Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.mft
File: ZAD5U62_21K3iBX-z8DozeCXYsM.mft (raw, json)
Hash identifier: N+/oAXFIAJnl/sX3alOQtVpo1mZZ5nmNfPlhKJCAG0U=
Subject key identifier: E4:0C:B3:0D:44:F6:DB:6E:11:5E:DE:0B:ED:BF:DE:3A:27:CA:50:90
Authority key identifier: 64:00:F9:53:AD:BF:DB:52:B7:88:15:FE:CF:C0:E8:CD:E0:97:62:C3
Certificate issuer: /CN=6400f953adbfdb52b78815fecfc0e8cde09762c3
Certificate serial: 0199FBEBB6F238CAF251507360479DF12E1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAD5U62_21K3iBX-z8DozeCXYsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.mft
Manifest number: 11D1
Signing time: Sun 19 Oct 2025 10:02:32 +0000
Manifest this update: Sun 19 Oct 2025 10:02:32 +0000
Manifest next update: Mon 20 Oct 2025 10:02:32 +0000
Files and hashes: 1: ZAD5U62_21K3iBX-z8DozeCXYsM.crl (hash: dCH22xjjisw03bdhG+BZZsIjbKerN6NgEzj79xWXnP0=)
2: v8jGZZ2sPrkxPTZ3eZtK4NYbA6E.roa (hash: 0l4hT05AEA8nsr6nY5F6IkEiZ/ck5kp606jyOTBkkrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAD5U62_21K3iBX-z8DozeCXYsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:b6:f2:38:ca:f2:51:50:73:60:47:9d:f1:2e:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6400f953adbfdb52b78815fecfc0e8cde09762c3
Validity
Not Before: Oct 19 10:02:32 2025 GMT
Not After : Oct 20 10:02:32 2025 GMT
Subject: CN=e40cb30d44f6db6e115ede0bedbfde3a27ca5090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:db:bb:16:c9:42:f0:b6:1c:2a:57:74:0e:e0:
ab:fd:70:cc:1c:91:73:44:fc:ee:f3:01:62:b0:59:
03:13:e0:58:f0:fb:de:91:90:c4:48:8a:ca:a4:5a:
cf:a1:dc:21:2b:20:ee:00:54:13:ed:9c:5a:36:d8:
79:65:e6:ea:82:1a:56:18:5c:4c:5e:41:6a:3a:4e:
e4:60:41:b2:84:eb:20:41:8f:7c:c1:80:61:cb:58:
c2:d7:ba:a9:a1:20:25:89:b9:18:84:fd:ec:47:ff:
20:ec:80:89:12:03:f6:4e:1e:d9:2b:89:60:8a:c8:
8a:ea:79:b3:aa:ca:1e:59:ec:5e:42:61:69:10:c1:
cf:ad:26:20:82:8b:d7:74:c0:47:32:88:ce:97:6f:
b9:c2:80:d7:de:69:89:92:c0:1e:c2:47:ed:35:9e:
3d:5c:f4:ec:cf:ba:12:57:5a:d4:41:d4:32:af:5b:
0b:3c:0d:ca:d8:b4:98:a2:2f:da:3d:7c:82:df:6d:
56:c7:7b:b8:92:53:75:85:ef:73:fa:c5:ec:11:3d:
0b:6c:59:9e:8e:77:39:01:eb:30:c4:e4:3b:a9:f3:
84:86:21:10:7d:1d:b2:a8:cc:ee:db:5e:1a:9c:87:
3f:e2:b9:12:33:d3:83:87:bd:0f:83:f8:7d:ae:f6:
22:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:0C:B3:0D:44:F6:DB:6E:11:5E:DE:0B:ED:BF:DE:3A:27:CA:50:90
X509v3 Authority Key Identifier:
keyid:64:00:F9:53:AD:BF:DB:52:B7:88:15:FE:CF:C0:E8:CD:E0:97:62:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAD5U62_21K3iBX-z8DozeCXYsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:08:74:d3:e4:40:27:f9:b3:f7:95:da:3e:65:bd:4d:1b:18:
d0:c8:f2:18:a3:c9:78:a9:19:4b:bf:b7:7c:be:aa:dc:19:69:
4b:56:18:2a:fb:5e:4e:a7:3b:df:6b:53:a5:11:b7:f1:fc:63:
41:4f:21:e7:10:41:e4:1f:a8:db:a1:dd:dc:a7:f4:3a:dc:7b:
c3:59:ca:6c:20:b4:40:12:ac:89:57:75:27:0c:69:29:78:f4:
4e:d4:be:d4:00:da:36:6f:40:ab:60:24:ac:48:d1:7e:d4:8e:
a9:23:b6:d0:ad:46:89:57:fa:65:4e:0d:cc:72:fc:0a:3b:53:
d3:f1:f7:78:cc:07:e0:1a:11:c5:53:91:47:7c:84:53:a2:46:
72:0b:d2:54:c3:65:8f:a1:ab:0f:c3:a5:ef:49:c0:76:b1:4b:
19:8b:62:4b:fc:5a:e0:c7:c4:0c:d8:c9:e9:98:54:55:4b:e1:
c3:25:2f:8b:de:e2:56:cb:e4:eb:c2:b6:ca:c7:29:c3:d6:64:
88:c7:7c:47:95:bb:fb:e8:de:ce:d8:42:83:b5:c7:ff:c4:72:
88:04:32:c7:f1:92:d6:a9:39:9a:97:fa:48:a5:32:fd:b1:01:
95:83:a9:08:c6:1e:f3:0e:73:37:74:17:fc:14:c1:61:b7:0a:
10:3b:38:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:29:58 2025 by rpki-client