67:19:8f:
76:7c:23:69:42:38:32:f1:7e:73:62:ec:8e:8d:c5:25:58:9b:
1d:93:80:9d:ff:d6:0a:74:75:9a:fb:82:74:73:5e:f4:4e:87:
34:a1:ad:f7:f6:b9:be:69:f2:48:0b:31:4f:02:11:e2:f0:33:
05:91:80:76:8f:43:c7:7c:d1:47:ee:23:51:ac:e6:94:ed:3b:
3b:92:eb:9b:2f:31:44:47:22:5b:a3:21:be:da:84:fe:9a:c4:
67:3c:c4:e0:f3:18:e4:fd:54:dc:a4:69:2d:d3:ef:74:1d:6f:
6c:a0:63:68:b5:7f:59:3a:b0:cf:3b:da:78:c4:c4:18:e6:a7:
4f:e0:ad:b5:89:05:98:2c:e6:8c:ee:4e:77:3f:67:9d:45:f9:
1a:71:2a:cc:dd:a3:3f:3b:bd:72:1b:ca:80:0a:a3:bb:c5:f3:
87:14:26:84:2a:eb:d7:bb:b5:6e:b6:1d:cd:a9:2e:bf:74:00:
87:c7:1f:53:8f:2b:7a:cf:1b:6a:5b:9b:25:10:1c:25:56:a7:
6e:8f:1d:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:34:23 2025 by rpki-client