Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
File: mZK1NCb7YU2aWm2D9ABWamYMndI.mft (raw, json)
Hash identifier: vsZKreRYVqmqOAF86OHZ0qg9J4sH23vR8ytpDkbMMwQ=
Subject key identifier: B4:28:22:14:C5:8A:0E:E4:AC:06:49:6D:8D:9E:96:6B:24:91:D3:40
Authority key identifier: 99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2
Certificate issuer: /CN=9992b53426fb614d9a5a6d83f400566a660c9dd2
Certificate serial: 019A2966F52BEC2C1A81B1A9F818928C6A6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
Manifest number: 12CD
Signing time: Tue 28 Oct 2025 06:00:04 +0000
Manifest this update: Tue 28 Oct 2025 06:00:04 +0000
Manifest next update: Wed 29 Oct 2025 06:00:04 +0000
Files and hashes: 1: iG2Qj8n6fZw-GirtzGhiiR4VwRI.roa (hash: C/swOHl78EzDeIac5yTERHHT18YviZO0RyNpfkEvBQE=)
2: mZK1NCb7YU2aWm2D9ABWamYMndI.crl (hash: 0KOGhT33+7pC5kF81wpmeP7GjFHU1Uw2S+/292gv4Go=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 06:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:29:66:f5:2b:ec:2c:1a:81:b1:a9:f8:18:92:8c:6a:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9992b53426fb614d9a5a6d83f400566a660c9dd2
Validity
Not Before: Oct 28 06:00:04 2025 GMT
Not After : Oct 29 06:00:04 2025 GMT
Subject: CN=b4282214c58a0ee4ac06496d8d9e966b2491d340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:77:5c:ad:6f:dd:43:d1:ca:59:f4:0a:f2:8f:
0e:7b:85:ec:06:5c:40:ad:1c:2e:5a:05:00:b1:6b:
c0:d6:cc:c6:27:72:54:48:48:b7:32:bf:98:93:6e:
5b:00:8b:4e:7e:5d:e8:d9:6a:5f:47:88:37:c8:35:
30:98:9c:b2:be:fa:c7:17:03:f0:c7:d8:5a:e3:f8:
7c:6d:d8:97:01:71:91:3f:a4:e6:99:02:b7:b1:6c:
c5:ad:a5:39:e2:2e:de:5d:28:26:01:1f:36:ea:ae:
24:af:66:ce:66:0e:bb:73:ce:86:48:b8:dd:b1:7c:
58:68:1e:e3:fe:58:ec:38:92:47:f2:48:a6:5c:d2:
a9:3c:1e:37:39:cf:66:5d:48:d7:39:6c:ef:c3:f0:
1b:e7:b8:3d:1b:66:24:91:d1:c1:d5:5e:1f:1f:e3:
ab:4f:c8:eb:1e:6a:34:b8:3c:96:cf:bb:3f:53:69:
31:38:c3:aa:aa:0e:46:b8:17:3c:6f:dc:d0:e5:14:
d9:71:b9:ef:b8:d5:7f:f1:6e:c0:1c:f4:e7:92:99:
04:e8:7d:d8:68:bf:0e:26:df:8f:87:7c:90:52:fe:
90:94:09:2f:07:26:40:bc:9b:0f:8d:f4:cb:43:72:
98:ee:01:37:e7:18:fe:30:04:ce:06:85:35:34:06:
14:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:28:22:14:C5:8A:0E:E4:AC:06:49:6D:8D:9E:96:6B:24:91:D3:40
X509v3 Authority Key Identifier:
keyid:99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:a3:6a:63:6f:c8:73:3d:73:43:f3:ee:a3:31:df:17:6b:e3:
00:b2:5e:c6:8b:31:f4:84:85:31:11:a5:8b:a4:ad:0d:2b:9b:
2e:50:44:61:bc:a3:c6:3d:76:50:ef:17:e4:fd:a4:3f:19:aa:
87:30:02:9c:8f:f1:cb:e5:fd:8c:f2:2a:b1:f0:d6:dc:89:14:
a8:34:e8:82:0b:d3:31:74:74:45:94:d3:a3:1f:c5:06:0d:25:
3f:6e:cd:b3:e3:d6:59:82:11:c3:44:8a:20:ac:3c:92:3c:11:
be:2d:83:e8:50:38:83:42:2c:7d:9f:69:fb:02:dc:78:73:5a:
cb:85:b3:93:0a:a6:2d:19:bd:4a:b4:32:7c:80:31:8f:97:b2:
3a:c6:89:eb:2e:53:67:86:c5:9c:a7:01:ae:4b:e5:bf:c5:42:
d9:88:ca:8e:d5:c9:33:1d:8b:2e:d6:b9:d3:06:52:6a:b1:3a:
84:80:b1:b1:ee:65:a7:c6:d3:1c:41:3e:01:7d:4f:9f:c1:8b:
35:af:a6:18:25:b8:39:c0:7e:94:d8:48:e8:a1:15:af:b8:8e:
9c:74:28:4a:39:40:cd:30:e3:b8:ce:52:96:5a:1d:e7:f0:ad:
af:09:ee:24:dd:e9:f2:aa:49:9f:2a:5e:99:e2:ac:ef:a4:af:
71:60:cf:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 13:28:56 2025 by rpki-client