Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
File: zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft (raw, json)
Hash identifier: H5BbooNJ9ZsNfsYqbd5iqnJ+03P6mxipC2+xbcXgxY4=
Subject key identifier: 0F:64:A1:EA:33:6D:89:52:60:2D:62:F7:9B:2C:A6:25:ED:F3:2A:A2
Authority key identifier: CD:86:B8:CE:22:24:82:A1:4F:9B:13:46:8C:E5:7E:99:92:68:49:61
Certificate issuer: /CN=cd86b8ce222482a14f9b13468ce57e9992684961
Certificate serial: 0199FE7DE7CE891FC2CF14D2D03155F8EBFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
Manifest number: 06B8
Signing time: Sun 19 Oct 2025 22:01:28 +0000
Manifest this update: Sun 19 Oct 2025 22:01:28 +0000
Manifest next update: Mon 20 Oct 2025 22:01:28 +0000
Files and hashes: 1: DQHOKV8IKLhzD_DKbK2yKJLy3qI.roa (hash: PB4sy0lCqmdf8gfZUrxsVqDoVfWeVXqM8PmI2EwyuMw=)
2: zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl (hash: YXaOrVvUKmLW12kR6cnYMeIfzOuAy1rtp52PW+cnyUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7d:e7:ce:89:1f:c2:cf:14:d2:d0:31:55:f8:eb:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd86b8ce222482a14f9b13468ce57e9992684961
Validity
Not Before: Oct 19 22:01:28 2025 GMT
Not After : Oct 20 22:01:28 2025 GMT
Subject: CN=0f64a1ea336d8952602d62f79b2ca625edf32aa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:37:76:9a:d8:9f:62:c0:17:3b:eb:bb:a1:6e:
70:5d:79:c2:05:dc:ed:a4:e5:9a:a9:0c:e8:52:7d:
e2:8c:5d:98:42:18:c2:20:0b:90:ae:ad:6a:31:b9:
7c:08:26:74:d8:28:36:e1:e3:0a:1b:c5:d7:87:7a:
28:99:75:2d:04:85:31:2a:2a:af:51:cb:34:e0:08:
bd:2d:de:0b:6c:88:e8:4d:6e:75:65:f8:73:09:d7:
ba:40:25:1c:55:40:b9:3d:48:4a:06:f9:ba:d2:5c:
d2:0a:75:ff:57:38:09:cb:ee:d3:78:68:40:2e:79:
28:dc:f4:43:c2:cf:e7:72:bd:73:29:2d:bf:f1:9a:
78:0d:05:15:83:fc:9e:c5:86:fc:52:7a:4e:21:95:
11:99:7b:a0:fb:2b:65:9d:41:75:e2:b3:9a:5b:98:
38:6a:7f:bb:b0:0e:41:c8:19:27:ab:ee:97:23:30:
c1:da:8a:5f:b3:78:d3:62:a2:6f:76:ea:49:d3:e7:
f0:db:f3:26:ee:71:ff:a6:19:d3:fb:48:1c:6c:77:
ee:cf:76:ef:f7:d7:36:b8:21:f9:83:9b:d5:7d:7e:
31:33:5b:be:25:0f:1b:27:e3:c1:29:53:d5:59:fd:
28:fd:e5:af:c8:7b:1c:5a:49:de:4a:d7:db:3d:3f:
be:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:64:A1:EA:33:6D:89:52:60:2D:62:F7:9B:2C:A6:25:ED:F3:2A:A2
X509v3 Authority Key Identifier:
keyid:CD:86:B8:CE:22:24:82:A1:4F:9B:13:46:8C:E5:7E:99:92:68:49:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:8a:d5:55:5a:5f:2c:d9:4b:b6:c8:ba:8e:b5:79:ed:7d:c2:
db:3e:e5:fe:6e:53:8c:ca:ab:83:93:e5:11:b7:49:38:27:e6:
5b:32:32:9b:bc:0a:0e:60:c8:0a:1f:0c:b4:b2:a4:bd:a0:45:
71:c5:8f:ed:3b:fb:fa:66:dc:ed:73:8d:55:7d:5f:0e:9a:6e:
1c:60:fb:a1:46:42:f4:c3:15:3c:0a:34:a8:ad:f2:7a:ee:ac:
ba:19:83:6c:58:58:55:cd:7c:1b:dd:11:2f:44:3e:77:1e:47:
5a:c1:d1:5d:c0:20:28:16:ef:eb:6d:2b:73:db:b6:88:33:7c:
09:8d:c3:f5:25:62:35:64:9b:86:0d:92:98:98:cb:88:fa:03:
e3:00:92:dc:d5:bb:f4:64:02:b2:0f:da:aa:f1:67:f2:ef:8d:
75:16:83:04:5b:28:03:3e:a5:d0:49:f0:2f:30:b2:c1:77:d6:
85:9a:a2:05:c5:b0:ad:8d:40:cd:dd:6f:12:d9:53:fb:40:51:
d6:c1:e9:cf:95:1e:d3:b0:e2:ca:ba:cd:c4:1b:b3:49:4e:82:
1b:8f:3f:98:d5:ae:fb:bc:23:f4:e1:d3:0b:1f:cc:47:a9:c4:
2c:47:f9:ee:9c:39:3a:1b:9d:54:4a:88:91:27:86:6b:5e:48:
29:dc:bb:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:01:24 2025 by rpki-client