Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
File: zxNuAf-vhT27Klz8_l0bZ9IMILU.mft (raw, json)
Hash identifier: fMWLemGUBg4D5L1B9qks8hSMBSXB2x+W/6nyys/NmtU=
Subject key identifier: 24:59:76:47:88:29:7E:56:3A:63:5C:B8:D5:29:47:BA:EF:52:49:62
Authority key identifier: CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5
Certificate issuer: /CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5
Certificate serial: 019A725C948BB5C480F8CA9C281EDA3F705F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
Manifest number: 11A9
Signing time: Tue 11 Nov 2025 10:01:01 +0000
Manifest this update: Tue 11 Nov 2025 10:01:01 +0000
Manifest next update: Wed 12 Nov 2025 10:01:01 +0000
Files and hashes: 1: OmwRoJ3JPu5X08Xp_X1_3qE1I7k.roa (hash: Adg8t51EAwBbzjl4kDJAi92mlZw1Om+k918pc8UAy2M=)
2: zxNuAf-vhT27Klz8_l0bZ9IMILU.crl (hash: ijX5cqSihxo4PzFurVTv78+0ww83G2NjU9X+kYHpMuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:94:8b:b5:c4:80:f8:ca:9c:28:1e:da:3f:70:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5
Validity
Not Before: Nov 11 10:01:01 2025 GMT
Not After : Nov 12 10:01:01 2025 GMT
Subject: CN=2459764788297e563a635cb8d52947baef524962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1f:43:7d:a4:00:57:30:84:df:46:f0:dc:77:
98:77:cd:14:17:53:57:db:f3:0c:72:45:ee:b2:cb:
01:d2:3a:87:cf:50:f4:28:97:ce:f0:dd:7c:1d:f8:
5e:69:5d:f0:7e:05:c0:54:6a:c0:f2:27:14:dd:0d:
9e:e2:50:96:99:22:70:ea:24:ff:04:a6:f0:85:8f:
b7:c5:1b:56:e0:51:74:0d:6f:0c:e8:fe:4c:79:d7:
eb:47:64:77:8b:6e:3c:96:95:1b:4b:3c:6a:c8:26:
04:ad:69:a9:30:ff:eb:3e:40:67:38:6d:27:98:5d:
fe:47:ae:52:8d:c2:eb:a4:2f:00:0d:df:77:3d:4c:
97:8c:36:57:69:40:b5:72:cd:1a:57:05:4b:23:b2:
d1:6c:0c:02:90:2c:f9:fa:1f:14:6d:df:90:aa:1a:
fd:da:9b:29:6d:f5:de:23:8c:ab:c4:c1:5a:af:a0:
d0:ac:91:b5:44:19:e6:9b:52:04:d7:04:79:b4:3d:
2c:22:d7:e0:9a:55:94:87:af:3a:d9:d2:08:0c:46:
b9:e8:db:7d:b4:0b:ee:c9:e4:2f:e2:f4:66:c2:3f:
14:11:ce:a7:6e:af:e4:28:9a:15:48:e9:5b:d6:77:
cf:a2:a2:5d:17:5e:76:83:01:29:cb:2e:df:e3:be:
f8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:59:76:47:88:29:7E:56:3A:63:5C:B8:D5:29:47:BA:EF:52:49:62
X509v3 Authority Key Identifier:
keyid:CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:7a:bc:52:de:11:88:20:ce:74:98:b7:0f:0d:bd:2c:a2:b7:
8b:76:62:db:c3:e5:84:bf:28:a1:2e:72:76:97:53:4a:80:43:
a4:2c:14:f2:3c:9f:bf:c7:48:26:9c:91:1c:9d:8f:6d:b9:b9:
b5:bd:6c:62:6e:08:bc:36:3e:87:ba:90:87:58:05:08:62:89:
e8:48:16:2f:00:73:53:3e:78:36:e6:6d:bb:2c:a2:94:33:fb:
46:3d:19:3d:ee:80:68:1d:e9:47:64:6c:4a:ef:94:57:81:a4:
18:78:14:40:6e:0d:3d:7f:4b:8f:1a:65:ce:22:27:39:36:29:
fb:32:0c:b8:ee:25:fd:0b:8b:f9:81:07:b8:9a:de:c9:2c:d0:
28:99:0b:6f:23:03:cf:f2:36:89:e8:05:da:9d:4c:11:50:92:
47:b6:ca:4e:99:c5:a2:92:a6:36:c6:72:3d:bd:71:b7:16:53:
5a:79:27:6e:7a:ac:b4:84:e2:c0:59:dc:6c:4b:3d:d6:9b:61:
1c:d2:e2:81:88:92:4b:92:84:2a:ce:9b:cd:b5:87:df:0b:85:
96:16:fa:e8:2d:5e:19:d1:2c:89:a8:37:d9:c5:77:4c:e4:3d:
a1:43:5d:c2:ac:13:1a:d5:06:2e:0a:d8:af:5b:77:5f:d2:c6:
36:3e:98:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:47:47 2025 by rpki-client