Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
File: zS0OOdePxiAiVaW0rbVFg9ne3c4.mft (raw, json)
Hash identifier: WWbV0pmrLUhoB4/gL8qkAVnCC4oEfRTD9UVeZIFnG6I=
Subject key identifier: 40:60:93:4E:98:62:BF:80:08:81:FC:8B:9F:78:89:49:08:A5:A6:FD
Authority key identifier: CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE
Certificate issuer: /CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce
Certificate serial: 019A1D9A4D9D2A742F42070D31B24E0C6F08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
Manifest number: 0A17
Signing time: Sat 25 Oct 2025 23:00:42 +0000
Manifest this update: Sat 25 Oct 2025 23:00:42 +0000
Manifest next update: Sun 26 Oct 2025 23:00:42 +0000
Files and hashes: 1: 3EEDSMX4c2BQtUFlexj7ViVaNFg.roa (hash: i/HEM5WN4SpMsFYFUufkSvdwrDOTS979dTw2WJmTqxo=)
2: zS0OOdePxiAiVaW0rbVFg9ne3c4.crl (hash: Xp/pDDAtgz+qfY+rmfGtpClVb2TBQcqGr2UNL62S37Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1d:9a:4d:9d:2a:74:2f:42:07:0d:31:b2:4e:0c:6f:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce
Validity
Not Before: Oct 25 23:00:42 2025 GMT
Not After : Oct 26 23:00:42 2025 GMT
Subject: CN=4060934e9862bf800881fc8b9f78894908a5a6fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b6:13:70:a2:5d:69:4d:4d:d5:43:dc:c7:56:
73:b5:b8:45:fd:75:31:6d:98:9c:21:b7:32:7e:8a:
3b:3f:e9:d0:f6:c3:c0:36:4d:2a:c9:73:fa:dc:b4:
00:e8:a6:3b:66:6f:93:0c:c2:e3:73:70:0b:dd:fe:
32:7f:17:ec:b1:01:02:7b:84:bf:d1:6b:8d:e6:7a:
58:46:d1:98:32:9b:5d:47:56:93:5c:88:f0:77:3d:
79:35:60:2f:16:aa:23:0e:9f:84:93:d3:fb:05:e5:
17:86:92:ab:58:d5:43:59:0f:1c:ce:ed:3d:e2:5e:
02:2f:6d:3d:38:5f:c8:55:94:0e:16:e8:07:2c:0f:
e6:ea:be:6e:d6:81:d7:40:60:ad:39:04:23:89:58:
a6:4c:68:e4:ac:11:13:44:63:b6:53:67:d9:d8:53:
77:b4:82:97:39:d9:0d:8a:f2:76:d2:33:de:cc:db:
8c:db:75:db:1d:bc:dd:0a:41:2c:f0:4b:bf:85:28:
95:e5:7c:ee:30:5f:8c:27:f0:29:dd:84:a2:66:72:
66:81:2f:04:91:30:78:cf:0b:8e:28:68:94:fb:c1:
96:7f:96:90:a1:ff:2c:2a:e4:0a:0e:2e:42:1d:7c:
dd:7d:d6:04:fa:61:6e:e0:1b:1b:ba:fb:6c:f4:72:
2c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:60:93:4E:98:62:BF:80:08:81:FC:8B:9F:78:89:49:08:A5:A6:FD
X509v3 Authority Key Identifier:
keyid:CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:a6:61:40:34:45:5b:0c:9a:59:93:57:1c:22:c6:3f:9f:7c:
d7:27:c0:8e:1a:35:a6:94:a1:b1:13:b0:d6:f3:12:e4:20:6e:
da:a2:8c:e5:0a:eb:dc:9a:ca:5b:e9:87:a9:27:4b:63:74:0c:
50:80:8f:95:05:4e:2f:fe:56:5c:3d:1d:24:95:82:00:80:a4:
fc:75:74:02:00:5a:a1:2f:66:b1:ba:f8:70:be:6c:06:fb:e8:
3e:76:77:4f:22:87:7b:77:47:94:b8:14:df:f3:54:cc:a3:02:
4a:3c:fe:77:b7:9e:e2:1b:30:46:77:47:88:0a:81:db:36:ba:
38:d5:81:31:4b:1a:f2:21:71:05:f8:82:49:6e:ed:a1:b4:7f:
60:f9:10:93:3a:5f:01:e9:8c:4e:08:2c:97:d3:d6:e7:3c:47:
15:6c:66:c3:df:31:4b:f8:86:3f:af:a3:51:4e:72:af:ff:3e:
4d:1a:2e:b8:69:d2:4a:a3:d4:85:48:1f:b4:00:f7:bd:fc:aa:
11:cf:da:34:9c:96:e5:96:b1:a2:8f:d6:b5:c6:a7:a3:63:f2:
db:cb:8a:b5:ef:69:76:e8:27:72:42:d3:2c:e1:59:95:98:91:
c4:fb:c8:78:3f:e5:ae:76:39:3e:53:d9:d8:73:32:f2:9c:82:
28:6f:06:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 09:26:02 2025 by rpki-client