Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
File: 0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft (raw, json)
Hash identifier: 8gFDo5HWtWT5pI7BuGPmn6LijBqWHZRZ1vUTU2x3uhU=
Subject key identifier: E0:65:55:C2:C9:4E:19:DC:B4:D7:95:23:E7:33:B8:B8:20:9E:27:B4
Authority key identifier: D1:99:3F:78:CA:E4:45:9A:9B:9E:26:89:AD:30:F0:BC:44:CC:67:24
Certificate issuer: /CN=d1993f78cae4459a9b9e2689ad30f0bc44cc6724
Certificate serial: 0199FBEC07EE950DA5703C73EBA4E76DF999
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
Manifest number: 0436
Signing time: Sun 19 Oct 2025 10:02:53 +0000
Manifest this update: Sun 19 Oct 2025 10:02:53 +0000
Manifest next update: Mon 20 Oct 2025 10:02:53 +0000
Files and hashes: 1: 0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl (hash: UvGwS/0XZ5qo8+YkwlDlA3kV8xiSqoAxV+ARF1gACUo=)
2: 5KVSG33DPZC1TKz5q9NlgQSJY8U.roa (hash: GwSKpHIjNmK499qIKezXAfYrejsXUCWzE4VXptKGrTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:07:ee:95:0d:a5:70:3c:73:eb:a4:e7:6d:f9:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1993f78cae4459a9b9e2689ad30f0bc44cc6724
Validity
Not Before: Oct 19 10:02:53 2025 GMT
Not After : Oct 20 10:02:53 2025 GMT
Subject: CN=e06555c2c94e19dcb4d79523e733b8b8209e27b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:97:e0:0b:01:70:2d:33:f2:05:2c:f9:9d:64:
44:81:06:36:f6:9c:51:40:3b:58:1e:0e:42:ac:7f:
3e:eb:d6:38:55:f9:bb:64:87:fb:77:10:97:94:c2:
0c:55:c3:4c:9b:fd:9b:3c:d5:9f:79:ea:97:f8:87:
37:b2:a6:d5:5b:94:51:39:5a:53:e8:b3:2d:09:48:
61:d7:0a:d4:eb:9c:1a:c5:ca:00:e6:20:95:ab:aa:
a2:c6:fc:bf:bc:ec:d3:44:0d:b9:d4:58:07:ad:db:
fa:46:6b:34:37:c0:32:5f:c4:d4:f8:72:ce:c0:7e:
10:15:78:b2:66:e9:c7:72:44:b3:c3:9d:b2:43:e7:
3d:6d:98:11:e8:e0:7c:5a:b9:4b:8e:61:7f:14:a5:
fe:4d:79:c0:97:f9:d7:9e:95:e1:ad:43:0f:ec:9b:
62:7f:5d:da:d4:8e:8e:bc:17:04:82:7f:21:59:bf:
6d:8e:ce:1a:98:7d:26:04:a7:11:4a:8c:ee:ee:d8:
fd:ec:ab:11:b0:1a:95:3e:85:42:c5:b9:b0:c1:1a:
f5:68:d2:73:c5:6e:56:33:c5:2f:14:08:65:4a:95:
2e:28:b0:0d:6c:a3:ae:24:3b:72:b3:dc:d9:92:2f:
c6:ff:f3:3d:ec:c0:fc:33:07:76:8c:fe:ef:fe:73:
9d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:65:55:C2:C9:4E:19:DC:B4:D7:95:23:E7:33:B8:B8:20:9E:27:B4
X509v3 Authority Key Identifier:
keyid:D1:99:3F:78:CA:E4:45:9A:9B:9E:26:89:AD:30:F0:BC:44:CC:67:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:45:2d:06:19:ad:3d:0a:bf:9a:93:18:8f:08:75:ce:2a:e0:
40:c8:ff:af:6a:07:db:db:ed:ce:9f:32:d9:79:e6:c3:a5:5a:
96:8f:59:bf:2e:a2:48:9a:30:b9:4a:e2:18:5d:fd:e2:b6:5c:
8c:d2:d8:a8:bf:0a:57:2d:f1:bf:a3:7b:1b:79:7f:5d:1f:ba:
7f:53:13:a4:f8:0f:36:f5:ae:a8:41:b1:c8:11:e6:66:33:fe:
46:19:a0:cd:98:42:db:e5:fb:d2:0c:75:df:1e:98:c2:42:81:
7c:5c:4b:87:84:1c:aa:46:65:6e:a1:eb:39:f5:98:c1:a3:8c:
dd:96:1b:d2:d2:26:5c:a8:ab:fa:14:15:0a:9f:11:c0:31:c8:
d7:c6:e8:92:e5:d5:d3:2e:74:fe:c7:f1:86:da:6c:bb:59:f2:
3b:75:22:59:3d:07:88:38:45:4f:9e:31:6c:26:9d:2e:10:90:
fd:97:80:75:58:e7:cd:cb:fb:51:21:e0:5e:39:84:54:da:a2:
b4:2c:e7:c0:32:a3:2a:b3:99:55:73:68:ab:ca:6b:da:b9:b7:
2b:84:8f:76:48:7e:ae:9d:5b:df:69:a5:3b:c4:4d:69:33:43:
80:27:ff:59:d5:54:37:4a:a6:ab:6b:fb:39:2e:8d:b4:ab:f1:
01:08:ea:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:18:11 2025 by rpki-client