Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
File: zf9bPNry6tG8MwlBG_lJLNmHr7o.mft (raw, json)
Hash identifier: w1sfFTceoRJ7Qe4xYX5hgiMA6U4qINEqIArvZBkT7dI=
Subject key identifier: 1E:3D:7E:E9:38:93:59:69:C2:EA:90:29:27:C6:DB:FA:C3:F1:D6:4A
Authority key identifier: CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
Certificate issuer: /CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Certificate serial: 019A7112F879475DE752AD47ED70C2A81F45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
Manifest number: 0579
Signing time: Tue 11 Nov 2025 04:00:59 +0000
Manifest this update: Tue 11 Nov 2025 04:00:59 +0000
Manifest next update: Wed 12 Nov 2025 04:00:59 +0000
Files and hashes: 1: k3TRYEDrQBrO6eEJRbpRNKXsKDY.roa (hash: 4LCjfvPAnVknZ+aHhkSXzNTjWeSMT085uGaEj2C566Q=)
2: zf9bPNry6tG8MwlBG_lJLNmHr7o.crl (hash: 03cLkyJz7HXIb0+k4i34uyBzYrDt48pLJvYlwnlNyRs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:f8:79:47:5d:e7:52:ad:47:ed:70:c2:a8:1f:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Validity
Not Before: Nov 11 04:00:59 2025 GMT
Not After : Nov 12 04:00:59 2025 GMT
Subject: CN=1e3d7ee938935969c2ea902927c6dbfac3f1d64a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:46:74:61:ea:74:3c:3d:11:f4:aa:ac:1b:2d:
17:6a:59:d3:fb:fc:7f:bc:b8:c6:cd:e3:b7:b8:51:
d1:5c:54:f4:71:ab:a7:67:d3:8a:53:55:1e:8e:41:
73:80:2c:a9:28:45:e7:13:8a:55:9a:85:8f:14:16:
1d:4b:6f:ea:7c:3c:3a:f9:7f:e6:39:ac:cb:6a:20:
a2:92:cf:79:4c:d9:2a:2b:ae:fc:29:8f:69:11:95:
c9:4b:1a:0b:01:60:fd:6f:31:8f:6a:43:f4:b0:d7:
f9:f9:20:66:a2:0e:96:9b:47:59:1e:8d:6e:80:5b:
b0:ad:28:dd:ec:83:13:04:cb:12:56:9c:46:52:03:
7e:44:d8:84:1a:ae:66:b5:aa:8b:c6:46:d1:4f:ff:
ae:a9:7e:32:88:4c:63:71:33:bd:b8:9c:56:9f:2a:
93:c5:b4:25:fb:cc:d3:0b:6b:6c:dc:61:3f:f6:5a:
ae:4d:0a:6d:f9:2f:f1:7d:79:81:41:d0:86:85:7d:
15:17:8f:12:8d:b0:35:2b:92:2b:cd:cb:e9:db:e8:
81:60:f4:d9:ee:1a:16:0e:74:a8:c2:3a:33:00:f3:
83:ad:bb:ad:5a:cf:e9:d6:32:7d:6a:c5:37:a7:b0:
a3:eb:ca:cc:ba:2f:0f:37:b9:52:f4:38:95:e4:08:
7e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:3D:7E:E9:38:93:59:69:C2:EA:90:29:27:C6:DB:FA:C3:F1:D6:4A
X509v3 Authority Key Identifier:
keyid:CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:1b:4a:f1:11:8d:b7:54:a9:ad:fd:e2:4e:68:2f:bd:8d:7c:
7b:20:50:6b:0c:65:51:0e:bc:47:fc:b7:fc:42:b0:f1:b1:bd:
73:f9:84:51:a5:0e:c0:d4:64:ac:27:3b:8c:c5:16:5f:e1:41:
56:ac:a8:e2:b6:7d:33:e0:38:09:e0:47:ef:7d:d6:90:ef:e2:
7c:70:1a:0f:cd:f4:f0:24:b9:ae:20:7d:54:69:2a:6d:fb:1b:
38:bc:27:30:f3:ac:b0:38:7e:12:9e:81:e4:0e:a9:38:2a:7e:
8f:9d:ed:72:20:c2:26:da:79:3a:c7:4a:09:31:43:22:11:fd:
25:d0:4a:3f:9e:22:c0:05:e6:48:f5:10:60:ba:a4:69:c0:eb:
61:13:bf:53:7d:68:89:83:ae:65:4a:a8:f6:f1:21:f9:3a:ef:
71:92:10:00:75:a1:59:af:9a:47:27:4c:1e:f7:34:07:6e:49:
47:bb:4a:87:03:3a:5f:d8:3f:6f:7a:7d:e3:14:23:ea:9e:59:
3b:b7:8e:2f:cd:7f:60:1b:36:a2:73:e3:af:fe:3f:66:73:1a:
31:25:ac:b9:77:63:96:2a:1c:6b:ef:da:83:bd:87:0f:38:f4:
cb:d8:87:f9:1e:5c:31:32:3e:59:ad:45:8f:03:89:2c:09:a2:
4c:5b:e0:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:33 2025 by rpki-client