Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
File: zxNuAf-vhT27Klz8_l0bZ9IMILU.mft (raw, json)
Hash identifier: DxR6rbL8H9uSy+D2HvkW93XxptOOWxk5qTZvKWJZeMU=
Subject key identifier: 1D:72:DC:DB:54:39:3A:62:BA:0B:97:AA:44:DB:C4:05:B7:1B:BD:FE
Authority key identifier: CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5
Certificate issuer: /CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5
Certificate serial: 019922554977B47CB8244402794B4A5215BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
Manifest number: 10FB
Signing time: Sun 07 Sep 2025 04:00:38 +0000
Manifest this update: Sun 07 Sep 2025 04:00:38 +0000
Manifest next update: Mon 08 Sep 2025 04:00:38 +0000
Files and hashes: 1: OmwRoJ3JPu5X08Xp_X1_3qE1I7k.roa (hash: Adg8t51EAwBbzjl4kDJAi92mlZw1Om+k918pc8UAy2M=)
2: zxNuAf-vhT27Klz8_l0bZ9IMILU.crl (hash: ruFYEPLmXPLk4I/JeiHNGLk5lFQ0WSg6rtzeHWWbkwo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:49:77:b4:7c:b8:24:44:02:79:4b:4a:52:15:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5
Validity
Not Before: Sep 7 04:00:38 2025 GMT
Not After : Sep 8 04:00:38 2025 GMT
Subject: CN=1d72dcdb54393a62ba0b97aa44dbc405b71bbdfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:79:14:e7:26:aa:47:ef:9b:af:78:f5:69:ae:
1d:f0:ee:a0:d9:88:58:7d:9a:52:49:83:e5:fe:3c:
22:0f:e5:27:0c:1b:f9:72:1e:94:c2:80:c8:f7:0d:
3b:2f:0b:1e:ce:ca:99:92:dd:9d:75:c9:61:18:5f:
8d:3f:55:fd:75:b1:6e:16:1c:25:03:6d:8e:11:fe:
22:72:bb:18:aa:62:3c:1f:e2:aa:f9:44:37:a2:ec:
3f:82:99:f3:04:cb:5d:ff:d5:0f:f9:22:ef:6e:0a:
aa:e9:2c:6d:aa:aa:9c:40:52:42:69:2b:65:64:0d:
ee:e3:b2:7b:80:e2:c9:bd:3a:df:e3:7a:5f:9e:75:
86:ca:a7:54:ef:7e:7c:19:24:56:2b:9f:a1:b3:af:
f1:5e:61:56:27:4b:87:07:18:bf:6a:1b:56:51:b1:
2b:ff:e0:7b:e3:07:2a:e4:40:99:ff:ed:e5:ba:b4:
4c:fd:b5:df:c3:bd:8a:93:86:ae:5a:6b:30:b6:f2:
2b:09:7b:28:06:39:15:46:d9:c7:d0:55:96:38:8b:
26:31:89:82:3c:3b:83:52:6f:f0:87:0e:27:cf:b0:
43:1e:86:42:b8:23:58:7c:e2:7a:6a:8b:49:a6:ce:
70:ed:16:33:9e:cf:02:38:2a:f3:88:27:53:f7:0b:
5f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:72:DC:DB:54:39:3A:62:BA:0B:97:AA:44:DB:C4:05:B7:1B:BD:FE
X509v3 Authority Key Identifier:
keyid:CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:ab:55:8e:4c:3b:2a:48:a6:c1:d6:13:d1:ea:37:10:8e:81:
22:49:3a:12:b0:0c:2a:ff:75:2e:4d:4e:70:65:ca:75:b3:47:
82:c5:9a:6c:e4:df:53:d0:fb:ce:80:8c:02:c0:4f:c2:10:df:
48:ac:96:e4:7b:2d:48:5f:1a:8f:d3:0c:e6:de:ea:33:f5:b3:
8b:f1:66:2d:d3:08:57:8f:05:46:6c:18:90:91:ea:cb:a4:da:
73:b1:5e:7a:e9:88:67:8d:a0:b1:e8:17:63:9b:f9:84:ba:90:
a7:90:fa:b4:59:86:7a:6a:9b:cb:1a:5f:f6:bb:c3:99:0f:11:
91:bb:98:c8:0e:c5:5c:45:6b:d6:22:f9:80:27:cb:8d:31:44:
de:e2:7b:9b:e3:71:36:64:1d:18:e2:91:61:0d:10:10:96:5f:
90:bb:81:ec:a0:f1:59:fe:70:d4:2a:de:12:40:91:e6:ad:53:
3f:76:8a:0c:3d:e2:90:91:90:42:7c:4b:17:29:d3:16:86:ae:
88:49:d2:0c:40:32:8c:90:a5:11:3b:2f:81:b3:f6:74:d1:4b:
b7:dd:05:7d:02:40:67:3e:8c:09:30:a9:50:8f:e4:c2:99:82:
d5:0d:de:4e:91:fb:12:c1:36:5d:8d:fa:51:46:c4:a6:be:00:
79:2b:d2:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:34:00 2025 by rpki-client