Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft
File: skz59tA09Gdg9PWbFzneEnuK3_M.mft (raw, json)
Hash identifier: DNIp/3awK7L2uiAQ4luM6sAyfCD0cjPOQkG9QB9cfss=
Subject key identifier: 59:9A:86:FD:E7:02:4D:77:7E:02:21:E7:9A:84:9A:7C:C5:0D:4B:0A
Authority key identifier: B2:4C:F9:F6:D0:34:F4:67:60:F4:F5:9B:17:39:DE:12:7B:8A:DF:F3
Certificate issuer: /CN=b24cf9f6d034f46760f4f59b1739de127b8adff3
Certificate serial: 019A50E35EAAD0D895BA5211D9461D8AAACD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft
Manifest number: 0BF2
Signing time: Tue 04 Nov 2025 22:01:09 +0000
Manifest this update: Tue 04 Nov 2025 22:01:09 +0000
Manifest next update: Wed 05 Nov 2025 22:01:09 +0000
Files and hashes: 1: Y5LyyYUOXTFEg08dRczspK_kl2Y.roa (hash: ttMluHxYVIHmrZ73+Be4i0HFe1udkGlrlxsl6kstfvI=)
2: skz59tA09Gdg9PWbFzneEnuK3_M.crl (hash: Bn3hoEhGnqv/4961HEuScIvsCWlqP7K+NDjMwbspq+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:5e:aa:d0:d8:95:ba:52:11:d9:46:1d:8a:aa:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b24cf9f6d034f46760f4f59b1739de127b8adff3
Validity
Not Before: Nov 4 22:01:09 2025 GMT
Not After : Nov 5 22:01:09 2025 GMT
Subject: CN=599a86fde7024d777e0221e79a849a7cc50d4b0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1c:d1:fd:51:9d:e5:8b:52:3e:d2:ad:57:f5:
d5:7d:de:8a:a2:d4:16:b5:25:88:73:73:14:33:47:
ae:3f:c6:c9:8b:e4:26:0c:35:3b:84:82:4a:af:c4:
37:a6:51:e6:7f:d1:26:60:f3:bf:60:1b:c0:68:64:
5a:7b:f5:eb:e0:a9:99:3e:12:95:39:6e:62:c2:38:
da:4e:c9:2b:e5:b0:f4:f1:9c:ee:f8:0c:0e:1f:2c:
7e:a9:c7:e7:13:67:06:aa:78:a8:e1:dc:5b:d1:27:
a3:c7:3f:7c:34:6e:93:ed:b8:fe:f0:e3:ab:eb:83:
3a:b7:f8:83:de:1a:6e:db:7e:e5:13:da:f1:4e:a6:
fd:7f:d4:9b:9b:26:77:84:24:53:93:07:5f:cd:a4:
c1:0e:a7:6c:a9:c1:b9:cf:32:91:fa:23:f9:50:4b:
00:02:43:16:58:0f:9d:9c:95:97:16:30:9b:65:7d:
77:a8:c4:cc:33:59:16:5b:0e:27:05:8c:85:7a:ed:
fa:e9:cc:86:c0:e5:b0:a7:55:53:b7:9d:29:5c:32:
86:6c:06:d7:62:d7:4e:b0:21:cc:e7:ae:71:59:a3:
d0:02:b6:e0:02:70:59:9b:fe:c5:57:2e:46:ee:23:
92:05:e6:50:25:84:0d:51:a6:67:d9:23:98:45:81:
f8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:9A:86:FD:E7:02:4D:77:7E:02:21:E7:9A:84:9A:7C:C5:0D:4B:0A
X509v3 Authority Key Identifier:
keyid:B2:4C:F9:F6:D0:34:F4:67:60:F4:F5:9B:17:39:DE:12:7B:8A:DF:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:0d:cc:e0:21:3a:76:38:d1:74:4b:f2:cc:0c:ba:0e:7a:33:
44:ea:30:17:60:ca:5c:a0:cd:66:8a:27:70:12:84:a4:17:c6:
1e:84:37:9c:6f:df:17:95:bf:1e:8c:e4:da:f3:d8:97:90:68:
66:9f:5d:59:4d:6a:6b:7f:40:39:37:b5:30:f3:47:61:e4:9a:
72:3f:44:75:ea:3b:63:07:36:23:cb:5a:1e:90:8f:f2:84:44:
09:78:14:94:74:55:66:c5:d8:54:86:93:3c:e5:0f:95:1f:e9:
4f:d6:0b:1f:29:49:f2:51:da:fb:c6:ee:b5:65:aa:26:c8:fc:
4d:ee:c6:a0:6d:a8:b0:67:9b:df:99:78:51:b0:7b:d4:da:2a:
67:22:12:54:24:db:2d:64:98:3c:85:13:cb:71:7c:bd:6d:f5:
b7:19:8f:3e:74:b5:70:0e:88:49:3b:ee:9b:ea:6f:c0:44:0c:
ed:e3:a9:cf:ed:3f:be:62:0f:30:c5:2f:9e:1d:cc:67:8a:43:
61:b0:b3:c3:12:e9:6a:72:7e:a4:36:67:2f:f7:e6:c6:77:7e:
14:90:a0:4b:ec:ca:c9:c1:29:b1:b2:c3:0a:75:4f:66:91:90:
38:5c:bb:67:0f:61:fb:dd:f2:4c:3d:56:e7:da:c6:87:ac:fd:
f6:cd:b7:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:20:24 2025 by rpki-client