Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
File: zUNP2FkiOudujXhkipNylejs15o.mft (raw, json)
Hash identifier: m0NlkXEp8kxvNLU9QncWnyCEc9+myZcQaira6lWKxMQ=
Subject key identifier: 53:21:C3:24:32:19:05:00:2E:3D:F7:F9:EC:A7:A3:60:5C:BA:C3:EF
Authority key identifier: CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
Certificate issuer: /CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Certificate serial: 0199FDDA3E540E52F5C4E85BA8962B37F531
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
Manifest number: 0690
Signing time: Sun 19 Oct 2025 19:02:42 +0000
Manifest this update: Sun 19 Oct 2025 19:02:42 +0000
Manifest next update: Mon 20 Oct 2025 19:02:42 +0000
Files and hashes: 1: R9FIW-YXitjJpX1Q3jcy6-oEIFI.roa (hash: UPbldeCj6tFYKOIutM8BR+cGGez6vIB0/3ZKKmpjUZo=)
2: zUNP2FkiOudujXhkipNylejs15o.crl (hash: vRZWmU9ha6WRP96kHVElovuI1x0PtJ2riLYdYmlx5XE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:3e:54:0e:52:f5:c4:e8:5b:a8:96:2b:37:f5:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Validity
Not Before: Oct 19 19:02:42 2025 GMT
Not After : Oct 20 19:02:42 2025 GMT
Subject: CN=5321c324321905002e3df7f9eca7a3605cbac3ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:10:d7:e0:39:a0:0f:7f:56:bf:a2:f6:d5:dc:
d3:bf:e0:9b:f3:ba:f1:29:d0:c6:50:e6:32:2e:7b:
e2:6e:14:2d:22:ff:2a:31:9b:03:2f:97:fb:9e:69:
da:df:a7:d8:ca:9e:b8:8c:c0:50:53:8a:fa:6a:77:
1d:4d:5a:d4:72:88:e0:28:5c:45:ab:ce:6d:1d:b1:
e9:d4:14:48:e7:75:37:2a:ef:97:25:34:33:bf:41:
72:9f:58:85:8f:18:83:77:17:f1:cf:82:86:43:20:
31:03:06:a8:12:f0:78:5c:2b:06:6c:39:ec:b0:e8:
ae:99:19:20:5f:36:a9:c0:59:92:f9:e0:82:2a:00:
a5:54:67:1b:3c:63:8c:ca:26:39:97:12:fd:0d:5d:
84:94:3c:56:25:e6:45:45:24:de:f5:f7:cf:6c:bf:
40:f1:e8:05:15:2c:40:3d:70:9f:a6:ef:5b:0b:a9:
de:86:4e:24:d2:97:6b:09:fc:50:22:a7:e3:3f:ff:
bb:17:f1:fa:50:1c:7c:9c:09:32:45:78:2d:2e:bf:
8b:67:95:8c:90:6e:8f:09:cb:ba:b9:4e:cf:c7:35:
ad:6e:5f:62:b0:93:68:25:40:a8:4c:60:7b:77:48:
a5:e7:d6:d4:91:f3:55:2c:d8:63:96:0d:98:cc:62:
4b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:21:C3:24:32:19:05:00:2E:3D:F7:F9:EC:A7:A3:60:5C:BA:C3:EF
X509v3 Authority Key Identifier:
keyid:CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:e1:ed:c1:14:a2:b1:cc:48:48:db:fd:15:5f:71:c7:74:8a:
ac:b9:0d:56:6f:f2:e2:82:d2:db:60:85:aa:ed:c1:88:3c:d4:
78:3c:15:10:51:56:ba:94:c6:e3:75:aa:f3:66:b2:be:e8:dc:
50:15:6c:62:43:cb:17:3a:c3:c7:8b:6b:c4:3d:6c:04:e8:78:
a5:70:48:1a:db:f2:75:a6:38:ab:15:26:5b:fb:2c:c7:4c:60:
26:05:c6:18:df:d3:4c:70:c4:cd:71:e2:96:dd:00:3d:10:f6:
6d:a3:e1:a3:0e:58:ce:23:d8:ae:83:1d:7e:f2:0e:43:71:cc:
21:fe:4f:84:b9:f4:34:02:38:21:a8:5f:73:8b:21:8e:50:e2:
46:5e:4f:ca:ad:f9:d1:e9:67:a1:5d:b3:2e:cd:6c:84:d2:53:
9a:ee:c4:a2:bb:dd:1a:a9:8d:aa:d5:d5:5d:9f:e3:f5:a3:20:
cb:9f:73:51:9c:61:f9:9e:fc:0d:39:a9:d8:6d:7a:99:2c:32:
da:9d:b8:e7:56:63:3e:60:a4:50:02:a0:b8:43:22:6d:9c:e1:
85:8e:03:cb:88:46:db:ba:c3:c5:36:44:a5:4f:91:fc:2e:8e:
95:3a:35:1a:a5:5f:68:77:f3:92:73:b2:f9:eb:df:17:3a:95:
61:c3:b8:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:05:51 2025 by rpki-client