
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
File: znQefeZX5KEPk8qSxReoGywLJR4.mft (raw, json)
Hash identifier: AJqkTzY5l1EjXl44xl8aLxgKkjcCZXjWeoCjaAtlHsU=
Subject key identifier: 20:92:6A:9C:C5:9B:00:A0:80:5F:88:FE:F0:27:92:9B:51:75:85:13
Authority key identifier: CE:74:1E:7D:E6:57:E4:A1:0F:93:CA:92:C5:17:A8:1B:2C:0B:25:1E
Certificate issuer: /CN=ce741e7de657e4a10f93ca92c517a81b2c0b251e
Certificate serial: 0199FC8F904A1796F3D9EA29E19AB919D76C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
Manifest number: 0CD6
Signing time: Sun 19 Oct 2025 13:01:30 +0000
Manifest this update: Sun 19 Oct 2025 13:01:30 +0000
Manifest next update: Mon 20 Oct 2025 13:01:30 +0000
Files and hashes: 1: ZIl-tGPYsmILe8aUvhHfFRisBTg.roa (hash: ELX+nfW5VdhOFYsiqhpPo4rEHXv1DoXfvUrKNYNv+iU=)
2: znQefeZX5KEPk8qSxReoGywLJR4.crl (hash: kYuMyt2QcmtHePyC/FkR/iT+A/KauPh1ETlUuy8Dmx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:90:4a:17:96:f3:d9:ea:29:e1:9a:b9:19:d7:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce741e7de657e4a10f93ca92c517a81b2c0b251e
Validity
Not Before: Oct 19 13:01:30 2025 GMT
Not After : Oct 20 13:01:30 2025 GMT
Subject: CN=20926a9cc59b00a0805f88fef027929b51758513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ca:73:ed:2d:00:05:ed:0e:fa:a4:b7:8e:23:
51:8b:ef:7c:80:50:7f:22:07:55:d4:e1:ef:b3:20:
09:df:af:46:92:b2:b7:b4:81:8f:ec:cf:0c:01:b9:
c5:c1:59:d9:c3:3b:74:12:56:34:78:c5:d5:f7:02:
07:ff:26:cf:48:8d:ac:b3:e6:66:6d:23:1f:4a:f9:
49:d6:1c:fe:ac:11:02:a9:f6:49:c3:68:82:ba:42:
6d:3f:09:31:c0:eb:62:75:14:ca:35:fd:f1:94:d6:
a9:61:ac:7d:4f:0a:3c:cb:32:60:3c:f8:8b:e3:b9:
d9:d6:b3:f3:86:63:cc:2c:8e:7c:9c:9c:5e:b0:35:
c4:7c:35:1c:1b:22:17:93:2d:10:5e:0a:37:cb:60:
eb:49:c2:17:df:3e:e8:fc:d4:dc:ef:ba:9b:ec:83:
4a:61:2e:30:f6:f6:0a:2b:bc:15:e0:a7:ea:10:0a:
2a:f0:cc:e0:a0:4a:72:45:16:fa:7b:82:61:0a:a5:
fa:7a:cf:da:71:36:38:ee:55:e1:d4:8a:ba:7d:c5:
c6:9e:36:bd:48:be:e7:9a:4e:10:10:20:ea:25:e6:
4d:01:8d:29:0a:a0:be:7f:83:44:09:e4:44:bc:0c:
2e:42:68:ae:fc:c6:df:81:9c:2c:97:81:ee:7f:72:
59:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:92:6A:9C:C5:9B:00:A0:80:5F:88:FE:F0:27:92:9B:51:75:85:13
X509v3 Authority Key Identifier:
keyid:CE:74:1E:7D:E6:57:E4:A1:0F:93:CA:92:C5:17:A8:1B:2C:0B:25:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:dd:51:76:23:75:b3:4e:31:d1:88:83:c6:79:b8:50:47:87:
50:32:6a:dc:8a:f6:87:b7:dd:b4:89:72:46:05:62:43:1c:3c:
08:06:4d:e6:f5:01:3d:c6:b6:41:cc:63:6f:df:70:11:b0:c9:
30:dc:2c:89:ea:fd:f0:8a:7c:86:10:78:9c:28:95:70:8c:e1:
c8:25:b0:f7:9b:65:0a:09:f2:f3:b9:54:94:3c:97:21:b8:7b:
63:4b:10:d4:61:d8:b1:de:92:98:f7:e5:56:28:50:7d:ca:76:
63:e9:5a:53:b0:70:5c:b1:b2:3d:f9:68:11:1d:38:2c:5a:c9:
00:35:19:65:c9:8b:f7:cf:35:f8:4a:10:c8:f8:78:e1:7b:45:
0e:36:9f:76:38:b9:3c:5d:8a:51:1e:d2:26:1f:4c:93:95:82:
8d:d3:85:36:cb:66:9a:2c:b1:f9:ef:2f:f0:c6:91:06:72:b9:
d5:d9:6a:dc:ec:81:e6:d4:2a:2a:87:6a:cb:80:81:6c:57:a5:
30:f1:d1:ed:ae:32:91:0f:d3:fc:11:3b:ea:d5:c3:11:71:aa:
c4:54:e7:d0:80:e8:e0:e7:53:fc:ef:e3:c4:53:6c:aa:0e:bb:
1f:14:4c:1d:28:b3:9a:b9:0c:d7:27:c0:cb:e4:9e:f9:1d:07:
61:80:42:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:45:19 2025 by rpki-client