Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
File: mZK1NCb7YU2aWm2D9ABWamYMndI.mft (raw, json)
Hash identifier: 3pFWbpWeamngCBXTqv6vcapnyGejf7Otgp3qFpbyNCQ=
Subject key identifier: 6A:37:AC:9E:E6:0D:35:CB:16:37:6F:19:57:A9:AC:64:1B:78:05:45
Authority key identifier: 99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2
Certificate issuer: /CN=9992b53426fb614d9a5a6d83f400566a660c9dd2
Certificate serial: 01993236999EBECD78029FCE1FFC6E4F7FE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
Manifest number: 124D
Signing time: Wed 10 Sep 2025 06:01:03 +0000
Manifest this update: Wed 10 Sep 2025 06:01:03 +0000
Manifest next update: Thu 11 Sep 2025 06:01:03 +0000
Files and hashes: 1: iG2Qj8n6fZw-GirtzGhiiR4VwRI.roa (hash: C/swOHl78EzDeIac5yTERHHT18YviZO0RyNpfkEvBQE=)
2: mZK1NCb7YU2aWm2D9ABWamYMndI.crl (hash: zarJM1QuJLHEozGBcJqwZGcCzYtZV8yAdbQEmdUWlCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 06:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:36:99:9e:be:cd:78:02:9f:ce:1f:fc:6e:4f:7f:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9992b53426fb614d9a5a6d83f400566a660c9dd2
Validity
Not Before: Sep 10 06:01:03 2025 GMT
Not After : Sep 11 06:01:03 2025 GMT
Subject: CN=6a37ac9ee60d35cb16376f1957a9ac641b780545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d2:6d:2b:4c:28:af:3d:2c:80:46:41:d9:0f:
98:36:6a:f6:fb:47:c5:b4:1e:ac:17:06:0e:ac:26:
aa:03:f9:8f:ff:2a:73:8d:fd:29:97:2a:15:de:1a:
f6:02:c3:65:0d:28:3a:c3:a1:4f:4b:29:1e:41:99:
bf:f4:0a:59:2a:1f:86:a1:fd:e1:1f:93:39:7a:f3:
81:f2:88:06:b0:f2:dd:1d:c4:25:50:db:21:4e:96:
f8:6e:69:39:ba:20:f3:c9:73:51:11:f2:ab:a5:0b:
23:f3:91:f0:c6:3d:39:e4:a2:dc:c6:c3:c8:c2:c7:
7e:37:e5:3e:40:45:90:06:1d:d5:97:38:34:69:c7:
0c:be:5c:a6:7a:50:bd:c5:e0:70:07:24:80:ab:69:
68:fe:e7:e8:20:8b:24:f8:f1:06:5e:8b:e4:49:c0:
84:38:ab:f0:c3:b4:f5:94:2b:93:9b:77:0b:18:09:
cd:9d:8d:9d:af:82:0c:d4:7b:41:1e:94:84:6f:37:
e2:25:59:13:fe:da:87:75:33:b7:40:f0:70:c5:c5:
52:4a:10:37:8c:6c:c5:91:ae:3a:96:72:d8:ac:7a:
42:a8:7a:29:9d:03:20:a1:e6:42:b6:2e:4b:ed:ec:
51:0b:55:52:f1:dd:42:5c:72:ad:1e:93:94:ba:2e:
77:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:37:AC:9E:E6:0D:35:CB:16:37:6F:19:57:A9:AC:64:1B:78:05:45
X509v3 Authority Key Identifier:
keyid:99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:46:33:5d:33:3a:ec:ce:c8:fc:ac:68:e3:81:82:9e:59:13:
2e:51:29:e3:6c:23:99:e3:ad:8a:86:ae:a9:16:89:9e:83:d5:
2e:a7:e6:a3:b5:ae:92:d1:3f:d2:be:78:32:2f:b0:96:d5:12:
55:cc:f8:0f:cb:69:f3:91:cd:74:12:5a:32:2b:53:bf:15:77:
8f:7a:5c:6a:90:68:eb:40:2b:e3:4a:6c:61:25:81:90:1d:ac:
ac:7b:83:da:91:b9:bb:2c:2a:c4:92:c8:d4:e5:de:68:fd:aa:
b4:4e:a6:90:46:13:c2:64:d6:5e:59:7d:4d:85:e1:b6:e6:ca:
40:bf:76:36:c2:ce:60:ef:9c:27:42:64:83:80:4a:78:cf:0d:
eb:e8:93:20:c3:3a:3e:9f:61:3c:84:7d:d4:aa:89:a4:8a:05:
27:0d:4a:cb:28:be:50:61:f7:45:d9:2c:e0:3b:9e:28:f7:fb:
b0:c8:96:af:9f:6a:81:f8:a8:61:ce:d2:6e:c6:f4:33:c0:30:
80:bb:87:3c:53:db:4c:90:98:e4:91:d9:1c:9c:f2:83:2a:80:
17:34:09:55:c1:45:8f:03:10:45:93:51:bd:8b:92:f0:4b:0d:
f0:66:4c:09:dd:ee:12:da:bc:13:d4:1e:3d:5e:aa:c8:e3:df:
b1:f3:b2:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 15:18:19 2025 by rpki-client