Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
File: zy7ueKAITYMd4aJQAYPhZIlRbM8.mft (raw, json)
Hash identifier: 6+HeNYIy4e3AH0EXywZotxg5UjR8g+su5MAhTWZoR4U=
Subject key identifier: 3E:4C:D5:D3:39:D7:74:23:A5:02:13:C6:38:32:1F:4B:62:E7:39:C6
Authority key identifier: CF:2E:EE:78:A0:08:4D:83:1D:E1:A2:50:01:83:E1:64:89:51:6C:CF
Certificate issuer: /CN=cf2eee78a0084d831de1a2500183e16489516ccf
Certificate serial: 019A5A8B8379B76311BA20FD05C3CCE1DBF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
Manifest number: 1017
Signing time: Thu 06 Nov 2025 19:01:23 +0000
Manifest this update: Thu 06 Nov 2025 19:01:23 +0000
Manifest next update: Fri 07 Nov 2025 19:01:23 +0000
Files and hashes: 1: DoG2UFHCOj7zOTIUPjjt5XZyaMI.roa (hash: o5jRgA59QPQWDTQLvIg+41ICmEKRDLb8Qb3vB5Fkcs4=)
2: zy7ueKAITYMd4aJQAYPhZIlRbM8.crl (hash: 9f5aEEy5ByitLAsPy2L25Qls31Xbj21kIRP2kV5/10Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Nov 2025 19:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:5a:8b:83:79:b7:63:11:ba:20:fd:05:c3:cc:e1:db:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf2eee78a0084d831de1a2500183e16489516ccf
Validity
Not Before: Nov 6 19:01:23 2025 GMT
Not After : Nov 7 19:01:23 2025 GMT
Subject: CN=3e4cd5d339d77423a50213c638321f4b62e739c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5a:8d:64:8d:bb:5e:2a:40:66:2c:e7:68:17:
b3:3f:88:99:ca:65:aa:19:bb:e1:fe:32:2e:67:70:
a0:7d:5a:22:8a:3a:f8:87:9e:ef:28:f2:e0:81:2e:
06:54:a7:05:2b:45:b5:1f:ac:aa:47:db:c1:f5:72:
c2:06:5f:13:cb:2d:09:b0:f3:8f:4d:ed:20:a9:34:
ce:42:33:5b:db:4a:19:2e:5f:11:72:0d:17:fa:63:
05:7a:f1:3e:4a:83:3b:2f:98:71:6e:e9:26:97:75:
bf:e2:17:c6:3c:b4:45:46:8c:45:c4:5d:17:3e:52:
f0:c7:67:3b:8c:b5:89:25:f1:f4:cc:bd:f7:4d:5f:
bf:ef:04:0e:77:42:d5:37:e5:00:b3:15:43:c7:19:
43:96:99:aa:33:58:6d:c6:70:98:31:aa:f3:f5:d4:
09:25:49:3d:da:9d:b0:2c:9a:81:cd:c9:a3:21:a1:
7e:1a:66:71:57:6a:ec:45:19:9c:98:91:08:cd:fa:
c8:ad:af:24:d1:ba:72:47:aa:98:b7:5e:d6:af:f9:
7a:ac:9a:b7:12:d3:f4:bc:ec:f5:89:6c:3f:13:7c:
e5:3c:5c:ca:63:5a:97:dd:92:dc:a8:50:51:36:39:
a5:76:8a:37:3a:a1:ea:3d:cb:ac:8b:08:0d:c9:cb:
19:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:4C:D5:D3:39:D7:74:23:A5:02:13:C6:38:32:1F:4B:62:E7:39:C6
X509v3 Authority Key Identifier:
keyid:CF:2E:EE:78:A0:08:4D:83:1D:E1:A2:50:01:83:E1:64:89:51:6C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:3f:94:a2:fb:6c:97:8f:88:3d:82:9a:66:d5:dc:b1:51:33:
1b:6c:8e:76:dd:e9:5a:3f:f3:08:0e:e9:dc:7e:fe:5b:6c:01:
08:9e:4c:1e:93:30:39:0f:d3:91:5e:c8:ef:f4:f1:dd:21:e7:
e4:22:0c:b9:be:0e:77:8b:d9:7a:ed:fc:77:55:0a:df:96:0a:
c0:67:77:66:9f:7f:fb:90:ee:fd:d8:34:a1:90:e8:89:72:87:
2c:e0:dc:38:40:9d:89:12:d4:cc:af:af:64:5f:b1:ec:bb:8d:
54:91:6f:b2:4a:c1:20:a0:54:c6:59:8a:97:a4:3c:5c:b0:1f:
93:5d:e4:98:e0:35:20:dd:8f:0a:35:0d:c3:15:df:ff:f7:5b:
09:52:da:49:f5:8b:f8:32:d6:e8:b6:39:7f:62:94:82:c4:ee:
1c:ff:06:07:f4:80:d1:f8:9e:0a:c7:fc:8b:c1:6c:cb:dd:06:
bb:15:cb:06:25:60:65:05:d9:ee:6a:26:dc:bf:c9:32:87:fc:
d2:ea:84:84:ae:5d:ae:f0:79:d9:a8:cf:10:63:76:7c:3f:9d:
38:c7:76:0b:fd:32:63:b3:8f:a7:d8:3e:28:cc:e9:80:ba:9c:
be:ad:8d:24:1c:ce:d8:2c:ef:f2:c0:57:ac:b7:d2:86:e9:71:
51:36:ee:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 7 00:44:59 2025 by rpki-client